D:\ecm_test\svn_nieun\nieun\src\x64\Debug\nieun.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-04-06_eabcb7f363fcce7f4d7dc51135564460_ryuk.exe
Resource
win7-20240221-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-04-06_eabcb7f363fcce7f4d7dc51135564460_ryuk.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
2024-04-06_eabcb7f363fcce7f4d7dc51135564460_ryuk
-
Size
12.6MB
-
MD5
eabcb7f363fcce7f4d7dc51135564460
-
SHA1
ebb1fec66d1cd3b54521c4cccc1e3f1bd04ebcb3
-
SHA256
a175fd26ee8d0e2ee9990bd14ed764c608ec47c6d4399a5659dc791bbba41677
-
SHA512
e3d17e365ff1cd7c6ec07be3cdb0c96ddd7d0dcd41f660be4beb817616e96d756522ca8b91aa50fcf56bd169778a9ddc3c3fc9bc375f6c51574f2d4c1997638a
-
SSDEEP
196608:TiTb2DqX5hK+GNklcKA2n3a2KThE2zNzRJJJExhvj6+FLOyomFHKnP:Yq+uKZF
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-06_eabcb7f363fcce7f4d7dc51135564460_ryuk
Files
-
2024-04-06_eabcb7f363fcce7f4d7dc51135564460_ryuk.exe windows:6 windows x64 arch:x64
a98b407cfd366bdbc471a23770ad5365
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
kernel32
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileW
FindNextFileA
FindFirstFileExW
FindFirstFileExA
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetStringTypeW
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
SetConsoleCtrlHandler
FreeEnvironmentStringsW
ExitProcess
SetStdHandle
WriteConsoleW
GetFileType
GetStdHandle
QueryPerformanceFrequency
VirtualAlloc
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
CreateThread
GetCommandLineW
GetCommandLineA
GetSystemInfo
HeapValidate
GetModuleFileNameA
InterlockedFlushSList
InterlockedPushEntrySList
RtlPcToFileHeader
RtlUnwindEx
OutputDebugStringW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetACP
CreateFileW
SetLastError
MultiByteToWideChar
FreeLibrary
LoadResource
LockResource
SizeofResource
LoadLibraryW
FindResourceW
DecodePointer
RaiseException
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
GetCurrentThread
GetCurrentThreadId
GetVersionExW
GetModuleFileNameW
LoadLibraryExW
GlobalAlloc
GlobalLock
GlobalDeleteAtom
lstrcmpA
lstrcmpW
WideCharToMultiByte
CompareStringA
OutputDebugStringA
GetModuleHandleExW
GetProcAddress
CreateActCtxW
ActivateActCtx
DeactivateActCtx
FindActCtxSectionStringW
QueryActCtxW
FreeResource
GlobalUnlock
GlobalFree
CloseHandle
SetEvent
WaitForSingleObject
CreateEventW
SuspendThread
GetModuleHandleW
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GlobalAddAtomW
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
lstrcpyW
SetErrorMode
GlobalSize
LocalFree
MulDiv
FormatMessageW
CopyFileW
EncodePointer
GetSystemDirectoryW
GlobalFindAtomW
GlobalGetAtomNameW
SetThreadPriority
GetThreadPriority
ResumeThread
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetCurrentDirectoryW
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
DeleteFileW
GetAtomNameW
GetProfileIntW
VirtualProtect
GetLastError
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetShortPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetHandleInformation
GetCurrentProcess
lstrcmpiW
MoveFileW
GetStringTypeExW
GetThreadLocale
VerSetConditionMask
VerifyVersionInfoW
GetFileAttributesW
FileTimeToSystemTime
SystemTimeToFileTime
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
LocalFileTimeToFileTime
SetFileAttributesW
SetFileTime
SystemTimeToTzSpecificLocalTime
GetDiskFreeSpaceW
GetTempFileNameW
ReplaceFileW
GetUserDefaultLCID
FindResourceExW
GetWindowsDirectoryW
GetTickCount
GetTempPathW
Sleep
ResetEvent
PulseEvent
SearchPathW
ReleaseSemaphore
ReleaseMutex
CreateMutexW
WaitForMultipleObjects
CreateSemaphoreW
LocalLock
LocalUnlock
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
VirtualQuery
user32
EnumChildWindows
DestroyCursor
MsgWaitForMultipleObjectsEx
GetComboBoxInfo
InSendMessage
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
MapVirtualKeyExW
IsCharLowerW
IsClipboardFormatAvailable
CharUpperBuffW
SubtractRect
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
RegisterClipboardFormatW
UpdateLayeredWindow
SetClassLongPtrW
DestroyAcceleratorTable
CopyIcon
GetIconInfo
GetDoubleClickTime
UnionRect
SetCursorPos
TrackMouseEvent
EmptyClipboard
SetClipboardData
CloseClipboard
MonitorFromPoint
EnumDisplayMonitors
SetLayeredWindowAttributes
MessageBeep
CopyAcceleratorTableW
CharNextW
ReuseDDElParam
GetMenuBarInfo
LoadImageW
IntersectRect
TranslateAcceleratorW
CharUpperW
DestroyIcon
UnpackDDElParam
GetClipboardFormatNameW
GetClipboardFormatNameA
GetDialogBaseUnits
SendDlgItemMessageA
MapVirtualKeyW
GetKeyNameTextW
GetAsyncKeyState
SetRect
SetRectEmpty
DestroyMenu
LoadAcceleratorsW
RealChildWindowFromPoint
SystemParametersInfoW
CopyImage
ReleaseCapture
WaitMessage
IsDialogMessageW
SetWindowTextW
ScrollWindowEx
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
NotifyWinEvent
ArrangeIconicWindows
DlgDirSelectComboBoxExW
DlgDirListComboBoxW
DlgDirSelectExW
DlgDirListW
LoadCursorW
FindWindowExW
FindWindowW
SetParent
ChildWindowFromPointEx
ChildWindowFromPoint
WindowFromPoint
GetCaretPos
SetCaretPos
PeekMessageW
HideCaret
CreateCaret
GetWindowContextHelpId
EnableScrollBar
ShowScrollBar
LockWindowUpdate
RedrawWindow
ValidateRgn
InvalidateRgn
InvalidateRect
GetWindowRgn
SetWindowRgn
MapDialogRect
GetUpdateRect
GetDCEx
SetForegroundWindow
GetForegroundWindow
UpdateWindow
DragDetect
GetSystemMenu
DrawMenuBar
HiliteMenuItem
KillTimer
SetTimer
SetCapture
GetOpenClipboardWindow
ChangeClipboardChain
GetClipboardViewer
SetClipboardViewer
GetClipboardOwner
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
CloseWindow
OpenIcon
ShowOwnedPopups
FlashWindow
PostThreadMessageW
SendNotifyMessageW
DrawAnimatedRects
DrawCaption
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
DrawEdge
DrawFrameControl
IsMenu
LoadMenuW
GetWindowThreadProcessId
GetLastActivePopup
SetWindowPos
SetWindowContextHelpId
GetWindow
SetScrollInfo
LoadIconW
GetTopWindow
GetClassLongPtrW
GetClassLongW
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthW
GetWindowTextW
LoadMenuIndirectW
GetMenuStringW
GetMenuState
CreateMenu
CreatePopupMenu
CheckMenuItem
EnableMenuItem
MessageBoxW
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
ModifyMenuW
RemoveMenu
RemovePropW
GetPropW
PostQuitMessage
GetSystemMetrics
UnregisterClassW
SendMessageW
PostMessageW
IsWindow
ShowCaret
TabbedTextOutW
RegisterWindowMessageW
GetSysColor
InflateRect
OffsetRect
IsRectEmpty
DrawIconEx
PtInRect
UnhookWindowsHookEx
GetClassNameW
GetDC
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
CopyRect
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetDlgCtrlID
SetFocus
GetCapture
GetMenu
SetMenu
TrackPopupMenu
TrackPopupMenuEx
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
SetPropW
DeleteMenu
SetMenuItemBitmaps
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
DrawIcon
DrawTextW
DrawTextExW
GrayStringW
DrawStateW
GetTabbedTextExtentW
WindowFromDC
ExcludeUpdateRgn
ScrollDC
SetMenuContextHelpId
GetMenuContextHelpId
GetSysColorBrush
DrawFocusRect
FillRect
FrameRect
InvertRect
CheckMenuRadioItem
LoadBitmapW
GetFocus
GetMenuCheckMarkDimensions
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetActiveWindow
EnableWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
GetMessageW
TranslateMessage
DispatchMessageW
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExW
CallNextHookEx
SetCursor
GetUpdateRgn
GetParent
gdi32
GetTextExtentPointW
DeleteMetaFile
GetSystemPaletteEntries
EnumFontFamiliesExW
SetDIBColorTable
CreateDIBSection
GetDIBits
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
StretchDIBits
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
MoveToEx
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
SetTextJustification
SetTextAlign
SetTextColor
SetTextCharacterExtra
SetStretchBltMode
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetGraphicsMode
SetMapperFlags
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetClipRgn
GetClipBox
ExcludeClipRect
CopyMetaFileW
DeleteObject
UnrealizeObject
GetKerningPairsW
GetTextFaceW
SetBrushOrgEx
SetBitmapDimensionEx
PolyBezier
Polyline
Polygon
LPtoDP
DPtoLP
CreatePolygonRgn
TextOutW
GetObjectW
GetArcDirection
GetMiterLimit
ExtCreatePen
WidenPath
StrokePath
StrokeAndFillPath
SetMiterLimit
PathToRegion
GetPath
FlattenPath
FillPath
EndPath
CloseFigure
BeginPath
AbortPath
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
StartDocW
CreateHalftonePalette
GetColorAdjustment
GetWorldTransform
PolyPolyline
AngleArc
GetTextMetricsW
GdiComment
PlayEnhMetaFile
UpdateColors
SetRectRgn
StretchBlt
SetPixelV
SetPixel
SetPaletteEntries
SetBoundsRect
SetBitmapBits
SelectObject
ResizePalette
RoundRect
RealizePalette
ResetDCW
Rectangle
RectVisible
RectInRegion
PtVisible
PtInRegion
PolyPolygon
PaintRgn
Pie
PatBlt
OffsetRgn
PlgBlt
MaskBlt
InvertRgn
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetCharacterPlacementW
GetFontLanguageInfo
GetTextExtentPoint32W
GetTextColor
GetTextAlign
GetTextCharacterExtra
GetStretchBltMode
GetStockObject
GetRgnBox
GetRegionData
GetPolyFillMode
GetPixel
GetPaletteEntries
GetOutlineTextMetricsW
GetObjectType
GetNearestPaletteIndex
GetNearestColor
GetMapMode
GetGraphicsMode
GetGlyphOutlineW
GetFontData
GetDeviceCaps
GetCurrentPositionEx
GetCurrentObject
GetCharABCWidthsFloatW
GetCharABCWidthsW
GetCharWidthFloatW
GetCharWidthW
GetBrushOrgEx
GetBoundsRect
GetBitmapDimensionEx
GetBitmapBits
GetBkMode
GetBkColor
GetAspectRatioFilterEx
GetROP2
FrameRgn
FloodFill
FillRgn
ExtFloodFill
ExtCreateRegion
ExtEscape
Escape
EqualRgn
EnumObjects
Ellipse
DrawEscape
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePatternBrush
CreatePolyPolygonRgn
CreatePenIndirect
CreatePen
CreatePalette
CreateICW
CreateHatchBrush
CreateFontW
CreateFontIndirectW
CreateEllipticRgnIndirect
CreateEllipticRgn
CreateDIBPatternBrushPt
CreateDCW
CreateCompatibleDC
CreateDiscardableBitmap
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmapIndirect
CreateBitmap
CombineRgn
Chord
BitBlt
Arc
AnimatePalette
ExtTextOutW
CreateEnhMetaFileW
CloseEnhMetaFile
CreateMetaFileW
CloseMetaFile
DeleteDC
msimg32
TransparentBlt
GradientFill
AlphaBlend
winspool.drv
DocumentPropertiesW
OpenPrinterW
ClosePrinter
GetJobW
advapi32
SystemFunction036
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW
SetFileSecurityW
GetFileSecurityW
RegEnumValueW
RegSetValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
shell32
DragFinish
DragQueryFileW
SHGetFileInfoW
SHAddToRecentDocs
DragAcceptFiles
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteW
ShellExecuteExW
SHAppBarMessage
ExtractIconW
comctl32
InitCommonControlsEx
shlwapi
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW
StrFormatKBSizeW
uxtheme
GetThemeSysColor
GetWindowTheme
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
DrawThemeText
GetThemePartSize
ole32
CreateILockBytesOnHGlobal
CreateOleAdviseHolder
CreateDataAdviseHolder
GetClassFile
OleQueryCreateFromData
OleQueryLinkFromData
OleRegEnumVerbs
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
StgIsStorageILockBytes
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleSave
OleSaveToStream
OleSetContainedObject
OleIsRunning
OleLockRunning
OleGetIconOfClass
GetHGlobalFromILockBytes
OleSetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
OleRun
CoRevokeClassObject
CoRegisterClassObject
PropVariantCopy
OleSetMenuDescriptor
CoGetMalloc
CoDisconnectObject
CreateStreamOnHGlobal
GetRunningObjectTable
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
StringFromGUID2
CoGetClassObject
CoInitializeEx
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
OleLoad
CoRegisterMessageFilter
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleRegGetMiscStatus
oleaut32
OleCreateFontIndirect
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SafeArrayGetDim
SafeArrayGetElemsize
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SysReAllocStringLen
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayRedim
VariantChangeType
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VariantCopy
VarDateFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
VariantClear
VariantInit
SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SafeArrayGetUBound
SysAllocString
oledlg
OleUIInsertObjectW
OleUIUpdateLinksW
OleUIConvertW
OleUIChangeIconW
OleUIEditLinksW
OleUIPasteSpecialW
OleUIBusyW
gdiplus
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
imm32
ImmGetContext
ImmGetOpenStatus
ImmReleaseContext
winmm
PlaySoundW
Sections
.textbss Size: - Virtual size: 3.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 7.7MB - Virtual size: 7.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 50KB - Virtual size: 120KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 369KB - Virtual size: 368KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 37KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 1024B - Virtual size: 777B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 283B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 166KB - Virtual size: 165KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ