e80763ae50eacba91e0759bdb3d717c3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e80763ae50eacba91e0759bdb3d717c3_JaffaCakes118
Size

638KB
MD5

e80763ae50eacba91e0759bdb3d717c3
SHA1

bf77df6b5c1868356f97a289075a606a025b3212
SHA256

332a8b4afd5769179058120e6604fec31c9262d340c1a5d04697c479e809eff9
SHA512

04d7694816227e27146ccfead96b7e0a92b9c8751f2655574a4449a19088377d94091cd2273f08ea28f8e97804d8c999c5bf5256c0c5f6b4a7e948728c6e339f
SSDEEP

12288:GWoy8yJun9/9RSVBun9U57hCj/BB0MKyLVuVFi2IK+hzxV2Vxm9GcyU/es:GWoyXq97Mu9y7IlBXZLIF0Tz8MGdU/f

Score

3^/10

Malware Config

Signatures

Unsigned PE 6 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Video Enhancer/Parallelizer.ax
unpack001/Video Enhancer/SR.ax
unpack001/Video Enhancer/VDFilter.ax
unpack001/Video Enhancer/VIH.ax
unpack001/Video Enhancer/VideoEnhancer.exe
unpack001/Video Enhancer/aviwr.ax

Files

e80763ae50eacba91e0759bdb3d717c3_JaffaCakes118
.rar
Video Enhancer/Parallelizer.ax
.dll regsvr32 windows:4 windows x86 arch:x86

ce67dfcf1e123e81f06bf255fa7e6498

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_purecall
__CxxFrameHandler
??3@YAXPAX@Z
memset
sprintf
??2@YAPAXI@Z

winmm

timeGetTime
timeSetEvent

kernel32

LoadLibraryA
GetVersionExA
DisableThreadLibraryCalls
LeaveCriticalSection
EnterCriticalSection
SetThreadPriority
CreateThread
GetLastError
CreateSemaphoreA
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
CloseHandle
SetEvent
ResetEvent
ReleaseSemaphore
lstrlenA
MultiByteToWideChar
GetModuleFileNameA
CreateEventA
InterlockedExchange
GetProcAddress
GetModuleHandleA
WideCharToMultiByte
GetACP
GetCurrentThreadId
GetThreadPriority
GetCurrentThread
WaitForMultipleObjects
FreeLibrary
InterlockedIncrement
InterlockedDecrement
DuplicateHandle
GetCurrentProcess
GetSystemInfo
VirtualAlloc
VirtualFree
GetTickCount

advapi32

RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegSetValueA
RegCreateKeyA

user32

wsprintfA
PeekMessageA
MsgWaitForMultipleObjects
wvsprintfA
PostThreadMessageA
RegisterWindowMessageA
GetQueueStatus
DispatchMessageA

ole32

CoInitialize
CoFreeUnusedLibraries
CoTaskMemFree
StringFromGUID2
CoTaskMemAlloc
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Video Enhancer/SR.ax
.dll regsvr32 windows:4 windows x86 arch:x86

bbc0a28c566ce5e639050910492a8199

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

??2@YAPAXI@Z
__dllonexit
_adjust_fdiv
_initterm
__CxxFrameHandler
memcpy
memset
free
malloc
calloc
_purecall
memcmp
??3@YAXPAX@Z
_onexit

winmm

timeGetTime
timeSetEvent

kernel32

GetThreadPriority
SetThreadPriority
GetACP
GetModuleHandleA
GetCurrentThread
lstrcmpiA
GetTickCount
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
FreeLibrary
LoadLibraryA
LeaveCriticalSection
EnterCriticalSection
CloseHandle
CreateEventA
ResetEvent
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
SetEvent
WaitForMultipleObjects
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
GetSystemInfo
VirtualAlloc
VirtualFree
GetVersionExA
DisableThreadLibraryCalls
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
GetProcAddress
SetErrorMode
InterlockedExchange
CreateThread
WideCharToMultiByte

advapi32

RegCreateKeyA
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA

user32

SetWindowLongA
CreateDialogParamA
MoveWindow
InvalidateRect
ShowWindow
DestroyWindow
DefWindowProcA
wsprintfA
LoadStringA
GetWindowLongA
GetWindowRect
GetDesktopWindow
PeekMessageA
MsgWaitForMultipleObjects
wvsprintfA
PostThreadMessageA
RegisterWindowMessageA
GetQueueStatus
DispatchMessageA
MessageBoxA
LoadStringW

comctl32

ord17

ole32

CoInitialize
CoUninitialize
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoFreeUnusedLibraries
CoTaskMemAlloc

oleaut32

SysFreeString
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Video Enhancer/VDFilter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

8769226ee06d46f9c3d97432ac1ef458

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

__dllonexit
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
strcat
_strdup
realloc
_CxxThrowException
??2@YAPAXI@Z
_purecall
malloc
_snprintf
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
strlen
memset
strncat
strncpy
memcpy
sprintf
memcmp
calloc
free
__CxxFrameHandler
??3@YAXPAX@Z
_onexit

quartz

AMGetErrorTextA

winmm

timeSetEvent
timeGetTime

kernel32

SetThreadPriority
GetACP
WideCharToMultiByte
GetModuleHandleA
CreateThread
GetTickCount
GetModuleFileNameA
GetThreadPriority
MultiByteToWideChar
lstrlenA
DisableThreadLibraryCalls
GetVersionExA
VirtualFree
VirtualAlloc
GetSystemInfo
ReleaseSemaphore
GetLastError
GetCurrentThread
lstrcmpiA
InterlockedExchange
DeleteCriticalSection
LoadLibraryA
GetProcAddress
InitializeCriticalSection
InterlockedIncrement
InterlockedDecrement
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
CloseHandle
CreateEventA
ResetEvent
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
SetEvent
WaitForMultipleObjects
WaitForSingleObject
CreateSemaphoreA
SetErrorMode

advapi32

RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegCreateKeyA
RegSetValueA

user32

GetDlgItem
MessageBoxA
GetWindowLongA
SetWindowLongA
CreateDialogParamA
MoveWindow
InvalidateRect
ShowWindow
DestroyWindow
EnableWindow
wsprintfA
LoadStringA
LoadStringW
GetWindowRect
GetDesktopWindow
PeekMessageA
SetWindowTextA
wvsprintfA
PostThreadMessageA
RegisterWindowMessageA
GetQueueStatus
DispatchMessageA
DefWindowProcA
MsgWaitForMultipleObjects

comctl32

ord17

ole32

StringFromGUID2
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoFreeUnusedLibraries

oleaut32

SysFreeString
SysAllocString

comdlg32

GetOpenFileNameA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 4KB - Virtual size: 252B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Video Enhancer/VIH.ax
.dll regsvr32 windows:4 windows x86 arch:x86

aca4588a64702b848b7d92c88d42cbeb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_onexit
__dllonexit
_adjust_fdiv
malloc
_initterm
__CxxFrameHandler
_purecall
calloc
free
fopen
fprintf
fclose
??3@YAXPAX@Z
??2@YAPAXI@Z

winmm

timeGetTime
timeSetEvent

kernel32

GetThreadPriority
SetThreadPriority
GetACP
WideCharToMultiByte
GetCurrentThread
lstrcmpiA
GetTickCount
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
FreeLibrary
LoadLibraryA
LeaveCriticalSection
EnterCriticalSection
CloseHandle
CreateEventA
ResetEvent
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
SetEvent
WaitForMultipleObjects
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
GetSystemInfo
VirtualAlloc
VirtualFree
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
GetVersionExA
DisableThreadLibraryCalls
GetProcAddress
SetErrorMode
InterlockedExchange
CreateThread
GetModuleHandleA

advapi32

RegCreateKeyA
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA

user32

CreateDialogParamA
MoveWindow
InvalidateRect
ShowWindow
DestroyWindow
DefWindowProcA
wsprintfA
LoadStringA
LoadStringW
SetWindowLongA
GetDesktopWindow
PeekMessageA
MsgWaitForMultipleObjects
wvsprintfA
PostThreadMessageA
RegisterWindowMessageA
GetQueueStatus
DispatchMessageA
GetWindowLongA
GetWindowRect

comctl32

ord17

ole32

CoInitialize
CoUninitialize
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoFreeUnusedLibraries
CoTaskMemAlloc

oleaut32

SysFreeString
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Video Enhancer/VideoEnhancer.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 105KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 17KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 54KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yufeng
Size: 353KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Video Enhancer/aviwr.ax
.dll regsvr32 windows:4 windows x86 arch:x86

717d468932cc3048a1f8f6952943ec95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeSetEvent
timeGetTime

msvcrt

_ftol
__CxxFrameHandler
_purecall
wcslen
calloc
free
sprintf
??2@YAPAXI@Z
??3@YAXPAX@Z

kernel32

GetTickCount
GetCurrentThread
GetThreadPriority
SetThreadPriority
CancelIo
CreateEventA
CloseHandle
ReadFile
WaitForSingleObject
SetEvent
GetOverlappedResult
GetLastError
CreateFileA
WriteFile
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
Sleep
WideCharToMultiByte
SetFilePointer
GetFileSize
GetVersionExA
DisableThreadLibraryCalls
InterlockedIncrement
FreeLibrary
InterlockedDecrement
LoadLibraryA
ResetEvent
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
WaitForMultipleObjects
CreateSemaphoreA
ReleaseSemaphore
GetACP
VirtualAlloc
VirtualFree
lstrlenA
MultiByteToWideChar
GetModuleFileNameA
InterlockedExchange
CreateThread
GetProcAddress
GetModuleHandleA
GetSystemInfo

user32

DispatchMessageA
GetQueueStatus
RegisterWindowMessageA
PostThreadMessageA
wvsprintfA
MsgWaitForMultipleObjects
PeekMessageA
wsprintfA

advapi32

RegCloseKey
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegSetValueA
RegCreateKeyA
RegDeleteKeyA

ole32

CoInitialize
StringFromGUID2
CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
CoCreateInstance
CoFreeUnusedLibraries

oleaut32

SysFreeString
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Video Enhancer/卸载.bat
Video Enhancer/绿化.bat
安装说明.url
.url

Sharing

General

Malware Config

Signatures

Files

ce67dfcf1e123e81f06bf255fa7e6498

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

advapi32

user32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 412B

.data1 Size: 4KB - Virtual size: 224B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

bbc0a28c566ce5e639050910492a8199

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

advapi32

user32

comctl32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 72KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 912B

.data1 Size: 4KB - Virtual size: 504B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

8769226ee06d46f9c3d97432ac1ef458

Headers

File Characteristics

Imports

msvcrt

quartz

winmm

kernel32

advapi32

user32

comctl32

ole32

oleaut32

comdlg32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 49KB

.text1 Size: 4KB - Virtual size: 252B

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 4KB - Virtual size: 668B

.tls Size: 4KB - Virtual size: 12B

.data1 Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

aca4588a64702b848b7d92c88d42cbeb

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

advapi32

user32

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 412B

.data1
Size: 4KB - Virtual size: 224B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 76KB - Virtual size: 72KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 912B

.data1
Size: 4KB - Virtual size: 504B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 49KB

.text1
Size: 4KB - Virtual size: 252B

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 4KB - Virtual size: 668B

.tls
Size: 4KB - Virtual size: 12B

.data1
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 4KB - Virtual size: 516B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 54KB - Virtual size: 112KB

.yufeng
Size: 353KB - Virtual size: 356KB

.adata
Size: - Virtual size: 4KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 4KB - Virtual size: 336B

.data1
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB