C:\MySVN\Safe\trunk\m_saolei2_Beta_2021.10.05\Debug\m_saolei.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-04-09_9336f7875b362c8b4f773a7c3c512f88_magniber.exe
Resource
win7-20240221-en
windows7-x64
11 signatures
150 seconds
General
-
Target
2024-04-09_9336f7875b362c8b4f773a7c3c512f88_magniber
-
Size
14.9MB
-
MD5
9336f7875b362c8b4f773a7c3c512f88
-
SHA1
6af9450a9c589e770b82faa1dd50c1437b0ea2e7
-
SHA256
bee2644b0610a0c9947b5a9d9bbd2ef389fc2746f3806de927074b51f56f604d
-
SHA512
b551418d83f3d1373df5ca873c661cab09096a342ea8354734277f345778ebed22890e247eb8cb7b15e369c6b4cdfd03d0cb438bb986eb589420067ecb5cc5b2
-
SSDEEP
98304:guHiQux2ND50aJgMyM3xu3++Eu7KU5+OHhVwCNC0z1vDoA/4eXrQ9+HRdRxA/w+B:guCIm+M3wCrfE/w+LfcuUbrHnnja
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-09_9336f7875b362c8b4f773a7c3c512f88_magniber
Files
-
2024-04-09_9336f7875b362c8b4f773a7c3c512f88_magniber.exe windows:6 windows x86 arch:x86
58e45ea5810042e34e752ea2d6ddf064
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
InitializeCriticalSectionEx
LCMapStringEx
GetLocaleInfoEx
GetStringTypeW
CompareStringEx
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleHandleExW
ExitProcess
HeapValidate
VirtualAlloc
CreateThread
ExitThread
FreeLibraryAndExitThread
GetCommandLineA
GetCommandLineW
SetStdHandle
GetFileType
HeapQueryInformation
GetStdHandle
WriteConsoleW
QueryPerformanceFrequency
SetConsoleCtrlHandler
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
DeleteFileW
GetFileAttributesExW
GetTimeZoneInformation
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
VirtualQuery
GetStartupInfoW
CreateEventW
OutputDebugStringW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LocalUnlock
LocalLock
CreateSemaphoreA
WaitForMultipleObjects
CreateMutexA
ReleaseMutex
ReleaseSemaphore
SearchPathA
PulseEvent
ResetEvent
VerifyVersionInfoA
VerSetConditionMask
GetTickCount
GetWindowsDirectoryA
lstrcpyA
FindResourceExW
SystemTimeToTzSpecificLocalTime
SetFileAttributesA
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExA
FileTimeToLocalFileTime
GetStringTypeExA
MoveFileA
lstrcmpiA
GetShortPathNameA
LoadLibraryExA
GetHandleInformation
DuplicateHandle
GetVolumeInformationA
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
GetCurrentDirectoryA
GetACP
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
WaitForSingleObjectEx
GlobalFlags
GetThreadLocale
FileTimeToSystemTime
VirtualProtect
GetProfileIntA
SetErrorMode
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetAtomNameA
LeaveCriticalSection
EnterCriticalSection
GetUserDefaultLCID
SystemTimeToFileTime
ReplaceFileA
GetTempFileNameA
SetFileTime
GetFullPathNameA
GetFileTime
GetFileAttributesA
GetDiskFreeSpaceA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetCurrentThread
CreateEventA
SetEvent
GetCurrentProcessId
ResumeThread
SuspendThread
GetThreadPriority
SetThreadPriority
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
RaiseException
DecodePointer
WideCharToMultiByte
GetLastError
FindResourceW
Process32Next
Process32First
CreateToolhelp32Snapshot
FindResourceExA
WinExec
LoadLibraryA
SizeofResource
LockResource
LoadResource
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
FreeResource
GetVersionExA
GetSystemInfo
CreateProcessA
GetCurrentProcess
Sleep
WaitForSingleObject
CloseHandle
GetTempPathA
WriteFile
GetLongPathNameA
CreateFileW
CreateFileA
CreateDirectoryA
MultiByteToWideChar
SetLastError
GetLocaleInfoW
SetEnvironmentVariableW
user32
DeleteMenu
ModifyMenuA
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
LoadMenuIndirectA
LoadMenuW
DrawFrameControl
DrawEdge
GetCursorPos
TranslateMessage
GetMessageA
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
LoadImageA
DestroyIcon
GetWindowThreadProcessId
OffsetRect
IntersectRect
SetRectEmpty
SetCursor
DestroyMenu
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
NotifyWinEvent
ArrangeIconicWindows
DlgDirSelectComboBoxExA
DlgDirListComboBoxA
DlgDirSelectExA
DlgDirListA
LoadCursorW
LoadCursorA
GetLastActivePopup
FindWindowExA
FindWindowA
SetParent
GetDesktopWindow
ChildWindowFromPointEx
ChildWindowFromPoint
WindowFromPoint
ClientToScreen
GetCaretPos
SetCaretPos
ShowCaret
HideCaret
CreateCaret
GetWindowContextHelpId
SetWindowContextHelpId
EnableScrollBar
ShowScrollBar
LockWindowUpdate
RedrawWindow
ValidateRgn
InvalidateRgn
ValidateRect
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRgn
GetUpdateRect
ReleaseDC
GetWindowDC
GetDCEx
GetDC
SetForegroundWindow
GetForegroundWindow
UpdateWindow
DragDetect
GetSystemMenu
DrawMenuBar
HiliteMenuItem
EnableWindow
InsertMenuItemA
GetActiveWindow
GetOpenClipboardWindow
ChangeClipboardChain
GetClipboardViewer
SetClipboardViewer
GetClipboardOwner
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
CloseWindow
OpenIcon
ShowOwnedPopups
FlashWindow
PostThreadMessageA
SendNotifyMessageA
DrawAnimatedRects
DrawCaption
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetTopWindow
GetClassNameA
GetParent
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropA
GetPropA
SetPropA
GetScrollRange
SetScrollRange
ScrollWindow
GetTabbedTextExtentA
WindowFromDC
ExcludeUpdateRgn
ScrollDC
DefFrameProcA
CharLowerBuffA
GetSystemMetrics
PeekMessageA
PostQuitMessage
EndPaint
BeginPaint
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetMenuContextHelpId
GetMenuContextHelpId
GetSysColorBrush
DrawFocusRect
FillRect
FrameRect
InvertRect
CheckMenuRadioItem
LoadBitmapA
InflateRect
SetRect
DestroyCursor
GetAsyncKeyState
RealChildWindowFromPoint
SystemParametersInfoA
GetMenuItemInfoA
SetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
DrawIcon
DrawTextA
DrawTextExA
GrayStringA
SetCapture
DrawStateA
ReleaseCapture
SetTimer
KillTimer
UnregisterClassA
IsMenu
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
SendMessageA
PostMessageA
IsWindow
TabbedTextOutA
MapDialogRect
SetFocus
SetScrollPos
GetScrollPos
EnumChildWindows
GetWindowTextA
GetWindowTextLengthA
GetWindowLongA
GetWindow
GetFocus
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
RegisterWindowMessageA
DispatchMessageA
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsChild
DestroyWindow
SetWindowPos
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
MonitorFromRect
MsgWaitForMultipleObjectsEx
CharUpperBuffA
GetDoubleClickTime
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
CopyIcon
SetCursorPos
SetClassLongA
EmptyClipboard
SetClipboardData
CloseClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetIconInfo
DrawIconEx
IsClipboardFormatAvailable
WaitMessage
RegisterClipboardFormatA
LoadImageW
TrackMouseEvent
GetTabbedTextExtentW
InSendMessage
MessageBeep
CopyAcceleratorTableA
CharNextA
CharUpperA
LoadAcceleratorsW
IsRectEmpty
UnionRect
MapVirtualKeyA
GetKeyNameTextA
GetDialogBaseUnits
GetClipboardFormatNameA
CopyImage
gdi32
DeleteObject
GetCharWidthA
GetObjectType
SelectObject
StretchDIBits
AnimatePalette
Arc
BitBlt
Chord
CombineRgn
CreateBitmapIndirect
CreateBrushIndirect
CreateDiscardableBitmap
CreateDIBPatternBrushPt
CreateEllipticRgnIndirect
CreateFontIndirectA
CreateHatchBrush
CreateICA
CreatePalette
CreatePen
CreatePenIndirect
CreatePolyPolygonRgn
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DrawEscape
Ellipse
EnumObjects
EqualRgn
Escape
ExtEscape
ExtCreateRegion
ExtFloodFill
FillRgn
FloodFill
FrameRgn
GetROP2
GetAspectRatioFilterEx
GetBkColor
GetBkMode
GetBitmapBits
GetBitmapDimensionEx
GetBoundsRect
GetBrushOrgEx
GetCharWidthFloatA
GetCharABCWidthsA
GetCharABCWidthsFloatA
GetCurrentObject
GetCurrentPositionEx
GetFontData
GetGlyphOutlineA
GetGraphicsMode
GetMapMode
GetNearestColor
GetNearestPaletteIndex
GetOutlineTextMetricsA
GetPaletteEntries
GetPixel
GetPolyFillMode
GetRegionData
GetRgnBox
GetStockObject
GetStretchBltMode
GetTextCharacterExtra
GetTextAlign
GetTextColor
GetTextExtentPoint32A
GetFontLanguageInfo
GetCharacterPlacementA
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
InvertRgn
MaskBlt
PlgBlt
OffsetRgn
PatBlt
Pie
PaintRgn
PolyPolygon
PtInRegion
PtVisible
RectInRegion
RectVisible
Rectangle
ResetDCA
RealizePalette
RoundRect
ResizePalette
SetBitmapBits
SetBoundsRect
SetPaletteEntries
SetPixel
SetPixelV
CreateFontA
SetRectRgn
UpdateColors
PlayEnhMetaFile
GdiComment
GetTextMetricsA
AngleArc
PolyPolyline
GetWorldTransform
GetColorAdjustment
CreateHalftonePalette
StartDocA
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetPath
PathToRegion
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
ExtCreatePen
GetMiterLimit
GetArcDirection
TextOutA
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetBitmapDimensionEx
SetBrushOrgEx
GetTextFaceA
GetKerningPairsA
UnrealizeObject
ExcludeClipRect
GetClipBox
GetClipRgn
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
MoveToEx
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateDIBSection
GetTextExtentPointA
GetTextExtentPoint32W
EnumFontFamiliesExA
DeleteMetaFile
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
ExtTextOutA
CreateEnhMetaFileA
CreateEllipticRgn
CloseEnhMetaFile
CreateMetaFileA
CloseMetaFile
GetDeviceCaps
CreateDCA
StretchBlt
SetDIBColorTable
CopyMetaFileA
msimg32
AlphaBlend
GradientFill
TransparentBlt
winspool.drv
GetJobA
OpenPrinterA
DocumentPropertiesA
ClosePrinter
advapi32
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegSetValueA
RegCreateKeyExA
RegDeleteValueA
RegEnumKeyA
RegQueryValueA
SetFileSecurityA
GetFileSecurityA
RegEnumValueA
RegOpenKeyExW
RegEnumKeyExA
RegCloseKey
shell32
ShellExecuteA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetFileInfoA
ExtractIconA
SHGetMalloc
DragFinish
DragQueryFileA
DragAcceptFiles
SHChangeNotify
SHAppBarMessage
ShellExecuteExA
SHAddToRecentDocs
SHBrowseForFolderA
shlwapi
PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
PathIsDirectoryA
StrFormatKBSizeA
uxtheme
IsAppThemed
DrawThemeParentBackground
OpenThemeData
DrawThemeText
GetThemeColor
GetCurrentThemeName
GetWindowTheme
GetThemeSysColor
CloseThemeData
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
ole32
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
OleLoad
CreateDataAdviseHolder
CreateOleAdviseHolder
CoLockObjectExternal
GetRunningObjectTable
CoGetMalloc
RegisterDragDrop
OleGetIconOfClass
OleLockRunning
OleIsRunning
OleSetContainedObject
OleSaveToStream
OleSave
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleCreate
CreateItemMoniker
CreateGenericComposite
GetHGlobalFromILockBytes
WriteClassStm
StgIsStorageILockBytes
OleGetClipboard
OleUninitialize
OleInitialize
OleRun
CoFreeUnusedLibraries
CoRegisterClassObject
StgCreateDocfile
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleRegEnumVerbs
OleRegGetMiscStatus
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
OleSetClipboard
OleFlushClipboard
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoInitializeEx
StringFromGUID2
CoDisconnectObject
PropVariantCopy
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleIsCurrentClipboard
CoRegisterMessageFilter
OleQueryLinkFromData
OleQueryCreateFromData
OleSetMenuDescriptor
DoDragDrop
GetClassFile
RevokeDragDrop
CoRevokeClassObject
ReadFmtUserTypeStg
oleaut32
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayRedim
SafeArrayDestroy
OleCreateFontIndirect
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SysAllocString
SysReAllocStringLen
SysStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SafeArrayGetElemsize
SafeArrayGetDim
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VarDecFromStr
SafeArrayDestroyData
SystemTimeToVariantTime
oledlg
ord6
ord9
ord4
ord3
ord8
ord5
ord7
winhttp
WinHttpCloseHandle
WinHttpConnect
WinHttpReadData
WinHttpOpen
WinHttpCrackUrl
WinHttpOpenRequest
WinHttpSendRequest
WinHttpReceiveResponse
WinHttpQueryHeaders
ws2_32
connect
gethostbyname
socket
WSAStartup
send
closesocket
WSACleanup
htons
gdiplus
GdipBitmapUnlockBits
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipAlloc
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdiplusShutdown
oleacc
CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
winmm
PlaySoundA
Sections
.text Size: 7.7MB - Virtual size: 7.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 996KB - Virtual size: 995KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 44KB - Virtual size: 80KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 1024B - Virtual size: 777B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 265B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.Text0 Size: 624KB - Virtual size: 623KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 320KB - Virtual size: 319KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 5.2MB - Virtual size: 5.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ