UNLOCKER_MODS[.]rar

Sharing

Copy URL

Twitter E-mail

General

Target

UNLOCKER_MODS.rar
Size

18.3MB
MD5

be7343b14fae5a29f161f717cfd12612
SHA1

40ba8c3b3213999ec19c44dfc715d85e2f7062f1
SHA256

bd50ae2f1c5b54b6d935a81a02dee0eb3637801683332b3520c628e72c1c5422
SHA512

9237fad990aad17d2f9758bb88447ffe8fc0974088fe50c4b0a979cf971f0e3596c9bf39bcf74c93505dfae9489719052abfb4e70841be307f852b4c0e248721
SSDEEP

393216:S0KtV8DnhKw6dr3VuNsNra7KeYw+X6L4ulx3gzlimSD:S0MinhKZdsWBa7z+M4oxmi3

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack007/S3 unlocker by NAB/ip-patch.exe	upx

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack005/RevBouncerV3.59.exe
unpack007/S3 unlocker by NAB/LFS.exe
unpack007/S3 unlocker by NAB/ProStudios.exe
unpack007/S3 unlocker by NAB/Pro_Tweaker_0.6R.exe
unpack007/S3 unlocker by NAB/ip-patch.exe
unpack008/out.upx
unpack007/S3 unlocker by NAB/no_track_patch.exe

Files

UNLOCKER_MODS.rar
.rar
NAB supply.rar
.rar
NAB supply/A3 2011.rar
.rar
dds/A3_ALPHA.dds
dds/A3__ALP.dds
dds/A3a_ALPHA.dds
dds/A3b_ALPHA.dds
dds/A3c_ALPHA.dds
dds/A3c__ALP.dds
dds/A3d_ALPHA.dds
dds/LIGHT2_A3.dds
dds/LIGHT_A3.dds
dds/LUZ_A3.dds
setup/XRG_A3.set
tweak pos/a3 down pipe intake remap.pt06H-all
tweak pos/a3 stage 4.pt06H-all
tweak pos/a3.pos
tweak pos/a3.pt06H-all
veh/XR.VOB
NAB supply/AFGHAN MOD/tweaks/afgh2jz.pt06H-all
NAB supply/AFGHAN MOD/tweaks/afghanv8.pt06H-all
NAB supply/AFGHAN MOD/veh/XR.vob
NAB supply/Honda_Civic_1998.rar
.rar
Honda Civic 1998/- Araç/data/dds/HND_Interior1.dds
Honda Civic 1998/- Araç/data/dds/HND_RENK.dds
Honda Civic 1998/- Araç/data/dds/HNDi_Interior1.dds
Honda Civic 1998/- Araç/data/dds/HNDi_Interior2.dds
Honda Civic 1998/- Araç/data/dds/HNDi_leather.dds
Honda Civic 1998/- Araç/data/dds/HNDi_leather3.dds
Honda Civic 1998/- Araç/data/dds/VTİ_Egsoz.dds
Honda Civic 1998/- Araç/data/dds/VTİ_Far.dds
Honda Civic 1998/- Araç/data/dds/VTİ_beaks.dds
Honda Civic 1998/- Araç/data/dds/VTİ_bplaka.dds
Honda Civic 1998/- Araç/data/dds/VTİ_fplaka.dds
Honda Civic 1998/- Araç/data/dds/VTİ_yanık.dds
Honda Civic 1998/- Araç/data/dds/padsz.dds
Honda Civic 1998/- Araç/data/dds/s_VTwindowALPHA.dds
Honda Civic 1998/- Araç/data/dds/s_glassALPHA.dds
Honda Civic 1998/- Araç/data/dds/s_windowALPHA.dds
Honda Civic 1998/- Araç/data/dds/s_windxrALPHA.dds
Honda Civic 1998/- Araç/data/veh/XR.vob
Honda Civic 1998/- Jant/- Like.txt
Honda Civic 1998/- Resimler/Drıftlowe.jpg
.jpg
Honda Civic 1998/- Yapımcı/- Admin İletişim.txt
XR.vob
NAB supply/READ.txt
NAB supply/RevBouncer.7z.zip
.7z
RevBouncerV3.59.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NAB supply/vr6VELOCITY.zip
.zip
vr6velo/VR6velo.jpg
.jpg
vr6velo/XRG_VELO.dds
vr6velo/XRG_mk1 ^5VELO.set
vr6velo/dds/battry.dds
vr6velo/dds/dashboard.dds
vr6velo/dds/lights.dds
vr6velo/dds/mudflap.dds
vr6velo/dds/roof.dds
vr6velo/dds/seathead.dds
vr6velo/dds/velexta.dds
vr6velo/dds/veloALPHA.dds
vr6velo/dds/veloALPHA.jpg
.jpg
vr6velo/dds/velofloor.dds
vr6velo/dds/velogril.dds
vr6velo/dds/veloplate.dds
vr6velo/dds/veloseat1.dds
vr6velo/dds/veloseat2.dds
vr6velo/dds/veloseat4.dds
vr6velo/dds/vvlpanal1.dds
vr6velo/dds/vvlpanal2.dds
vr6velo/model/sterr.obj
vr6velo/model/vr6velo.obj
vr6velo/veh/XR.vob
vr6velo/vr6 velo.pt06H-all
vr6velo/vr6.pos
S3 unlocker by NAB.rar
.rar
READ.txt
S3 unlocker by NAB/LFS.exe
.exe windows:4 windows x86 arch:x86

8a7ce7557b5ee9e6135cc7f386b9ac09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumWindows
GetDC
ReleaseDC
DrawTextW
GetKeyboardLayoutNameA
GetKeyboardLayout
SetForegroundWindow
SendMessageA
MessageBoxA
GetClientRect
SetWindowLongA
ShowWindow
GetForegroundWindow
SetWindowTextA
ClipCursor
ClientToScreen
DispatchMessageA
TranslateMessage
PeekMessageA
ShowCursor
FindWindowA
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
GetKeyState
ToAscii
SendInput
OpenClipboard
EmptyClipboard
CloseClipboard
SetClipboardData
GetClipboardData
InvalidateRgn
UpdateWindow
BeginPaint
FillRect
EndPaint
SetCapture
ValidateRgn
ReleaseCapture
SetWindowPos
GetWindowLongA
AdjustWindowRectEx
SetCursorPos
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
DefWindowProcA
TrackMouseEvent
SystemParametersInfoA
GetClassNameA

gdi32

CreateFontA
SelectObject
GetDIBits
DeleteObject
DeleteDC
CreateDIBitmap
EnumFontFamiliesExA
SetDIBits
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetStockObject
GetCharWidth32W
SetPixel

winmm

timeBeginPeriod
timeGetDevCaps
timeGetTime

ws2_32

sendto
htons
recvfrom
WSAEnumNetworkEvents
send
WSAEventSelect
connect
socket
inet_ntoa
closesocket
recv
listen
bind
inet_addr
setsockopt
accept
WSACleanup
WSAStartup
WSAGetLastError
gethostbyname

shell32

ShellExecuteA

dinput8

DirectInput8Create

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

dsound

ord11
ord2

imm32

ImmGetCompositionStringA
ImmGetContext
ImmGetOpenStatus
ImmGetConversionStatus
ImmGetCandidateListA
ImmGetGuideLineA
ImmSetConversionStatus
ImmReleaseContext
ImmSetOpenStatus

rpcrt4

UuidToStringA
UuidFromStringA

kernel32

GetModuleFileNameA
HeapSize
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
WriteFile
SetFilePointer
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
ReadFile
CloseHandle
TlsGetValue
SetLastError
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetFileAttributesA
GetExitCodeProcess
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapReAlloc
HeapFree
HeapAlloc
ExitProcess
GetVersion
GetStartupInfoA
GetTimeZoneInformation
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
CreateDirectoryA
InterlockedIncrement
InterlockedDecrement
MoveFileA
DeleteFileA
RtlUnwind
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GlobalGetAtomNameA
lstrcpyA
GetVersionExA
WaitForSingleObject
CreateProcessA
FlushFileBuffers
CreateFileA
GetCPInfo
GetStringTypeA
GetStringTypeW
GetOEMCP
SetEndOfFile
CompareStringA
CompareStringW
InterlockedExchange
RaiseException
LoadLibraryExA
LoadLibraryA
GetProcAddress
FileTimeToSystemTime
CompareFileTime
FindClose
FindNextFileA
FindFirstFileA
Sleep
FormatMessageA
GetLastError
GetACP
GetLocaleInfoA
GlobalDeleteAtom
GlobalAddAtomA
GetCommandLineA
GetUserDefaultLangID
CreateThread
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CreateEventA
GetSystemTimeAsFileTime
SetProcessAffinityMask
GetProcessAffinityMask
GetCurrentProcess
GetSystemTime
GetLocalTime
SetFileApisToANSI
FreeLibrary

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 508KB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
S3 unlocker by NAB/ProStudios.exe
.exe windows:5 windows x86 arch:x86

bf5a4aa99e5b160f8521cadd6bfe73b8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

kernel32

RaiseException
GetLastError
MultiByteToWideChar
lstrlenA
InterlockedDecrement
GetProcAddress
LoadLibraryA
FreeResource
SizeofResource
LockResource
LoadResource
FindResourceA
GetModuleHandleA
Module32Next
CloseHandle
Module32First
CreateToolhelp32Snapshot
GetCurrentProcessId
SetEndOfFile
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
HeapFree
GetProcessHeap
HeapAlloc
GetCommandLineA
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
HeapSize
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
ReadFile
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
FlushFileBuffers
SetFilePointer
SetHandleCount
GetFileType
GetStartupInfoA
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
CompareStringA
CompareStringW
SetEnvironmentVariableA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA

ole32

OleInitialize

oleaut32

SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SafeArrayCreateVector
VariantClear
VariantInit
SysFreeString
SysAllocString

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
S3 unlocker by NAB/Pro_Tweaker_0.6R.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
S3 unlocker by NAB/ip-patch.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
S3 unlocker by NAB/no_track_patch.exe
.exe windows:4 windows x86 arch:x86

e3d1aee26ceee8896d0af64b261be1bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

AddAtomA
CreateSemaphoreA
ExitProcess
FindAtomA
GetAtomNameA
GetCurrentProcess
GetLastError
GetModuleHandleA
GetProcAddress
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WaitForSingleObject

msvcrt

_fdopen
_read
_strdup
_write
__getmainargs
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_ctype
_errno
_filelengthi64
_fstati64
_iob
_isctype
_lseeki64
_onexit
_pctype
_setmode
_strnicmp
_vsnprintf
abort
atexit
fclose
fflush
fgetpos
fopen
fprintf
fread
free
fsetpos
fwrite
getc
localeconv
malloc
memchr
memcpy
memmove
memset
putc
setlocale
setvbuf
signal
strcmp
strcoll
strcpy
strftime
strlen
strtod
strxfrm
system
ungetc

Sections

.text
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 107KB - Virtual size: 107KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 12B

8a7ce7557b5ee9e6135cc7f386b9ac09

Headers

File Characteristics

Imports

user32

gdi32

winmm

ws2_32

shell32

dinput8

advapi32

dsound

imm32

rpcrt4

kernel32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 508KB - Virtual size: 7.1MB

.rsrc Size: 32KB - Virtual size: 31KB

bf5a4aa99e5b160f8521cadd6bfe73b8

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

ole32

oleaut32

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 2.7MB - Virtual size: 2.7MB

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 4.5MB - Virtual size: 4.5MB

.rsrc Size: 28KB - Virtual size: 27KB

.reloc Size: 512B - Virtual size: 12B

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 32KB

UPX1 Size: 8KB - Virtual size: 12KB

.rsrc Size: 3KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 4KB

e3d1aee26ceee8896d0af64b261be1bc

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

Sections

.text
Size: 107KB - Virtual size: 107KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 508KB - Virtual size: 7.1MB

.rsrc
Size: 32KB - Virtual size: 31KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

.text
Size: 4.5MB - Virtual size: 4.5MB

.rsrc
Size: 28KB - Virtual size: 27KB

.reloc
Size: 512B - Virtual size: 12B

UPX0
Size: - Virtual size: 32KB

UPX1
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 3KB - Virtual size: 4KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 4KB

.text
Size: 247KB - Virtual size: 246KB

.data
Size: 512B - Virtual size: 416B

.rdata
Size: 10KB - Virtual size: 9KB

.bss
Size: - Virtual size: 18KB

.idata
Size: 2KB - Virtual size: 2KB