08c4d6a588f192b1dfbfc262f7b33c0d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

08c4d6a588f192b1dfbfc262f7b33c0d_JaffaCakes118
Size

5.0MB
MD5

08c4d6a588f192b1dfbfc262f7b33c0d
SHA1

de35ffca16b74d81ca26f066352b2a1f5f9c65ee
SHA256

78bf7f70328f6728b96fd49579f98a27cce45ecb611acd922bbc6a2409f302be
SHA512

2a873a927633e32267ed420950431a9b5f4516ebe240838678cfa9d50b49ffdd382dd7e439e5e9d37abe7fcb8a10207958333cfdcc7bd98e1a2961c4ffd2be16
SSDEEP

98304:pcTVlpEArL3y49fJsEAGHe6klGDKYV9xTztU2tWSNxnGQwHiTcH:KVswy4pVvHul4x9U2ESNxGHiTcH

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/新系统注册/xqzy.dll	acprotect

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/新系统注册/xqzy.dll	upx

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/三国内部版.exe
unpack001/yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/新系统注册/xqzy.dll
unpack002/out.upx

Files

08c4d6a588f192b1dfbfc262f7b33c0d_JaffaCakes118
.rar
yxsggjjb/9553下载站.url
.url
yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/enablesoft.ini
yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/ggtpeshow/ggtpeshow.png
.png
yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/三国内部版.exe
.exe windows:5 windows x86 arch:x86

23ad97a0cc0472190d26aa51e483b8c1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\tc\TC4.0\TC4.045\Release\TCExe.pdb

Imports

kernel32

GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetConsoleCP
GetCPInfo
GetACP
FreeEnvironmentStringsW
IsValidCodePage
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
SetStdHandle
RaiseException
SetUnhandledExceptionFilter
HeapSize
GetFileType
HeapQueryInformation
RtlUnwind
VirtualQuery
GetDateFormatW
GetTimeFormatW
GetSystemTimeAsFileTime
CreateThread
ExitThread
HeapAlloc
DeleteCriticalSection
HeapReAlloc
HeapFree
EncodePointer
DecodePointer
GetStartupInfoW
HeapSetInformation
FindResourceExW
VirtualProtect
SetErrorMode
Sleep
GetNumberFormatW
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExW
GetVolumeInformationW
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
lstrcmpiW
InitializeCriticalSectionAndSpinCount
GlobalFlags
GetThreadLocale
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
LocalAlloc
ResumeThread
SetThreadPriority
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
lstrlenA
lstrcmpA
GetProfileIntW
ReleaseActCtx
CreateActCtxW
GetDiskFreeSpaceW
GetFileTime
ReplaceFileW
GetFileAttributesW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
lstrcmpW
GlobalGetAtomNameW
GlobalAddAtomW
GetCurrentThreadId
FreeResource
GlobalFree
CopyFileW
GlobalAlloc
lstrcpyW
lstrcpynW
ExitProcess
WriteProcessMemory
GetCommandLineW
GetCurrentProcessId
InterlockedExchange
MulDiv
GlobalUnlock
GlobalLock
GlobalSize
GlobalReAlloc
ActivateActCtx
DeactivateActCtx
SetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
InterlockedDecrement
InterlockedIncrement
SystemTimeToFileTime
GetModuleHandleW
GetSystemInfo
FileTimeToSystemTime
SetEndOfFile
SetFilePointer
GetFileSize
FindNextFileW
FindFirstFileW
FindClose
GetTempFileNameW
GetTempPathW
SearchPathW
GetCurrentDirectoryW
lstrlenW
GetFullPathNameW
DeleteFileW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
SetFileAttributesW
SetFileTime
CreateFileW
GetWindowsDirectoryW
LocalFree
FormatMessageW
GetModuleFileNameW
LoadLibraryW
FreeLibrary
SetConsoleMode
GetConsoleMode
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreW
ResetEvent
SetEvent
CreateEventW
WaitForSingleObject
GetVersionExW
SetConsoleCtrlHandler
SetCurrentDirectoryW
GetProcAddress
WideCharToMultiByte
MultiByteToWideChar
WaitForMultipleObjects
FileTimeToLocalFileTime
WriteFile
GetStdHandle
ReadFile
VirtualAlloc
VirtualFree
GetCurrentProcess
GetTickCount
LeaveCriticalSection
EnterCriticalSection
OpenEventW
UnmapViewOfFile
MapViewOfFile
OpenFileMappingW
GetLastError
CloseHandle
GetOEMCP

user32

SetCursorPos
LockWindowUpdate
GetKeyboardLayout
MapVirtualKeyExW
IsCharLowerW
GetNextDlgGroupItem
PostThreadMessageW
UnregisterClassW
CharNextW
InvalidateRgn
CopyAcceleratorTableW
SetParent
EmptyClipboard
SetClipboardData
OpenClipboard
GetMenuDefaultItem
SetMenuDefaultItem
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
NotifyWinEvent
MessageBeep
DeleteMenu
RealChildWindowFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
GetMenuItemInfoW
DrawIconEx
GetSysColorBrush
DrawFocusRect
ShowOwnedPopups
GetMessageW
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetAsyncKeyState
MapVirtualKeyW
GetKeyNameTextW
RegisterClipboardFormatW
SetWindowRgn
DrawIcon
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageA
IsChild
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcW
UnpackDDElParam
ReuseDDElParam
DestroyMenu
CopyIcon
WinHelpW
EqualRect
PeekMessageW
LoadAcceleratorsW
IsIconic
InsertMenuItemW
GetMenu
BringWindowToTop
SetMenu
TranslateAcceleratorW
LoadImageW
CopyImage
GetIconInfo
DestroyIcon
SetRectEmpty
LoadMenuW
GetWindowTextLengthW
GetWindowTextW
SetFocus
SetWindowPos
ShowWindow
MoveWindow
SetWindowLongW
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
CheckDlgButton
GetWindow
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
EndPaint
BeginPaint
GetWindowDC
GetWindowThreadProcessId
GetLastActivePopup
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
CharUpperW
CharLowerW
CharNextA
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
LoadBitmapW
DrawStateW
GetMenuState
GetMenuStringW
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
SetForegroundWindow
AppendMenuW
CreatePopupMenu
EnableMenuItem
GetMenuItemID
SetClassLongW
DestroyAcceleratorTable
GetUpdateRect
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
HideCaret
CharUpperBuffW
WaitMessage
DefFrameProcW
SubtractRect
GetWindowRgn
GetSystemMenu
LoadIconW
MessageBoxW
UnregisterHotKey
RegisterHotKey
UpdateWindow
RedrawWindow
WindowFromPoint
ClientToScreen
CopyRect
GetDoubleClickTime
DispatchMessageW
DestroyCursor
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
CharUpperA
SendMessageW
GetSysColor
InvalidateRect
GetSystemMetrics
ShowScrollBar
GetWindowRect
GetClientRect
IsWindowVisible
EnableWindow
GetClassNameW
EnumChildWindows
SystemParametersInfoW
GetDC
ReleaseDC
FillRect
FrameRect
DrawEdge
InflateRect
DrawTextW
SetCursor
LoadCursorW
SetRect
IsWindow
GetClassInfoW
DefWindowProcW
GetParent
IntersectRect
GetKeyState
KillTimer
GetCursorPos
ScreenToClient
IsClipboardFormatAvailable
GetMessagePos
GetFocus
PostMessageW
PtInRect
InvertRect
SetCapture
ClipCursor
SetTimer
GetCapture
ReleaseCapture
TabbedTextOutW
DrawTextExW
GrayStringW
DrawFrameControl
IsRectEmpty
OffsetRect
TranslateMessage
CloseClipboard

gdi32

CreateBitmap
SelectPalette
GetObjectType
CreateHatchBrush
CreateEllipticRgn
DPtoLP
LPtoDP
Ellipse
SetRectRgn
GetMapMode
CreatePolygonRgn
GetTextColor
Polyline
Polygon
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
RealizePalette
StretchBlt
SetPixel
CreatePatternBrush
GetRgnBox
OffsetRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
PtInRegion
FrameRgn
GetBoundsRect
SetPixelV
GetTextFaceW
IntersectClipRect
ExcludeClipRect
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
DeleteObject
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateDCW
CopyMetaFileW
Rectangle
RoundRect
CreateDIBSection
SetDIBColorTable
SelectObject
DeleteDC
PatBlt
GetTextMetricsW
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateFontW
CreatePen
BitBlt
GetBkColor
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
GetCurrentObject
GetTextExtentPoint32W
CreateFontIndirectW
FillRgn
GetWindowOrgEx
CreateSolidBrush
CombineRgn
CreateRectRgnIndirect
GetObjectW
GetStockObject
LineTo

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueW
RegSetValueExW
RegQueryValueExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
GetFileSecurityW
SetFileSecurityW

shell32

SHFileOperationW
SHBrowseForFolderW
SHGetPathFromIDListW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteW
SHAppBarMessage
SHGetFileInfoW
SHGetMalloc
Shell_NotifyIconW

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathFileExistsW

ole32

CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitializeEx
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
OleInitialize
OleUninitialize
CreateStreamOnHGlobal
OleDraw
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
OleLockRunning
OleSetClipboard
CoTaskMemFree
CoUninitialize
CoInitialize
OleRun
CoCreateInstance
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
CoFreeUnusedLibraries
OleCreateMenuDescriptor

oleaut32

VariantCopy
VariantInit
SysStringLen
SafeArrayCreate
SafeArrayPutElement
VariantChangeType
SafeArrayDestroy
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
SafeArrayAccessData
SafeArrayUnaccessData
VarDateFromStr
SafeArrayGetUBound
VariantClear
SafeArrayGetElemsize
SafeArrayGetDim
VarBstrFromDate
OleCreateFontIndirect
SysAllocStringByteLen
SysAllocString
SysFreeString
SafeArrayGetLBound
GetErrorInfo

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdiplusShutdown
GdipDrawImageRectI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW
mciGetErrorStringW
mciSendCommandW

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 375KB - Virtual size: 374KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.CHK
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/新系统注册/xqzy.dll
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

??0CxFile@@QAE@ABV0@@Z
??0CxFile@@QAE@XZ
??0CxIOFile@@QAE@ABV0@@Z
??0CxIOFile@@QAE@PAU_iobuf@@@Z
??0CxMemFile@@QAE@ABV0@@Z
??1CxFile@@UAE@XZ
??1CxIOFile@@UAE@XZ
??1CxImage@@UAE@XZ
??4CxFile@@QAEAAV0@ABV0@@Z
??4CxIOFile@@QAEAAV0@ABV0@@Z
??4CxMemFile@@QAEAAV0@ABV0@@Z
??_7CxFile@@6B@
??_7CxIOFile@@6B@
??_7CxImage@@6B@
??_7CxMemFile@@6B@
??_FCxIOFile@@QAEXXZ
??_FCxImage@@QAEXXZ
??_FCxMemFile@@QAEXXZ
??_OCxImage@@QAEXABV0@@Z
?Close@CxIOFile@@UAE_NXZ
?Eof@CxIOFile@@UAE_NXZ
?Error@CxIOFile@@UAEJXZ
?Flush@CxIOFile@@UAE_NXZ
?GetC@CxIOFile@@UAEJXZ
?GetS@CxIOFile@@UAEPADPADH@Z
?Open@CxIOFile@@QAE_NPBD0@Z
?PutC@CxFile@@UAE_NE@Z
?PutC@CxIOFile@@UAE_NE@Z
?Read@CxIOFile@@UAEIPAXII@Z
?Scanf@CxIOFile@@UAEJPBDPAX@Z
?Seek@CxIOFile@@UAE_NJH@Z
?Size@CxIOFile@@UAEJXZ
?Tell@CxIOFile@@UAEJXZ
?Write@CxIOFile@@UAEIPBXII@Z
CBFunA
CBFunB
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

UPX0
Size: - Virtual size: 680KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 762KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 740KB - Virtual size: 737KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 228KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tp0
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tp1
Size: 168KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
yxsggjjb/yxsgwmxhsfbfz/英雄三国完美1.5/新系统注册/新系统双击此文件注册一遍.bat
yxsggjjb/使用更新说明.txt

Sharing

General

Malware Config

Signatures

Files

23ad97a0cc0472190d26aa51e483b8c1

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 375KB - Virtual size: 374KB

.data Size: 36KB - Virtual size: 155KB

.rsrc Size: 1.7MB - Virtual size: 1.8MB

.reloc Size: 209KB - Virtual size: 209KB

.CHK Size: 3.0MB - Virtual size: 3.0MB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 680KB

UPX1 Size: 762KB - Virtual size: 764KB

.rsrc Size: 50KB - Virtual size: 52KB

Headers

File Characteristics

Sections

.text Size: 740KB - Virtual size: 737KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 36KB - Virtual size: 108KB

.rsrc Size: 228KB - Virtual size: 224KB

.tp0 Size: 48KB - Virtual size: 44KB

.tp1 Size: 168KB - Virtual size: 164KB

.reloc Size: 36KB - Virtual size: 33KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 375KB - Virtual size: 374KB

.data
Size: 36KB - Virtual size: 155KB

.rsrc
Size: 1.7MB - Virtual size: 1.8MB

.reloc
Size: 209KB - Virtual size: 209KB

.CHK
Size: 3.0MB - Virtual size: 3.0MB

UPX0
Size: - Virtual size: 680KB

UPX1
Size: 762KB - Virtual size: 764KB

.rsrc
Size: 50KB - Virtual size: 52KB

.text
Size: 740KB - Virtual size: 737KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 36KB - Virtual size: 108KB

.rsrc
Size: 228KB - Virtual size: 224KB

.tp0
Size: 48KB - Virtual size: 44KB

.tp1
Size: 168KB - Virtual size: 164KB

.reloc
Size: 36KB - Virtual size: 33KB