69220e9b6c4dc0d5fa7157c9eed02273154b1109626c79f399adec26b0b1d08b

Sharing

Copy URL Twitter E-mail

General

Target

69220e9b6c4dc0d5fa7157c9eed02273154b1109626c79f399adec26b0b1d08b
Size

3.0MB
MD5

d50e8470efd1ba2cfc250e92663aebda
SHA1

c2bbfcc8f97db10cdff239dd09a220167cf5020a
SHA256

69220e9b6c4dc0d5fa7157c9eed02273154b1109626c79f399adec26b0b1d08b
SHA512

f69820df286139ffdf44883f76a5c525f9003f05754b9404e5d8d5894042fa3c71837e61285cbef5da109d42fecb86a7a2fc44ec761f324fa7dc6336813d6b4c
SSDEEP

49152:zi/gBF/yYhvQPx9pre50QzCoh5urAvj0nLvwSX6IX1hLwrLudswz0EKJDGHPm:bjEx9pre59zpm09SX6C1hLuNGH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69220e9b6c4dc0d5fa7157c9eed02273154b1109626c79f399adec26b0b1d08b

Files

69220e9b6c4dc0d5fa7157c9eed02273154b1109626c79f399adec26b0b1d08b
.dll windows:6 windows x86 arch:x86

8ff539afe27e0ca7402d7a68ac75d5fd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Admin\Downloads\Millennium-e7c6b29ecce80d2178336b5e55ca49023b013754\Millennium-e7c6b29ecce80d2178336b5e55ca49023b013754\dist\millennium.Release-x86-Windows_NT\User32.pdb

Imports

ws2_32

WSASetLastError
ntohl
WSAIoctl
ntohs
bind
listen
accept
getsockopt
WSARecv
WSAAddressToStringW
connect
WSACleanup
WSASend
__WSAFDIsSet
shutdown
WSASocketW
htonl
htons
freeaddrinfo
ioctlsocket
getaddrinfo
WSAStartup
getpeername
getsockname
select
setsockopt
closesocket
WSAGetLastError

d3dx9_43

D3DXCreateTextureFromFileInMemory

kernel32

UnhandledExceptionFilter
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GetFileInformationByHandleEx
MoveFileExW
AreFileApisANSI
SetWaitableTimer
TlsSetValue
VerifyVersionInfoA
SetLastError
EnterCriticalSection
GetCommandLineW
WaitForMultipleObjects
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GetQueuedCompletionStatus
WaitForSingleObject
GetModuleHandleA
PostQueuedCompletionStatus
GetCommandLineA
CreateEventW
Sleep
FormatMessageW
GetLastError
SetEvent
TerminateThread
TlsAlloc
CloseHandle
CancelIoEx
CreateThread
QueueUserAPC
CreateWaitableTimerA
GetProcAddress
LocalFree
DeleteCriticalSection
VerSetConditionMask
WideCharToMultiByte
SleepEx
TlsGetValue
GetSystemTimeAsFileTime
TerminateProcess
CreateIoCompletionPort
GetCurrentProcess
K32GetProcessMemoryInfo
CreateProcessA
MultiByteToWideChar
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
LoadLibraryA
QueryPerformanceFrequency
FreeLibrary
VerifyVersionInfoW
QueryPerformanceCounter
GetModuleFileNameA
Process32First
GetCurrentThreadId
OpenProcess
CreateToolhelp32Snapshot
Process32Next
GetCurrentProcessId
SetConsoleTitleA
DisableThreadLibraryCalls
ExitProcess
AllocConsole
GetEnvironmentVariableA
CreateFileA
ResetEvent
GetOverlappedResult
ReadDirectoryChangesW
CreateEventA
SetConsoleTextAttribute
GetStdHandle
InitializeSListHead
SetFileInformationByHandle
GetFileAttributesExW
FindNextFileW
FindFirstFileExW
FindFirstFileW
FindClose
CreateFileW
CreateDirectoryW
GetLocaleInfoEx
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
FormatMessageA
GetProcessHeap
HeapFree
InterlockedPushEntrySList
LoadLibraryW
HeapAlloc
RaiseException
TlsFree
VirtualQuery

user32

UnregisterClassA
GetWindowThreadProcessId
DispatchMessageA
GetWindowRect
SetActiveWindow
CreateWindowExW
GetSystemMetrics
UnregisterClassW
RegisterClassExW
AttachThreadInput
MoveWindow
TranslateMessage
GetClientRect
PostQuitMessage
UpdateWindow
GetWindowLongW
AdjustWindowRectEx
GetKeyState
LoadCursorA
DestroyWindow
GetDC
SetWindowPos
MonitorFromWindow
EnumDisplayMonitors
ScreenToClient
SetWindowTextW
WindowFromPoint
ShowWindow
GetCapture
SetWindowLongA
ClientToScreen
IsChild
GetMonitorInfoA
DefWindowProcA
CreateWindowExA
SetLayeredWindowAttributes
SetFocus
PeekMessageA
RegisterClassExA
ReleaseCapture
SetForegroundWindow
IsIconic
SetCursorPos
ReleaseDC
GetCursorPos
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
BringWindowToTop
SetCapture
SetCursor
SetWindowLongW
SetClipboardData
GetForegroundWindow
MessageBoxA
FindWindowA

gdi32

GetDeviceCaps

advapi32

RegCloseKey
RegGetValueA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

shell32

DragQueryFileA
ExtractIconExA
DragAcceptFiles
ShellExecuteA
CommandLineToArgvW

ole32

RegisterDragDrop
ReleaseStgMedium
CoCreateFreeThreadedMarshaler

boost_random-vc143-mt-x32-1_79

??1random_device@random@boost@@QAE@XZ
??0random_device@random@boost@@QAE@XZ
??Rrandom_device@random@boost@@QAEIXZ

msvcp140

??7ios_base@std@@QBE_NXZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
_Cnd_destroy_in_situ
_Cnd_broadcast
_Cnd_wait
_Cnd_register_at_thread_exit
?__ExceptionPtrToBool@@YA_NPBX@Z
?_Random_device@std@@YAIXZ
_Cnd_init_in_situ
_Cnd_unregister_at_thread_exit
??0_Locinfo@std@@QAE@PBD@Z
??1_Locinfo@std@@QAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Xinvalid_argument@std@@YAXPBD@Z
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Gettrue@_Locinfo@std@@QBEPBDXZ
??Bid@locale@std@@QAEIXZ
?_Incref@facet@locale@std@@UAEXXZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
??0facet@locale@std@@IAE@I@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??Bios_base@std@@QBE_NXZ
?id@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
_Xtime_get_ticks
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?put@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QBE?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBUtm@@PBD3@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??1facet@locale@std@@MAE@XZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?is@?$ctype@D@std@@QBE_NFD@Z
?tolower@?$ctype@D@std@@QBEDD@Z
?tolower@?$ctype@D@std@@QBEPBDPADPBD@Z
?toupper@?$ctype@D@std@@QBEDD@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?good@ios_base@std@@QBE_NXZ
?eof@ios_base@std@@QBE_NXZ
?fail@ios_base@std@@QBE_NXZ
?bad@ios_base@std@@QBE_NXZ
?flags@ios_base@std@@QBEHXZ
?setf@ios_base@std@@QAEHH@Z
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
_Strxfrm
?__ExceptionPtrCopy@@YAXPAXPBX@Z
_Query_perf_frequency
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Throw_Cpp_error@std@@YAXH@Z
?uncaught_exceptions@std@@YAHXZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?classic@locale@std@@SAABV12@XZ
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?_Winerror_map@std@@YAHH@Z
?_Xbad_function_call@std@@YAXXZ
?id@?$numpunct@D@std@@2V0locale@2@A
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?id@?$ctype@D@std@@2V0locale@2@A
?_Xlength_error@std@@YAXPBD@Z
?id@?$collate@D@std@@2V0locale@2@A
?_Syserror_map@std@@YAPBDH@Z
_Mtx_destroy_in_situ
?__ExceptionPtrDestroy@@YAXPAX@Z
_Mtx_lock
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
_Mtx_init_in_situ
_Strcoll
_Cnd_do_broadcast_at_thread_exit
_Thrd_id
_Query_perf_counter
_Thrd_detach
_Thrd_join
_Mtx_unlock
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ
?c_str@?$_Yarn@D@std@@QBEPBDXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?gcount@?$basic_istream@DU?$char_traits@D@std@@@std@@QBE_JXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?setf@ios_base@std@@QAEHHH@Z

wininet

InternetOpenUrlA
InternetOpenA
InternetCloseHandle
InternetReadFile
HttpQueryInfoA
HttpOpenRequestA
HttpSendRequestA
InternetConnectA

d3d9

Direct3DCreate9

imm32

ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow

dwmapi

DwmExtendFrameIntoClientArea
DwmIsCompositionEnabled

winmm

PlaySoundA

vcruntime140

__RTDynamicCast
memcmp
__CxxFrameHandler3
__std_exception_destroy
__std_exception_copy
__std_type_info_compare
_purecall
__std_terminate
strchr
strstr
_CxxThrowException
memcpy
memmove
memset
_except_handler4_common
__current_exception
__current_exception_context
__std_type_info_destroy_list
__vcrt_GetModuleFileNameW
__vcrt_LoadLibraryExW
memchr

api-ms-win-crt-stdio-l1-1-0

fgetc
fclose
__stdio_common_vsscanf
fseek
fflush
__acrt_iob_func
fwrite
fputc
__stdio_common_vsprintf
fgetpos
setvbuf
_wfopen
freopen
ungetc
fsetpos
_get_stream_buffer_pointers
fread
_fseeki64
__stdio_common_vsprintf_s
ftell

api-ms-win-crt-heap-l1-1-0

malloc
realloc
_callnewh
free
calloc

api-ms-win-crt-math-l1-1-0

_CIfmod
_dclass
_dsign
_fdsign
_fdclass
_ldclass
_libm_sse2_acos_precise
_ldsign
_libm_sse2_cos_precise
_libm_sse2_log_precise
_libm_sse2_pow_precise
round
_CIatan2
ceil
_libm_sse2_sqrt_precise
_libm_sse2_sin_precise

api-ms-win-crt-time-l1-1-0

strftime
_localtime64_s
_time64
_localtime64

api-ms-win-crt-convert-l1-1-0

atof
strtol
strtod
atoi
strtoull
strtoul
strtoll

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo_noreturn
_initterm_e
_initterm
_cexit
_crt_atexit
_invalid_parameter_noinfo
_execute_onexit_table
_register_onexit_function
_errno
_initialize_onexit_table
_initialize_narrow_environment
strerror
terminate
_beginthreadex
_configure_narrow_argv
_seh_filter_dll
abort

api-ms-win-crt-string-l1-1-0

strcat_s
tolower
isalpha
isalnum
strncmp
strncpy
strcpy_s
isxdigit
isdigit
iswspace

api-ms-win-crt-filesystem-l1-1-0

_lock_file
_unlock_file

api-ms-win-crt-locale-l1-1-0

localeconv
___lc_codepage_func

api-ms-win-crt-utility-l1-1-0

qsort

oleaut32

SysAllocString
SysStringLen
GetErrorInfo
SetErrorInfo
SysFreeString

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 445KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 304KB - Virtual size: 338KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ff539afe27e0ca7402d7a68ac75d5fd

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

d3dx9_43

kernel32

user32

gdi32

advapi32

shell32

ole32

boost_random-vc143-mt-x32-1_79

msvcp140

wininet

d3d9

imm32

dwmapi

winmm

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-utility-l1-1-0

oleaut32

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 445KB - Virtual size: 445KB

.data Size: 304KB - Virtual size: 338KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 82KB - Virtual size: 81KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 445KB - Virtual size: 445KB

.data
Size: 304KB - Virtual size: 338KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 82KB - Virtual size: 81KB