@@Wrksheet@Finalize
@@Wrksheet@Initialize
_Form1
_OKBottomDlg
__GetExceptDLLinfo
___CPPdebugHook
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
14150bb5c92965066b2927b5742c7a10_NeikiAnalytics.exe
Resource
win7-20240508-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
14150bb5c92965066b2927b5742c7a10_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
14150bb5c92965066b2927b5742c7a10_NeikiAnalytics
-
Size
168KB
-
MD5
14150bb5c92965066b2927b5742c7a10
-
SHA1
ca93145bf40e247f9e032154d5f24b8af5b29718
-
SHA256
dda8b18e57dd05da8a04537475b28de599aa570ec98cd93bc15d6c781488ef48
-
SHA512
1f57b2e8604197011a36bfecba89b947e576d8f5491eb7563a477da699994d6a07b75e85d86ca293b7ffe731cefce73182c5a1153fb09856ced3525bdc994010
-
SSDEEP
3072:YHuFDukyAAHulkPFeW0HAUOLlDSAJ0wxnBG:dD1TkNUwS4B
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 14150bb5c92965066b2927b5742c7a10_NeikiAnalytics
Files
-
14150bb5c92965066b2927b5742c7a10_NeikiAnalytics.exe windows:4 windows x86 arch:x86
a7c9a1f1dc74ac4f40ec71d5c5812fef
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
vcl60.bpl
@Consts@initialization$qqrv
@Consts@Finalization$qqrv
@Graphics@initialization$qqrv
@Graphics@Finalization$qqrv
@Printers@initialization$qqrv
@Printers@Finalization$qqrv
@Stdctrls@initialization$qqrv
@Stdctrls@Finalization$qqrv
@Stdctrls@TRadioButton@
@Stdctrls@TCheckBox@
@Stdctrls@TButton@
@Stdctrls@TComboBox@
@Stdctrls@TEdit@
@Stdctrls@TLabel@
@Extctrls@initialization$qqrv
@Extctrls@Finalization$qqrv
@Extctrls@TPanel@
@Extctrls@TBevel@
@Dialogs@initialization$qqrv
@Dialogs@Finalization$qqrv
@Dialogs@ShowMessage$qqrx17System@AnsiString
@Clipbrd@initialization$qqrv
@Clipbrd@Finalization$qqrv
@Stdactns@initialization$qqrv
@Stdactns@Finalization$qqrv
@Winhelpviewer@initialization$qqrv
@Winhelpviewer@Finalization$qqrv
@Actnlist@initialization$qqrv
@Actnlist@Finalization$qqrv
@Forms@initialization$qqrv
@Forms@Finalization$qqrv
@Forms@TApplication@ShowException$qqrp18Sysutils@Exception
@Forms@TApplication@MessageBox$qqrpxct1i
@Forms@TApplication@Terminate$qqrv
@Forms@TApplication@Run$qqrv
@Forms@TApplication@CreateForm$qqrp17System@TMetaClasspv
@Forms@TApplication@Initialize$qqrv
@Forms@TApplication@SetTitle$qqrx17System@AnsiString
@Forms@TCustomForm@QueryInterface$qqsrx5_GUIDpv
@Forms@TCustomForm@UpdateActions$qqrv
@Forms@TCustomForm@ShowModal$qqrv
@Forms@TCustomForm@SetFocus$qqrv
@Forms@TCustomForm@CloseQuery$qqrv
@Forms@TCustomForm@Resizing$qqr18Forms@TWindowState
@Forms@TCustomForm@PaintWindow$qqrui
@Forms@TCustomForm@SetFocusedControl$qqrp20Controls@TWinControl
@Forms@TCustomForm@DefaultHandler$qqrpv
@Forms@TCustomForm@DestroyWindowHandle$qqrv
@Forms@TCustomForm@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Forms@TCustomForm@CreateWnd$qqrv
@Forms@TCustomForm@CreateParams$qqrr22Controls@TCreateParams
@Forms@TCustomForm@AlignControls$qqrp17Controls@TControlr11Types@TRect
@Forms@TCustomForm@WndProc$qqrr17Messages@TMessage
@Forms@TCustomForm@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Forms@TCustomForm@SetParent$qqrp20Controls@TWinControl
@Forms@TCustomForm@WantChildKey$qqrp17Controls@TControlr17Messages@TMessage
@Forms@TCustomForm@SetParentBiDiMode$qqro
@Forms@TCustomForm@GetFloating$qqrv
@Forms@TCustomForm@GetClientRect$qqrv
@Forms@TCustomForm@DefineProperties$qqrp14Classes@TFiler
@Forms@TCustomForm@ReadState$qqrp15Classes@TReader
@Forms@TCustomForm@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Forms@TCustomForm@Loaded$qqrv
@Forms@TCustomForm@DoDestroy$qqrv
@Forms@TCustomForm@DoCreate$qqrv
@Forms@TCustomForm@$bdtr$qqrv
@Forms@TCustomForm@BeforeDestruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponenti
@Forms@TCustomForm@AfterConstruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponent
@Forms@TScrollingWinControl@AdjustClientRect$qqrr11Types@TRect
@Forms@TScrollingWinControl@AutoScrollInView$qqrp17Controls@TControl
@Forms@TScrollingWinControl@AutoScrollEnabled$qqrv
@Forms@TScrollingWinControl@$bdtr$qqrv
@Forms@Application
@$xp$11Forms@TForm
@Forms@TForm@
@Imglist@initialization$qqrv
@Imglist@Finalization$qqrv
@Menus@initialization$qqrv
@Menus@Finalization$qqrv
@Controls@initialization$qqrv
@Controls@Finalization$qqrv
@Controls@TWinControl@CanAutoSize$qqrrit1
@Controls@TWinControl@AssignTo$qqrp19Classes@TPersistent
@Controls@TWinControl@ConstrainedResize$qqrrit1t1t1
@Controls@TWinControl@CanResize$qqrrit1
@Controls@TWinControl@GetClientOrigin$qqrv
@Controls@TWinControl@GetControlExtents$qqrv
@Controls@TWinControl@Repaint$qqrv
@Controls@TWinControl@Update$qqrv
@Controls@TWinControl@Invalidate$qqrv
@Controls@TWinControl@GetDeviceContext$qqrrui
@Controls@TWinControl@ShowControl$qqrp17Controls@TControl
@Controls@TWinControl@SetBounds$qqriiii
@Controls@TWinControl@CustomAlignPosition$qqrp17Controls@TControlrit2t2t2r11Types@TRectrx19Controls@TAlignInfo
@Controls@TWinControl@CustomAlignInsertBefore$qqrp17Controls@TControlt1
@Controls@TWinControl@CreateHandle$qqrv
@Controls@TWinControl@DestroyWnd$qqrv
@Controls@TWinControl@$bdtr$qqrv
@Controls@TControl@InitiateAction$qqrv
@Controls@TControl@GetFloatingDockSiteClass$qqrv
@Controls@TControl@SetBiDiMode$qqr17Classes@TBiDiMode
@Controls@TControl@SetText$qqrx17System@AnsiString
@Controls@TControl@GetText$qqrv
@Controls@TControl@SetEnabled$qqro
@Controls@TControl@SetName$qqrx17System@AnsiString
@Controls@TControl@SetAutoSize$qqro
@Controls@TControl@SetDragMode$qqr18Controls@TDragMode
@Controls@TControl@GetAction$qqrv
@Controls@TControl@GetEnabled$qqrv
@Controls@TControl@GetDragImages$qqrv
@Controls@TControl@$bdtr$qqrv
@Buttons@initialization$qqrv
@Buttons@Finalization$qqrv
@Toolwin@initialization$qqrv
@Toolwin@Finalization$qqrv
@Comstrs@initialization$qqrv
@Comstrs@Finalization$qqrv
@Extdlgs@initialization$qqrv
@Extdlgs@Finalization$qqrv
@Extactns@initialization$qqrv
@Extactns@Finalization$qqrv
@Listactns@initialization$qqrv
@Listactns@Finalization$qqrv
@Comctrls@initialization$qqrv
@Comctrls@Finalization$qqrv
@Comctrls@TCommonCalendar@SetDate$qqr16System@TDateTime
@Comctrls@TCommonCalendar@GetDate$qqrv
@Comctrls@TPageControl@SetActivePage$qqrp18Comctrls@TTabSheet
@Comctrls@TDateTimePicker@
@Comctrls@TPageControl@
@Comctrls@TTabSheet@
@Mask@initialization$qqrv
@Mask@Finalization$qqrv
@Mask@TCustomMaskEdit@SetText$qqrx17System@AnsiString
@Mask@TCustomMaskEdit@GetText$qqrv
@Mask@TMaskEdit@
rtl60.bpl
@System@initialization$qqrv
@System@Finalization$qqrv
@System@UnregisterModule$qqrp17System@TLibModule
@System@RegisterModule$qqrp17System@TLibModule
@System@FindHInstance$qqrpv
@System@@VarClear$qqrr14System@Variant
@System@@LStrSetLength$qqrv
@System@@LStrCmp$qqrv
@System@@LStrCat3$qqrv
@System@@LStrCat$qqrv
@System@@LStrFromPChar$qqrr17System@AnsiStringpc
@System@@LStrAsg$qqrpvpxv
@System@@LStrClr$qqrpv
@System@@HandleFinally$qqrv
@System@TObject@Dispatch$qqrpv
@System@TObject@$bdtr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrp17System@TMetaClass
@System@IsMemoryManagerSet$qqrv
@System@SetMemoryManager$qqrrx21System@TMemoryManager
@System@IsMultiThread
@System@IsConsole
@System@ExitProc
@System@CmdLine
@System@IsLibrary
@System@MainInstance
@Types@initialization$qqrv
@Types@Finalization$qqrv
@Sysconst@initialization$qqrv
@Sysconst@Finalization$qqrv
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Sysutils@Exception@$bctr$qqrx17System@AnsiString
@Sysutils@FormatDateTime$qqrx17System@AnsiString16System@TDateTime
@Sysutils@Date$qqrv
@Sysutils@FloatToStr$qqrg
@Sysutils@StrToInt$qqrx17System@AnsiString
@Sysutils@AnsiQuotedStr$qqrx17System@AnsiStringc
@Sysutils@Exception@
@Varutils@initialization$qqrv
@Varutils@Finalization$qqrv
@Variants@initialization$qqrv
@Variants@Finalization$qqrv
@Rtlconsts@initialization$qqrv
@Rtlconsts@Finalization$qqrv
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Typinfo@DotSep
@Typinfo@BooleanIdents
@Activex@initialization$qqrv
@Activex@Finalization$qqrv
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TComponent@UpdateRegistry$qqrp17System@TMetaClassox17System@AnsiStringt3
@Classes@TComponent@SafeCallException$qqrp14System@TObjectpv
@Classes@TComponent@WriteState$qqrp15Classes@TWriter
@Classes@TComponent@$bdtr$qqrv
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Classes@TPersistent@$bdtr$qqrv
@Syncobjs@initialization$qqrv
@Syncobjs@Finalization$qqrv
@Comconst@initialization$qqrv
@Comconst@Finalization$qqrv
@Comobj@initialization$qqrv
@Comobj@Finalization$qqrv
@Math@initialization$qqrv
@Math@Finalization$qqrv
@Math@RoundTo$qqrxdxzc
@Contnrs@initialization$qqrv
@Contnrs@Finalization$qqrv
@Dateutils@initialization$qqrv
@Dateutils@Finalization$qqrv
@Inifiles@initialization$qqrv
@Inifiles@Finalization$qqrv
@Inifiles@TIniFile@$bdtr$qqrv
@Inifiles@TCustomIniFile@$bctr$qqrx17System@AnsiString
@Inifiles@TIniFile@
@Registry@initialization$qqrv
@Registry@Finalization$qqrv
@Strutils@initialization$qqrv
@Strutils@Finalization$qqrv
@Maskutils@initialization$qqrv
@Maskutils@Finalization$qqrv
@Helpintfs@initialization$qqrv
@Helpintfs@Finalization$qqrv
@Flatsb@initialization$qqrv
@Flatsb@Finalization$qqrv
@Mapi@initialization$qqrv
@Mapi@Finalization$qqrv
@Multimon@initialization$qqrv
@Multimon@Finalization$qqrv
dbrtl60.bpl
@Dbconsts@initialization$qqrv
@Dbconsts@Finalization$qqrv
@Sqltimst@initialization$qqrv
@Sqltimst@Finalization$qqrv
@Fmtbcd@initialization$qqrv
@Fmtbcd@Finalization$qqrv
@Db@initialization$qqrv
@Db@Finalization$qqrv
@Db@TDataSet@Next$qqrv
@Db@TDataSet@FieldByName$qqrx17System@AnsiString
@Db@TDataSet@Open$qqrv
@Db@TFields@GetField$qqri
@Db@TDataSource@
fr6.bpl
@Fr_const@initialization$qqrv
@Fr_const@Finalization$qqrv
@Fr_utils@Finalization$qqrv
@Fr_utils@initialization$qqrv
@Fr_combo@Finalization$qqrv
@Fr_combo@initialization$qqrv
@Fr_ctrls@Finalization$qqrv
@Fr_ctrls@initialization$qqrv
@Fr_dock@Finalization$qqrv
@Fr_dock@initialization$qqrv
@Fr_view@Finalization$qqrv
@Fr_view@initialization$qqrv
@Fr_desgn@Finalization$qqrv
@Fr_desgn@TfrDesigner@
@Fr_desgn@initialization$qqrv
@Fr_dbset@Finalization$qqrv
@Fr_dbset@TfrDBDataSet@
@Fr_dbset@initialization$qqrv
@Fr_dset@Finalization$qqrv
@Fr_dset@initialization$qqrv
@Fr_class@Finalization$qqrv
@Fr_class@TfrReport@
@Fr_class@TfrReport@LoadFromFile$qqr17System@AnsiString
@Fr_class@TfrReport@PrepareReport$qqrv
@Fr_class@TfrReport@ShowPreparedReport$qqrv
@Fr_class@frVariables
@Fr_class@initialization$qqrv
@Fr_dbrel@Finalization$qqrv
@Fr_dbrel@initialization$qqrv
@Fr_synmemo@Finalization$qqrv
@Fr_synmemo@initialization$qqrv
@Fr_pars@Finalization$qqrv
@Fr_pars@TfrVariables@Clear$qqrv
@Fr_pars@TfrVariables@IndexOf$qqrx17System@AnsiString
@Fr_pars@TfrVariables@SetValue$qqrirx14System@Variant
@Fr_pars@initialization$qqrv
@Fr_intrp@Finalization$qqrv
@Fr_intrp@initialization$qqrv
@Fr_progr@Finalization$qqrv
@Fr_progr@initialization$qqrv
@Fr_prntr@Finalization$qqrv
@Fr_prntr@initialization$qqrv
@Fr_prdlg@Finalization$qqrv
@Fr_prdlg@initialization$qqrv
@Fr_srch@Finalization$qqrv
@Fr_srch@initialization$qqrv
@Fr_passw@Finalization$qqrv
@Fr_passw@initialization$qqrv
@Fr_funcs@Finalization$qqrv
@Fr_funcs@initialization$qqrv
@Fr_expr@Finalization$qqrv
@Fr_expr@initialization$qqrv
@Fr_pagef@Finalization$qqrv
@Fr_pagef@initialization$qqrv
@Fr_restr@Finalization$qqrv
@Fr_restr@initialization$qqrv
@Fr_iflds@Finalization$qqrv
@Fr_iflds@initialization$qqrv
@Fr_about@Finalization$qqrv
@Fr_about@initialization$qqrv
@Fr_grped@Finalization$qqrv
@Fr_grped@initialization$qqrv
@Fr_btyp@Finalization$qqrv
@Fr_btyp@initialization$qqrv
@Fr_flds@Finalization$qqrv
@Fr_flds@initialization$qqrv
@Fr_vbnd@Finalization$qqrv
@Fr_vbnd@initialization$qqrv
@Fr_bnded@Finalization$qqrv
@Fr_bnded@initialization$qqrv
@Fr_dict@Finalization$qqrv
@Fr_dict@initialization$qqrv
@Fr_dopt@Finalization$qqrv
@Fr_dopt@initialization$qqrv
@Fr_hilit@Finalization$qqrv
@Fr_hilit@initialization$qqrv
@Fr_attre@Finalization$qqrv
@Fr_attre@initialization$qqrv
@Fr_dsopt@Finalization$qqrv
@Fr_dsopt@initialization$qqrv
@Fr_newrp@Finalization$qqrv
@Fr_newrp@initialization$qqrv
@Fr_templ@Finalization$qqrv
@Fr_templ@initialization$qqrv
@Fr_gedit@Finalization$qqrv
@Fr_gedit@initialization$qqrv
@Fr_pgopt@Finalization$qqrv
@Fr_pgopt@initialization$qqrv
@Fr_edit1@Finalization$qqrv
@Fr_edit1@initialization$qqrv
@Fr_edit@Finalization$qqrv
@Fr_edit@initialization$qqrv
@Fr_flds1@Finalization$qqrv
@Fr_flds1@initialization$qqrv
@Fr_insp@Finalization$qqrv
@Fr_insp@initialization$qqrv
@Fr_color@Finalization$qqrv
@Fr_color@initialization$qqrv
@Fr_fmted@Finalization$qqrv
@Fr_fmted@initialization$qqrv
@Fr_var@Finalization$qqrv
@Fr_var@initialization$qqrv
@Fr_arg@Finalization$qqrv
@Fr_arg@initialization$qqrv
@Fr_vared@Finalization$qqrv
@Fr_vared@initialization$qqrv
@Fr_popuplb@Finalization$qqrv
@Fr_popuplb@initialization$qqrv
dac60.bpl
@Crparser@Finalization$qqrv
@Crparser@initialization$qqrv
@Daconsts@Finalization$qqrv
@Daconsts@initialization$qqrv
@Dbmonitorintf@Finalization$qqrv
@Dbmonitorintf@initialization$qqrv
@Dbmonitorclient@Finalization$qqrv
@Dbmonitorclient@initialization$qqrv
@Dasqlmonitor@Finalization$qqrv
@Dasqlmonitor@initialization$qqrv
@Dbaccess@Finalization$qqrv
@Dbaccess@TCustomDAConnection@SetPassword$qqrx17System@AnsiString
@Dbaccess@TCustomDAConnection@SetServer$qqrx17System@AnsiString
@Dbaccess@TCustomDAConnection@SetUsername$qqrx17System@AnsiString
@Dbaccess@TCustomDADataSet@GetSQL$qqrv
@Dbaccess@TCustomDADataSet@ParamByName$qqrx17System@AnsiString
@Dbaccess@initialization$qqrv
@Memdata@Finalization$qqrv
@Memdata@initialization$qqrv
@Memds@Finalization$qqrv
@Memds@initialization$qqrv
@Craccess@Finalization$qqrv
@Craccess@initialization$qqrv
@Daversioninfo@Finalization$qqrv
@Daversioninfo@initialization$qqrv
@Clrclasses@Finalization$qqrv
@Clrclasses@initialization$qqrv
@Memutils@Finalization$qqrv
@Memutils@initialization$qqrv
@Crconnectionpool@Finalization$qqrv
@Crconnectionpool@initialization$qqrv
@Win32timer@Finalization$qqrv
@Win32timer@initialization$qqrv
mydac60.bpl
@Mycall@Finalization$qqrv
@Mycall@initialization$qqrv
@Myclasses@Finalization$qqrv
@Myclasses@initialization$qqrv
@Myaccess@Finalization$qqrv
@Myaccess@TMyConnection@
@Myaccess@TMyConnection@SetDatabase$qqr17System@AnsiString
@Myaccess@TMyConnection@SetPort$qqri
@Myaccess@TMyQuery@
@Myaccess@initialization$qqrv
@Myconsts@Finalization$qqrv
@Myconsts@initialization$qqrv
@Myparser@Finalization$qqrv
@Myparser@initialization$qqrv
@Mysqlmonitor@Finalization$qqrv
@Mysqlmonitor@initialization$qqrv
@Mysqlapidirect@Finalization$qqrv
@Mysqlapidirect@initialization$qqrv
@Mysqlapi@Finalization$qqrv
@Mysqlapi@initialization$qqrv
@Myconnectionpool@Finalization$qqrv
@Myconnectionpool@initialization$qqrv
@Umysqlct@Finalization$qqrv
@Umysqlct@initialization$qqrv
@Mycalldirect@Finalization$qqrv
@Mycalldirect@initialization$qqrv
@Umysqlclient@Finalization$qqrv
@Umysqlclient@initialization$qqrv
@Umysqlvio@Finalization$qqrv
@Umysqlvio@initialization$qqrv
@Umysqlnet@Finalization$qqrv
@Umysqlnet@initialization$qqrv
@Umysqlhelpers@Finalization$qqrv
@Umysqlhelpers@initialization$qqrv
@Umysqlerrors@Finalization$qqrv
@Umysqlerrors@initialization$qqrv
borlndmm
ord2
kernel32
FreeLibrary
GetCommandLineA
GetModuleHandleA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
shfolder
SHGetFolderPathA
user32
MapVirtualKeyA
keybd_event
oleaut32
VariantInit
cc3260mt
@$bdele$qpv
@_CatchCleanup$qv
@_InitTermAndUnexPtrs$qv
@_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1
__ErrorExit
___CRTL_MEM_GetBorMemPtrs
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
____ExceptionHandler
__argc
__argv
__argv_default_expand
__exitargv
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__matherr
__matherrl
__setargv
__startup
__wargv_default_expand
_atof
_atol
_getenv
_memcpy
_memset
_sprintf
_strcat
_vsnprintf
vcljpg60.bpl
@Jconsts@initialization$qqrv
@Jconsts@Finalization$qqrv
@Jpeg@initialization$qqrv
@Jpeg@Finalization$qqrv
Exports
Exports
Sections
.text Size: 75KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 31KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 24KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.edata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 25KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ