65ff5f86ec5fe7dbcaf90b05c3e5c7a7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

65ff5f86ec5fe7dbcaf90b05c3e5c7a7_JaffaCakes118
Size

3.2MB
MD5

65ff5f86ec5fe7dbcaf90b05c3e5c7a7
SHA1

63fa98f24db8c538a4faf102ffcb495fb579c9dc
SHA256

4436fc32b00dbba7cfd575d82d987ece10e988773f6182a63c6e8f0be9c7937b
SHA512

3ef181abf121fa9c3a9f90a17c779a3841d19096f2407457d84d61780da2e9f3dc0c727e7fb6aa1c8701e64d2778b3f96c20f63634498d45180b52c10475469b
SSDEEP

49152:JPAjl5+/NWeVWjImi40+NhYfVT4rpBeuef0+5IGUuPc7+Zxy63rsIkE0EBXnguWH:JPAD+WeT40+fGVg3r5ucisjw+uWY/ub

Score

7^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 2 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
static1/unpack001/LOL百思防封工具12.15/AT.exe	vmprotect
static1/unpack001/LOL百思防封工具12.15/zlib.dll	vmprotect

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LOL百思防封工具12.15/AT.exe
unpack001/LOL百思防封工具12.15/CG.dll
unpack001/LOL百思防封工具12.15/zlib.dll

Files

65ff5f86ec5fe7dbcaf90b05c3e5c7a7_JaffaCakes118
.rar
LOL百思防封工具12.15/AT.exe
.exe windows:5 windows x86 arch:x86

f96f2140541061cb1e03b538b3ab174f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetVersion
GetModuleHandleA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

CharUpperBuffW

Sections

.text
Size: - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 771KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 856KB - Virtual size: 854KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LOL百思防封工具12.15/CG.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\bld\cg\rel3.0\src\cglang\runtime\bin\Windows_vc8_release\cg.pdb

Exports

Exports

cgAddStateEnumerant
cgCallStateResetCallback
cgCallStateSetCallback
cgCallStateValidateCallback
cgCombinePrograms
cgCombinePrograms2
cgCombinePrograms3
cgCombinePrograms4
cgCombinePrograms5
cgCompileProgram
cgConnectParameter
cgCopyEffect
cgCopyProgram
cgCreateArraySamplerState
cgCreateArrayState
cgCreateBuffer
cgCreateContext
cgCreateEffect
cgCreateEffectAnnotation
cgCreateEffectFromFile
cgCreateEffectParameter
cgCreateEffectParameterArray
cgCreateEffectParameterMultiDimArray
cgCreateObj
cgCreateObjFromFile
cgCreateParameter
cgCreateParameterAnnotation
cgCreateParameterArray
cgCreateParameterMultiDimArray
cgCreatePass
cgCreatePassAnnotation
cgCreateProgram
cgCreateProgramAnnotation
cgCreateProgramFromEffect
cgCreateProgramFromFile
cgCreateSamplerState
cgCreateSamplerStateAssignment
cgCreateState
cgCreateStateAssignment
cgCreateStateAssignmentIndex
cgCreateTechnique
cgCreateTechniqueAnnotation
cgDestroyBuffer
cgDestroyContext
cgDestroyEffect
cgDestroyObj
cgDestroyParameter
cgDestroyProgram
cgDisconnectParameter
cgEvaluateProgram
cgGetAnnotationName
cgGetAnnotationType
cgGetArrayDimension
cgGetArrayParameter
cgGetArraySize
cgGetArrayTotalSize
cgGetArrayType
cgGetAutoCompile
cgGetBehavior
cgGetBehaviorString
cgGetBoolAnnotationValues
cgGetBoolStateAssignmentValues
cgGetBooleanAnnotationValues
cgGetBufferSize
cgGetCompilerIncludeCallback
cgGetConnectedParameter
cgGetConnectedStateAssignmentParameter
cgGetConnectedToParameter
cgGetContextBehavior
cgGetDependentAnnotationParameter
cgGetDependentProgramArrayStateAssignmentParameter
cgGetDependentStateAssignmentParameter
cgGetDomain
cgGetDomainString
cgGetEffectContext
cgGetEffectName
cgGetEffectParameterBuffer
cgGetEffectParameterBySemantic
cgGetEnum
cgGetEnumString
cgGetError
cgGetErrorCallback
cgGetErrorHandler
cgGetErrorString
cgGetFirstDependentParameter
cgGetFirstEffect
cgGetFirstEffectAnnotation
cgGetFirstEffectParameter
cgGetFirstError
cgGetFirstLeafEffectParameter
cgGetFirstLeafParameter
cgGetFirstParameter
cgGetFirstParameterAnnotation
cgGetFirstPass
cgGetFirstPassAnnotation
cgGetFirstProgram
cgGetFirstProgramAnnotation
cgGetFirstSamplerState
cgGetFirstSamplerStateAssignment
cgGetFirstState
cgGetFirstStateAssignment
cgGetFirstStructParameter
cgGetFirstTechnique
cgGetFirstTechniqueAnnotation
cgGetFloatAnnotationValues
cgGetFloatStateAssignmentValues
cgGetIntAnnotationValues
cgGetIntStateAssignmentValues
cgGetLastErrorString
cgGetLastListing
cgGetLockingPolicy
cgGetMatrixParameterOrder
cgGetMatrixParameterdc
cgGetMatrixParameterdr
cgGetMatrixParameterfc
cgGetMatrixParameterfr
cgGetMatrixParameteric
cgGetMatrixParameterir
cgGetMatrixSize
cgGetNamedEffect
cgGetNamedEffectAnnotation
cgGetNamedEffectParameter
cgGetNamedParameter
cgGetNamedParameterAnnotation
cgGetNamedPass
cgGetNamedPassAnnotation
cgGetNamedProgramAnnotation
cgGetNamedProgramParameter
cgGetNamedSamplerState
cgGetNamedSamplerStateAssignment
cgGetNamedState
cgGetNamedStateAssignment
cgGetNamedStructParameter
cgGetNamedSubParameter
cgGetNamedTechnique
cgGetNamedTechniqueAnnotation
cgGetNamedUserType
cgGetNextAnnotation
cgGetNextEffect
cgGetNextLeafParameter
cgGetNextParameter
cgGetNextPass
cgGetNextProgram
cgGetNextState
cgGetNextStateAssignment
cgGetNextTechnique
cgGetNumConnectedToParameters
cgGetNumDependentAnnotationParameters
cgGetNumDependentProgramArrayStateAssignmentParameters
cgGetNumDependentStateAssignmentParameters
cgGetNumParentTypes
cgGetNumProgramDomains
cgGetNumStateEnumerants
cgGetNumSupportedProfiles
cgGetNumUserTypes
cgGetParameterBaseResource
cgGetParameterBaseType
cgGetParameterBufferIndex
cgGetParameterBufferOffset
cgGetParameterClass
cgGetParameterClassEnum
cgGetParameterClassString
cgGetParameterColumns
cgGetParameterContext
cgGetParameterDefaultValuedc
cgGetParameterDefaultValuedr
cgGetParameterDefaultValuefc
cgGetParameterDefaultValuefr
cgGetParameterDefaultValueic
cgGetParameterDefaultValueir
cgGetParameterDirection
cgGetParameterEffect
cgGetParameterIndex
cgGetParameterName
cgGetParameterNamedType
cgGetParameterOrdinalNumber
cgGetParameterProgram
cgGetParameterResource
cgGetParameterResourceIndex
cgGetParameterResourceName
cgGetParameterResourceSize
cgGetParameterResourceType
cgGetParameterRows
cgGetParameterSemantic
cgGetParameterSettingMode
cgGetParameterType
cgGetParameterValuedc
cgGetParameterValuedr
cgGetParameterValuefc
cgGetParameterValuefr
cgGetParameterValueic
cgGetParameterValueir
cgGetParameterValues
cgGetParameterVariability
cgGetParentType
cgGetPassName
cgGetPassProgram
cgGetPassTechnique
cgGetProfile
cgGetProfileDomain
cgGetProfileProperty
cgGetProfileString
cgGetProgramBuffer
cgGetProgramBufferMaxIndex
cgGetProgramBufferMaxSize
cgGetProgramContext
cgGetProgramDomain
cgGetProgramDomainProfile
cgGetProgramDomainProgram
cgGetProgramInput
cgGetProgramOptions
cgGetProgramOutput
cgGetProgramProfile
cgGetProgramStateAssignmentValue
cgGetProgramString
cgGetResource
cgGetResourceString
cgGetSamplerStateAssignmentParameter
cgGetSamplerStateAssignmentState
cgGetSamplerStateAssignmentValue
cgGetSemanticCasePolicy
cgGetStateAssignmentIndex
cgGetStateAssignmentPass
cgGetStateAssignmentState
cgGetStateContext
cgGetStateEnumerant
cgGetStateEnumerantName
cgGetStateEnumerantValue
cgGetStateLatestProfile
cgGetStateName
cgGetStateResetCallback
cgGetStateSetCallback
cgGetStateType
cgGetStateValidateCallback
cgGetString
cgGetStringAnnotationValue
cgGetStringAnnotationValues
cgGetStringParameterValue
cgGetStringStateAssignmentValue
cgGetSupportedProfile
cgGetTechniqueEffect
cgGetTechniqueName
cgGetTextureStateAssignmentValue
cgGetType
cgGetTypeBase
cgGetTypeClass
cgGetTypeSizes
cgGetTypeString
cgGetUserType
cgInternal
cgIsAnnotation
cgIsContext
cgIsEffect
cgIsInterfaceType
cgIsParameter
cgIsParameterGlobal
cgIsParameterReferenced
cgIsParameterUsed
cgIsParentType
cgIsPass
cgIsProfileSupported
cgIsProgram
cgIsProgramCompiled
cgIsState
cgIsStateAssignment
cgIsTechnique
cgIsTechniqueValidated
cgMapBuffer
cgResetPassState
cgSetArraySize
cgSetAutoCompile
cgSetBoolAnnotation
cgSetBoolArrayStateAssignment
cgSetBoolStateAssignment
cgSetBufferData
cgSetBufferSubData
cgSetCompilerIncludeCallback
cgSetCompilerIncludeFile
cgSetCompilerIncludeString
cgSetContextBehavior
cgSetEffectName
cgSetEffectParameterBuffer
cgSetErrorCallback
cgSetErrorHandler
cgSetFloatAnnotation
cgSetFloatArrayStateAssignment
cgSetFloatStateAssignment
cgSetIntAnnotation
cgSetIntArrayStateAssignment
cgSetIntStateAssignment
cgSetLastListing
cgSetLockingPolicy
cgSetMatrixParameterdc
cgSetMatrixParameterdr
cgSetMatrixParameterfc
cgSetMatrixParameterfr
cgSetMatrixParameteric
cgSetMatrixParameterir
cgSetMultiDimArraySize
cgSetParameter1d
cgSetParameter1dv
cgSetParameter1f
cgSetParameter1fv
cgSetParameter1i
cgSetParameter1iv
cgSetParameter2d
cgSetParameter2dv
cgSetParameter2f
cgSetParameter2fv
cgSetParameter2i
cgSetParameter2iv
cgSetParameter3d
cgSetParameter3dv
cgSetParameter3f
cgSetParameter3fv
cgSetParameter3i
cgSetParameter3iv
cgSetParameter4d
cgSetParameter4dv
cgSetParameter4f
cgSetParameter4fv
cgSetParameter4i
cgSetParameter4iv
cgSetParameterSemantic
cgSetParameterSettingMode
cgSetParameterValuedc
cgSetParameterValuedr
cgSetParameterValuefc
cgSetParameterValuefr
cgSetParameterValueic
cgSetParameterValueir
cgSetParameterVariability
cgSetPassProgramParameters
cgSetPassState
cgSetProgramBuffer
cgSetProgramProfile
cgSetProgramStateAssignment
cgSetSamplerState
cgSetSamplerStateAssignment
cgSetSemanticCasePolicy
cgSetStateCallbacks
cgSetStateLatestProfile
cgSetStringAnnotation
cgSetStringParameterValue
cgSetStringStateAssignment
cgSetTextureStateAssignment
cgUnmapBuffer
cgUpdatePassParameters
cgUpdateProgramParameters
cgValidateTechnique

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 528KB - Virtual size: 525KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.Silvana
Size: 126B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
LOL百思防封工具12.15/zlib.dll
.dll windows:4 windows x86 arch:x86

cc434289b6eaac75c3339a4263587ca1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

midiStreamOpen

ws2_32

WSAStartup

rasapi32

RasGetConnectStatusA

kernel32

GetVersionExA
GetVersion
GetEnvironmentVariableA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

CreatePopupMenu

gdi32

GetTextExtentPoint32A

winspool.drv

DocumentPropertiesA

advapi32

RegOpenKeyExA

shell32

DragAcceptFiles

ole32

OleUninitialize

oleaut32

RegisterTypeLi

comctl32

ImageList_DragLeave

wininet

InternetCloseHandle

comdlg32

GetSaveFileNameA

Exports

Exports

�0G�A��iT¨�D� ��C�$�s\2��.�#4�g�A7�/%E�'*-��OA�ѹ�wm�e4�X��*߸>�W<"�ˎ�\y�W��{u;v��^a(��r-S��Or�� 2�>��l�/�ֱ�+rEZx� �:dNav��-�+ A��9��Tٓ+T7�}�`y� "s��D��_�z��Ȉ��Y��N�o#��?�Y��6i^�3k��bD�%�QVۂh�#�:��xs��گ"ma��lW�S��T�u��D�A�ë�?T�m{dn�*D߭��%G�:X"*��k�l �L�e��J��stX�[⮣��Fg�z��$��|I�E�N�H��h޵�B�6ݘ�z�hCD�$6N�q�M��m��E~�.d�u��vs��g<�/�[�)�� fxR��Y� A� `po8��6��_�ۀ[)��%��w�b�,��D��y)S��0�觫��2��\.�nO�zy�]6F`�d� :h�eb*?��}�䌕ץ�ʍ�5��馧��s��G��(X��p��Gn��Sm韩�L(��h�k�_t��彨��>��N��a.��pdc=��3��!*ןt;#�F�6V�H�}*�L��d��#��X��h�Zw��4� ��6��q��ҍ�;c�N}0r,]H�. pF2 r��@�{�FCI`�孑��\؛��zwl��k�ʿm��~��=��7��5'F;�A�3U��,EQ��xf��!�7�m��|�-�=��i�_=��n��T0��[�U��T� I�r��^�Ƃ��@ɰ7�[�b�1K�F�a�xt��8�^ߦU�?�K��;��I��ی�Ӧ��F��A��c:��E:dC��\��l�*�X*�S:�M��-�T��n�L��L�Q�ǁ��j�2��`�R�3. H� ]"9ccஉ}�۽��M(��x��'}��[n��2;�R/h_R+AZ�[��\sȯ��_�Q��I��8uh��9d'T��D)�y�=��\��6iE��w��Ly+�tP��Y]�p�נkE��QX��J�`�Wv}~`�Ҩ�+t�rD!sn��8��0c`��-'�R��PD��d�4 RG(gp��MPk�d9.͎�;��Qi`��L��.j�2�N��8��oH�<�Y߀��J~ea��N)�AwH�2��iK�H��9��2��S��QŎ�t\�s�{��eq�t�+��ڜ҇��H| �Z\�S��!�qEd2��~��i8�nA�u,�i�GwQ�ɾ @I�3��,Fn.�r��m��|��ՎP#�ݏ;��yPN�cR�M��s7��e��f��0d��|̃�u��\O��PWH�ژ��[G��$��&낹��Ѕ�j�b ��۳?V��m��l��s[��!1� ��<�j<�Y�!�'T]\tf�E͑h��=��3��p�xO�\F6��SǪ�Y�B��4�.��+D��ٱ!��+%�s6*��@��Ҽ�ț �<3s�βR� s�M��n;]��#��\K��C&%x��Ν�Dc°t�ԁ�Q��q�ja�QF�U�L�Z}|W��x��!w}��_��Ud9��}�o"f��7��Z��Q��3=t��T��[�(R��Ւ��Z��F��zSm��HC��+��,av��O�T�]�� z��C��c��m��]}��M.�٦�GZc��^��s�E��I�b�[��6��u4��]??� �<5�{�ZR��i�rܙJ`B~H�yp��S�a�վ{�C{�e��;��Ӧ�` ]M+��V�]�� {��#3�Sn p-?�^��3��G5}��r� z#$��,��4��y�o<M.��U��|��JM=Uh�� 9ݦQ{}yĢ�ӻ��-H�v��Ωak0��n�O0¼�Ƌ��;'��>��Ѭ�v�R�smpz�dw�C�N5��&߾�&yG��KW�z�f�-U/$xxԺ3b� ��A�o��/O��p��<��[�+7�`��D<��a^�C�0�Ɔ��L��ҵy��gW}ݐ��;�?�A�d �WP��J�<��q��k��V� �β��Y��$>R��Ƚ�Y?�,,��1�2Օ��o[�>�G8]��:p&ԝH�/�W��ʐ��+f��y<4jEhQЍ#��,�:�,� ��>D\�e�zvܹ9�<�d��W��v�k%�B�x��S�1��N��,�\cTNȴ7L8o�ɓ��J��d�/�>(��i~��։m�_蔼_�M��U��~xt��2J��D^q�ݴ-�?=��ƈl��T��ϥh?_��8�Xp ��M�V�s�;��n��I�}�5(�pL&O� l��p��,_�5��O�&ʐ\(Pw�j9O�x3I��[��{��*��h�m�Pm�R�N�J��2�x|R��Ua�x��F��ukgYqޫw'h%Q�#�J�y�x_��ƻ?LVNѺ|$R��)�f��y�.c�(s�)\5�Δ��D{C�W��s�(L��g�r�h8tX��<�d"wѨ|�� AE ��&��i ?O- ��}\�E��(z��j.�c�s�@!��8�d2\pL� +��R��[o>N�YP��\�[5��1�2�ߛ)��*�Ss�=�x}G�ȸ9&ȘvȪ)��3X͔Jc�� t�d��@�#ȫLJ��rG��c�'P�'2@�kZ��K�_�MK K��(��&��lQK#Ml[��O�k�m�)Vb2޸��֑��+��9&:vU0�FfPZ�d�A��,��"�N�ϊ�� ;?V{L�Gq��șW�q��y��d�
RunDllHostCallBack
_???��3��D��

Sections

.text
Size: - Virtual size: 440KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 755KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LOL百思防封工具12.15/下载说明.txt
LOL百思防封工具12.15/华彩联盟论坛.url
.url
LOL百思防封工具12.15/华彩软件站-使用必读.url
.url

Sharing

General

Malware Config

Signatures

Files

f96f2140541061cb1e03b538b3ab174f

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 130KB

.rdata Size: - Virtual size: 5KB

.data Size: - Virtual size: 21KB

.idata Size: - Virtual size: 1KB

.vmp0 Size: - Virtual size: 771KB

.vmp1 Size: 856KB - Virtual size: 854KB

.reloc Size: 4KB - Virtual size: 192B

Headers

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 3.7MB - Virtual size: 3.7MB

.data Size: 56KB - Virtual size: 216KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 528KB - Virtual size: 525KB

.Silvana Size: 126B - Virtual size: 4KB

cc434289b6eaac75c3339a4263587ca1

Headers

File Characteristics

Imports

winmm

ws2_32

rasapi32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

wininet

comdlg32

Exports

Exports

Sections

.text Size: - Virtual size: 440KB

.rdata Size: - Virtual size: 69KB

.data Size: - Virtual size: 269KB

.vmp0 Size: - Virtual size: 755KB

.tls Size: 4KB - Virtual size: 24B

.vmp1 Size: 1.1MB - Virtual size: 1.1MB

.reloc Size: 4KB - Virtual size: 188B

.rsrc Size: 8KB - Virtual size: 21KB

.text
Size: - Virtual size: 130KB

.rdata
Size: - Virtual size: 5KB

.data
Size: - Virtual size: 21KB

.idata
Size: - Virtual size: 1KB

.vmp0
Size: - Virtual size: 771KB

.vmp1
Size: 856KB - Virtual size: 854KB

.reloc
Size: 4KB - Virtual size: 192B

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 56KB - Virtual size: 216KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 528KB - Virtual size: 525KB

.Silvana
Size: 126B - Virtual size: 4KB

.text
Size: - Virtual size: 440KB

.rdata
Size: - Virtual size: 69KB

.data
Size: - Virtual size: 269KB

.vmp0
Size: - Virtual size: 755KB

.tls
Size: 4KB - Virtual size: 24B

.vmp1
Size: 1.1MB - Virtual size: 1.1MB

.reloc
Size: 4KB - Virtual size: 188B

.rsrc
Size: 8KB - Virtual size: 21KB