751a70cc90b1fc3ffc82bbd548a66612_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

751a70cc90b1fc3ffc82bbd548a66612_JaffaCakes118
Size

512KB
MD5

751a70cc90b1fc3ffc82bbd548a66612
SHA1

381e198a25911f04a70a92c4c4a9ef4d5486b820
SHA256

78b045e462c4938a0c51cb97e6d667020bdd2519d809f4bc04bb925aa7a19fe5
SHA512

3a9d3d01d870644f778baf8025882da4b1df00c0ea54f0e9d5e28c7ac9d4b86b7fc87ff07fafd73c1f00bf9c1ae7ba8566051e481d6d9b598617612d5b5319fe
SSDEEP

12288:HZhfe8Fpca5eJz3PF2s+89zHV13nRtX1gF3f1XosQz7e9gErjH22JJhzg:jsa0JjPF2m9zHVlnJy3rQzKzjXJhzg

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CCProxy/CCProxy.dll
unpack001/CCProxy/CCProxy.exe
unpack001/CCProxy/zlib1.dll

Files

751a70cc90b1fc3ffc82bbd548a66612_JaffaCakes118
.rar
CCProxy/CCProxy.dll
.dll windows:4 windows x86 arch:x86

b81ebea088d7d3738bcd6e6ab97d5a55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\_Y_Develop\CC Proxy\CCProxy\CCProxyService\Release\CCProxyService.pdb

Imports

kernel32

CreateFileA
GetCPInfo
GetOEMCP
ExitProcess
RtlUnwind
HeapAlloc
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
VirtualProtect
VirtualAlloc
VirtualQuery
GetCommandLineA
HeapReAlloc
HeapSize
QueryPerformanceCounter
SetEndOfFile
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GlobalFlags
GlobalAddAtomA
lstrcatA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
InterlockedIncrement
GetCurrentThread
GetCurrentThreadId
GlobalDeleteAtom
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
SetLastError
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
CompareStringW
CompareStringA
GetVersion
MultiByteToWideChar
GetWindowsDirectoryA
FileTimeToSystemTime
GetSystemTime
GetComputerNameA
lstrlenA
FreeLibrary
GetProcessHeap
HeapFree
GetCurrentProcessId
DuplicateHandle
DeviceIoControl
GetModuleHandleA
GetCurrentProcess
GetSystemInfo
CreateThread
TerminateThread
OpenProcess
TerminateProcess
GetLastError
MapViewOfFile
UnmapViewOfFile
lstrcmpiA
GetTimeZoneInformation
WritePrivateProfileStringA
LoadLibraryA
GetProcAddress
LocalAlloc
LocalFree
GlobalFree
GetTickCount
CreateEventA
WaitForSingleObject
CloseHandle
SetEvent
Sleep
LeaveCriticalSection
GetPrivateProfileIntA
lstrcpyA
GetPrivateProfileStringA
GetModuleFileNameA
CreateDirectoryA
InterlockedDecrement
WideCharToMultiByte
GetLocalTime
EnterCriticalSection
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
HeapDestroy
InterlockedExchange

user32

WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
CopyRect
SetWindowPos
ShowWindow
SetWindowLongA
RegisterWindowMessageA
GetDlgItem
UnregisterClassA
wsprintfA
GetSystemMetrics
MsgWaitForMultipleObjects
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
SetWindowTextA
GetClassNameA
SetMenuItemBitmaps
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetCursor
SetWindowsHookExA
DestroyMenu
CallNextHookEx
GetMessageA
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
PostQuitMessage
PostMessageA
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
LoadCursorA
UnhookWindowsHookEx
EnableWindow
IsWindowEnabled
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
GetWindowTextA
SendMessageA
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
GetClientRect

gdi32

GetStockObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
SetViewportOrgEx
ScaleViewportExtEx
SetViewportExtEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetClipBox
SetMapMode
SetTextColor
GetDeviceCaps
CreateBitmap
DeleteObject
SaveDC
RestoreDC
SetBkColor
OffsetViewportOrgEx

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyA
RegSetValueExA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
QueryServiceStatus
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
ControlService
DeleteService
CreateServiceA
OpenSCManagerA
OpenServiceA
CloseServiceHandle
StartServiceA

comctl32

ord17

shlwapi

StrTrimA
PathFindExtensionA

oleaut32

SysFreeString
SysAllocStringByteLen
SysStringByteLen
VariantClear
VariantChangeType
SysAllocString
VariantInit

ws2_32

WSAConnect
WSARecvFrom
WSAStartup
WSAAccept
WSASocketA
inet_addr
htons
gethostbyname
ntohs
select
send
WSAGetLastError
sendto
recvfrom
closesocket
inet_ntoa
socket
recv
__WSAFDIsSet
ntohl
WSAAddressToStringA
getsockname
WSAIoctl
accept
setsockopt
listen
bind
connect

iphlpapi

GetIfTable
SendARP

wininet

GetUrlCacheEntryInfoA
InternetConnectA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA
HttpQueryInfoA
InternetSetOptionA
InternetOpenA
InternetOpenUrlA
InternetGetLastResponseInfoA
InternetCloseHandle
InternetReadFile

zlib1

inflate
inflateEnd
inflateInit2_

Exports

Exports

InstallNT
Start
StartNT
UninstallNT

Sections

.text
Size: 328KB - Virtual size: 325KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CCProxy/CCProxy.exe
.exe windows:4 windows x86 arch:x86

2c69d590790e52f0fa271b40dd167f67

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

__WSAFDIsSet
closesocket
select
sendto
htons
htonl
socket
send
WSAIoctl
recv
accept
listen
connect
bind
ntohs
getsockname
WSAStartup
inet_ntoa
gethostbyname
ntohl
inet_addr
setsockopt

kernel32

SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
GetVolumeInformationA
GetFullPathNameA
CreateFileA
GetFileAttributesA
GetFileTime
SetErrorMode
RtlUnwind
WriteFile
GetTimeFormatA
GetDateFormatA
HeapAlloc
VirtualAlloc
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc
HeapSize
GetTimeZoneInformation
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
ReadFile
GetCurrentDirectoryA
FindResourceExA
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
FileTimeToLocalFileTime
VirtualProtect
SetLastError
MulDiv
FormatMessageA
LocalFree
FileTimeToSystemTime
GetCurrentThreadId
GlobalGetAtomNameA
GlobalDeleteAtom
lstrcmpW
lstrcpynA
GlobalFree
FreeResource
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcmpiA
CompareStringA
CompareStringW
MultiByteToWideChar
GetVersion
GetModuleHandleA
GetSystemInfo
WaitForSingleObject
MapViewOfFile
GetCurrentProcessId
CreateEventA
DuplicateHandle
DeviceIoControl
UnmapViewOfFile
GetProcessHeap
HeapFree
OpenProcess
TerminateProcess
FindFirstFileA
FindNextFileA
FindClose
lstrlenA
GetWindowsDirectoryA
FreeLibrary
TerminateThread
CreateThread
LeaveCriticalSection
WinExec
GetCurrentProcess
GetTickCount
GlobalFindAtomA
GlobalAddAtomA
lstrcatA
CreateMutexA
GetLastError
CloseHandle
Sleep
LoadLibraryA
GetProcAddress
GetSystemTime
DeleteFileA
InterlockedDecrement
CreateDirectoryA
GetPrivateProfileIntA
lstrcpyA
CopyFileA
WritePrivateProfileStringA
EnterCriticalSection
RaiseException
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
GetLocalTime
GetModuleFileNameA
GetPrivateProfileStringA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExA
GetSystemTimeAsFileTime

user32

IsRectEmpty
SetRect
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
MapDialogRect
GetAsyncKeyState
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuStringA
SetMenuItemBitmaps
GetMenuState
EnableMenuItem
GetMenuCheckMarkDimensions
ShowWindow
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
TrackPopupMenu
CharNextA
IsWindowVisible
GetMenu
AdjustWindowRectEx
EqualRect
GetDlgCtrlID
CallWindowProcA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
IsWindowEnabled
GetNextDlgTabItem
EndDialog
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
CharUpperA
LoadBitmapA
UpdateWindow
MsgWaitForMultipleObjects
KillTimer
MessageBoxA
FillRect
DefWindowProcA
RegisterClassA
SetCapture
RedrawWindow
ReleaseDC
GetDC
InflateRect
LoadCursorA
CopyIcon
GetSysColor
SetWindowLongA
SetCursor
ReleaseCapture
MessageBeep
ExitWindowsEx
SetWindowTextA
PostMessageA
SetForegroundWindow
ModifyMenuA
GetMenuItemID
GetMenuItemCount
LoadMenuA
GetSubMenu
CheckMenuItem
GetCursorPos
UnregisterHotKey
RegisterHotKey
IsIconic
DrawIcon
GetSystemMetrics
GetSysColorBrush
WindowFromPoint
DestroyMenu
SetWindowContextHelpId
GetSystemMenu
AppendMenuA
LoadIconA
LoadImageA
wsprintfA
GetClassInfoA
FindWindowA
SetTimer
InvalidateRect
PtInRect
LoadStringA
GetKeyState
MoveWindow
GetWindowRect
ScreenToClient
GetDlgItem
IsWindow
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
GetClientRect
UnregisterClassA
GetParent
SendMessageA
GetWindow
EnableWindow

gdi32

CreatePen
CreateHatchBrush
GetMapMode
EnumFontFamiliesExA
GetBkColor
GetTextColor
GetRgnBox
DeleteDC
GetWindowExtEx
GetViewportExtEx
DeleteObject
MoveToEx
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetBkMode
RestoreDC
SaveDC
CreateRectRgnIndirect
GetDeviceCaps
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
BitBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetTextExtentPoint32A
GetObjectA
CreateFontIndirectA
GetStockObject
LineTo
SetMapMode

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
QueryServiceStatus
StartServiceA
CloseServiceHandle
OpenServiceA
OpenSCManagerA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegQueryValueA
ControlService
QueryServiceConfigA
EnumServicesStatusA
RegCreateKeyExA
RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegCreateKeyA
RegSetValueExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
Shell_NotifyIconA
ShellExecuteA

comctl32

ord17
ImageList_Destroy
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Duplicate

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
StrTrimA
PathIsUNCA

oledlg

ord8

ole32

CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoUninitialize
CoCreateInstance
CoInitialize
CoTaskMemFree
OleUninitialize
CoRegisterMessageFilter

oleaut32

VariantTimeToSystemTime
VariantCopy
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SystemTimeToVariantTime
SafeArrayDestroy
SysAllocString
OleCreateFontIndirect

wsock32

WSACleanup

iphlpapi

SendARP
GetIfTable

Sections

.text
Size: 468KB - Virtual size: 465KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CCProxy/CCProxy.ini
CCProxy/Language/ChineseBig5.ini
CCProxy/Language/ChineseGB.ini
CCProxy/Language/English.ini
CCProxy/web/accinfo.htm
CCProxy/web/cn_acclistadmin.htm
CCProxy/web/cn_acclistuser.htm
CCProxy/web/en_acclistadmin.htm
CCProxy/web/en_acclistuser.htm
CCProxy/web/proxyadmin.php
CCProxy/zlib1.dll
.dll windows:4 windows x86 arch:x86

7e3560e4dd2deaa398fa039458dd4b4b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

free
malloc
strerror
fflush
_errno
fopen
fread
fprintf
_vsnprintf
sprintf
ftell
fseek
fclose
clearerr
_fdopen
_initterm
_adjust_fdiv
fwrite
fputc

kernel32

DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
易网时代绿软基地.url
.url

Sharing

General

Malware Config

Signatures

Files

b81ebea088d7d3738bcd6e6ab97d5a55

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

shlwapi

oleaut32

ws2_32

iphlpapi

wininet

zlib1

Exports

Exports

Sections

.text Size: 328KB - Virtual size: 325KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 12KB - Virtual size: 202KB

.rsrc Size: 28KB - Virtual size: 24KB

.reloc Size: 32KB - Virtual size: 29KB

2c69d590790e52f0fa271b40dd167f67

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wsock32

iphlpapi

Sections

.text Size: 468KB - Virtual size: 465KB

.rdata Size: 112KB - Virtual size: 109KB

.data Size: 12KB - Virtual size: 142KB

.rsrc Size: 428KB - Virtual size: 424KB

7e3560e4dd2deaa398fa039458dd4b4b

Headers

File Characteristics

Imports

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 512B - Virtual size: 116B

.rsrc Size: 1024B - Virtual size: 920B

.reloc Size: 1024B - Virtual size: 872B

.text
Size: 328KB - Virtual size: 325KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 12KB - Virtual size: 202KB

.rsrc
Size: 28KB - Virtual size: 24KB

.reloc
Size: 32KB - Virtual size: 29KB

.text
Size: 468KB - Virtual size: 465KB

.rdata
Size: 112KB - Virtual size: 109KB

.data
Size: 12KB - Virtual size: 142KB

.rsrc
Size: 428KB - Virtual size: 424KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 512B - Virtual size: 116B

.rsrc
Size: 1024B - Virtual size: 920B

.reloc
Size: 1024B - Virtual size: 872B