097b6666585aaddfc3572ea5f5e73fe6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

097b6666585aaddfc3572ea5f5e73fe6_JaffaCakes118
Size

1.8MB
MD5

097b6666585aaddfc3572ea5f5e73fe6
SHA1

6af5455c6e7aa0b62717d043554eb2c090554e46
SHA256

8e11c05f4522196080b9d357fa8441ee4c38edf85ccb84706bfa5721645e413f
SHA512

3e000880a1378cd1b68590f151cc80aead6b5a68cc0facffc02a5994afa78afee7a6291f9fed4092d87fa17b9e3e337f310ea4f38aaed76a8ea0b44b8817512b
SSDEEP

49152:NHVLIrtyk7yHMb8SAeEV9TlpyXQbJtUORkEx:NVEJyk+HM9lK9BNRx

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 6 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/Plugins/Plugin_Demo.dll	acprotect
static1/unpack001/Plugins/Plugin_Demo_VC.dll	acprotect
static1/unpack001/Plugins/SE_Debug.dll	acprotect
static1/unpack001/Plugins/SE_File.dll	acprotect
static1/unpack001/Plugins/SE_Std.dll	acprotect
static1/unpack001/Shield.dll	acprotect

UPX packed file 8 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Plugins/DebugTools.exe	upx
static1/unpack001/Plugins/Plugin_Demo.dll	upx
static1/unpack001/Plugins/Plugin_Demo_VC.dll	upx
static1/unpack001/Plugins/SE_Debug.dll	upx
static1/unpack001/Plugins/SE_File.dll	upx
static1/unpack001/Plugins/SE_Std.dll	upx
static1/unpack001/Shield.dll	upx
static1/unpack001/脚本打包演示-画圆v3.exe	upx

Unsigned PE 10 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Plugins/DebugTools.exe
unpack001/Plugins/Plugin_Demo.dll
unpack003/out.upx
unpack001/Plugins/Plugin_Demo_VC.dll
unpack001/Plugins/SE_Debug.dll
unpack008/out.upx
unpack001/Plugins/SE_File.dll
unpack001/Plugins/SE_Std.dll
unpack001/Shield.dll
unpack001/脚本打包演示-画圆v3.exe

Files

097b6666585aaddfc3572ea5f5e73fe6_JaffaCakes118
.rar
Plugins/DebugTools.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 240KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 142KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Plugins/Fonts/base.hzf
Plugins/Fonts/base.txt
Plugins/Plugin_Demo.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

AsciiToChar
CharToAscii
GetMousePos
GetSubStr
GetTickCount
Min
SE_Ext_Version
ShowMsg
UpperCase

Sections

UPX0
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Plugins/Plugin_Demo.txt
Plugins/Plugin_Demo_VC.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

AsciiToChar
CharToAscii
GetMousePos
GetSubStr
Min
SE_Ext_Version
ShowMsg
UpperCase
VCGetTickCount

Sections

UPX0
Size: - Virtual size: 276KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Plugins/Plugin_Demo_VC.txt
Plugins/Plugin_demo_VC_source.rar
.rar
Plugin_Demo_VC.cpp
Plugin_Demo_VC.def
Plugin_Demo_VC.dsp
Plugin_Demo_VC.dsw
Plugin_Demo_VC.h
Plugin_Demo_VC.ncb
Plugin_Demo_VC.opt
Plugin_Demo_VC.plg
.html
ReadMe.txt
StdAfx.cpp
StdAfx.h
Plugins/Plugin_demo_source.rar
.rar
Plugin_demo/Plugin_Demo.cfg
Plugin_demo/Plugin_Demo.dof
Plugin_demo/Plugin_Demo.dpr
.js
Plugin_demo/Plugin_Demo.res
Plugin_demo/Plugin_Demo.~dpr
.js
Plugins/Plugins_Demo_E.rar
.rar
Plugin_Demo_E.e
Plugin_Demo_E.txt
Plugins/SE_Debug.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DebugMsg
SE_Ext_Version

Sections

UPX0
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 97B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Plugins/SE_Debug.txt
Plugins/SE_File.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ChangeDir
ChangeFileExt
CopyFile
DeleteDir
DeleteFile
DirectoryExists
ExtractFileExt
ExtractFileName
ExtractFilePath
FileExists
ForceDir
GetCurrentDir
GetDirFiles
GetExeFileName
GetExePath
GetSpecialDir
RenameFile
SEFileAppend
SEFileAppendLn
SEFileClose
SEFileCreate
SEFileOpen
SEFileRead
SEFileReadLn
SEFileSeek
SEFileSize
SEFileWrite
SEFileWriteLn
SE_Ext_Version

Sections

UPX0
Size: - Virtual size: 220KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 133KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Plugins/SE_File.txt
.js
Plugins/SE_OCR.txt
.vbs
Plugins/SE_Std.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

AsciiToChar
CharToAscii
ClientToScreen
FloatToStr
GetClipBoardText
GetCurrentProcess
GetCurrentProcessID
GetCurrentThread
GetCurrentThreadID
GetDay
GetHour
GetInputStr
GetMSec
GetMinute
GetMonth
GetMousePos
GetPriorityClass
GetSec
GetSerialNumber
GetSubStr
GetThreadPriority
GetTickCount
GetTime
GetWindowText
GetWindowThreadProcessID
GetYear
HTMLToTXT
IntToHex
IntToStr
InternetConnected
LTrim
Left
LocalComputerName
LocalIP
LowerCase
Max
Min
OpenProcess
ParamCount
ParamStr
RTrim
RegReadInteger
RegReadString
RegWriteInteger
RegWriteString
Right
SE_Ext_Version
ScreenToClient
SetClipBoardText
SetPriorityClass
SetThreadPriority
SetWindow
SetWindowText
ShowMsg
StrDuplicate
StrInsert
StrReplace
StrToFloat
StrToInt
SubStrCount
SubStrPos
SwitchToWindow
TerminateProcess
TerminateThread
Trim
TrimLeft
TrimRight
UpperCase

Sections

UPX0
Size: - Virtual size: 252KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Plugins/SE_Std.txt
.vbs
Plugins/特别申明.txt
Scripts/Demos/API调用/标准API调用演示.txt
.js
Scripts/Demos/VBScript & JavaScript/VBScript及JavaScript调用演示.txt
.vbs
Scripts/Demos/其他/控制发声.txt
Scripts/Demos/其他/读取鼠标当前位置.txt
.js
Scripts/Demos/其他/调用外部程序或者打开文档.txt
Scripts/Demos/变速器/1-0.1倍速.txt
Scripts/Demos/变速器/2-0.5倍速.txt
Scripts/Demos/变速器/3-原速.txt
Scripts/Demos/变速器/4-2倍速.txt
Scripts/Demos/变速器/5-5倍速.txt
Scripts/Demos/变速器/6-10倍速.txt
Scripts/Demos/变速器/7-50倍速.txt
Scripts/Demos/图形和屏幕抓点等/图形识别1.txt
Scripts/Demos/图形和屏幕抓点等/图形识别2.txt
.js
Scripts/Demos/图形和屏幕抓点等/扫描屏幕(GetColorPos).txt
.js
Scripts/Demos/图形和屏幕抓点等/扫描屏幕(IfMoveToColor).txt
Scripts/Demos/图形和屏幕抓点等/扫描屏幕.txt
.js
Scripts/Demos/图形和屏幕抓点等/演示抓内存脚本.txt
Scripts/Demos/图形和屏幕抓点等/演示抓点脚本.txt
Scripts/Demos/定时器/定时器功能演示脚本.txt
.js
Scripts/Demos/插件/文件读写插件演示.txt
.vbs
Scripts/Demos/插件/调用插件函数.txt
.js
Scripts/Demos/数值计算/使用数组.txt
.vbs
Scripts/Demos/数值计算/画圆.txt
.js
Scripts/Demos/数值计算/画正弦曲线.txt
.js
Scripts/Demos/文字识别/文字识别演示.txt
.js
Scripts/Demos/程序控制/Include_1.inc
.vbs
Scripts/Demos/程序控制/Include_2.inc
Scripts/Demos/程序控制/Include演示.txt
.js
Scripts/Demos/程序控制/演示FOR循环.txt
Scripts/Demos/程序控制/演示WHILE循环.txt
Scripts/Demos/程序控制/跳转和子程序.txt
.js
Scripts/Demos/网络消息/示例1：网络消息发送.txt
Scripts/Demos/网络消息/示例1：网络消息接收.txt
.js
Scripts/Demos/网络消息/示例2：网络消息发送.txt
.vbs
Scripts/Demos/网络消息/示例2：网络消息接收.txt
.js
Scripts/Demos/网络消息/示例3：网络消息发送.txt
Scripts/Demos/网络消息/示例3：网络消息循环接收.txt
.js
Scripts/Demos/输入输出/检测键盘输入1.txt
.js
Scripts/Demos/输入输出/检测键盘输入2.txt
.js
Scripts/Demos/输入输出/检测鼠标动作.txt
.js
Scripts/Demos/输入输出/输出16进制数值.txt
.js
Scripts/Demos/输入输出/输出字符串.txt
.js
Scripts/INI文件读写.txt
.js
Scripts/多重条件判断演示.txt
.js
Scripts/定时器功能演示脚本.txt
.js
Scripts/检测组合键.txt
Scripts/注册表读写.txt
.js
Scripts/自助抓点脚本.txt
.js
Scripts/自定义函数和过程.txt
.vbs
Scripts/鼠标启动脚本示例.txt
.js
Shield.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ChangeMode
LoadShield
UnloadShield

Sections

UPX0
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Speeder.txt
脚本打包演示-画圆v3.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 344KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 223KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 240KB

UPX1 Size: 142KB - Virtual size: 144KB

.rsrc Size: 3KB - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 60KB

UPX1 Size: 27KB - Virtual size: 28KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Sections

CODE Size: 45KB - Virtual size: 44KB

DATA Size: 1KB - Virtual size: 1KB

BSS Size: - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 242B

.reloc Size: 4KB - Virtual size: 3KB

.rsrc Size: 5KB - Virtual size: 5KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 276KB

UPX1 Size: 68KB - Virtual size: 68KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 32KB

UPX1 Size: 9KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 4KB

Headers

File Characteristics

Sections

CODE Size: 12KB - Virtual size: 11KB

DATA Size: 512B - Virtual size: 208B

BSS Size: - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 97B

.reloc Size: 1024B - Virtual size: 912B

.rsrc Size: 1KB - Virtual size: 1KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 220KB

UPX1 Size: 133KB - Virtual size: 136KB

.rsrc Size: 5KB - Virtual size: 8KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 252KB

UPX1 Size: 144KB - Virtual size: 144KB

.rsrc Size: 6KB - Virtual size: 8KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 64KB

UPX1 Size: 28KB - Virtual size: 28KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

UPX0
Size: - Virtual size: 240KB

UPX1
Size: 142KB - Virtual size: 144KB

.rsrc
Size: 3KB - Virtual size: 4KB

UPX0
Size: - Virtual size: 60KB

UPX1
Size: 27KB - Virtual size: 28KB

.rsrc
Size: 2KB - Virtual size: 4KB

CODE
Size: 45KB - Virtual size: 44KB

DATA
Size: 1KB - Virtual size: 1KB

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 242B

.reloc
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 5KB

UPX0
Size: - Virtual size: 276KB

UPX1
Size: 68KB - Virtual size: 68KB

UPX2
Size: 512B - Virtual size: 4KB

UPX0
Size: - Virtual size: 32KB

UPX1
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 4KB

CODE
Size: 12KB - Virtual size: 11KB

DATA
Size: 512B - Virtual size: 208B

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 97B

.reloc
Size: 1024B - Virtual size: 912B

.rsrc
Size: 1KB - Virtual size: 1KB

UPX0
Size: - Virtual size: 220KB

UPX1
Size: 133KB - Virtual size: 136KB

.rsrc
Size: 5KB - Virtual size: 8KB

UPX0
Size: - Virtual size: 252KB

UPX1
Size: 144KB - Virtual size: 144KB

.rsrc
Size: 6KB - Virtual size: 8KB

UPX0
Size: - Virtual size: 64KB

UPX1
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 2KB - Virtual size: 4KB

UPX0
Size: - Virtual size: 344KB

UPX1
Size: 223KB - Virtual size: 224KB

.rsrc
Size: 4KB - Virtual size: 8KB