3e898a9d95f82dbbcd0dbe06338bd742_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3e898a9d95f82dbbcd0dbe06338bd742_JaffaCakes118
Size

518KB
MD5

3e898a9d95f82dbbcd0dbe06338bd742
SHA1

19fc242a627481d16c03b4487f37786eaf8df01c
SHA256

017c74f0e2671302f5fef903ba89fa77666d86ec73ad8c838d88136e394fd0e1
SHA512

96676add4b53425e93b269cdde216af225e05baaad0e49b584d5e3ca38deb6991448bff68bcb0855e259edf698e2417459f197daa6a23a231708501eb6ce6714
SSDEEP

12288:qzOCvWApPOy0FP3+RZ6zSrKcfK9LeTS1W7:iOWO33+RZ6KPiRewu

Score

3^/10

Malware Config

Signatures

Unsigned PE 11 IoCs

Checks for missing Authenticode signature.

resource
unpack001/FILES/MISC/COPYKERN.EXE
unpack001/FILES/MISC/KILL.EXE
unpack001/FILES/MISC/SPAWN.EXE
unpack001/FILES/SAMPLES/EX1.EXE
unpack001/FILES/SAMPLES/EX2.EXE
unpack001/FILES/SAMPLES/EX3.EXE
unpack001/FILES/SAMPLES/EX4.EXE
unpack001/FILES/UTILS/PEMANGLE/PEMANGLE.EXE
unpack001/FILES/UTILS/PESHRINK/PESHRINK.EXE
unpack001/FILES/UTILS/PESPILL/PESPILL.EXE
unpack001/FILES/UTILS/PEWRITE/PEWRITE.EXE

Files

3e898a9d95f82dbbcd0dbe06338bd742_JaffaCakes118
.zip
--------.---
FILES/INCLUDES/DESCRIPT.ION
FILES/INCLUDES/W32ER_LJ.INC
FILES/INCLUDES/W32NT_LJ.INC
FILES/INCLUDES/W32US_LJ.INC
FILES/LJ_INFO.EXE
FILES/MISC/COPYKERN.ASM
FILES/MISC/COPYKERN.EXE
.exe windows:1 windows x86 arch:x86

535e5c6dcb45fe9fc166e4fe5bd3b19b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess
GetLastError
GetSystemDirectoryA
GetWindowsDirectoryA
WritePrivateProfileStringA
lstrcat
CopyFileA

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/MISC/DESCRIPT.ION
FILES/MISC/KILL.ASM
FILES/MISC/KILL.EXE
.exe windows:1 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/MISC/SPAWN.ASM
FILES/MISC/SPAWN.EXE
.exe windows:1 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/SAMPLES/DESCRIPT.ION
FILES/SAMPLES/EX1.ASM
FILES/SAMPLES/EX1.EXE
.exe windows:1 windows x86 arch:x86

f9ade0aa18f660a34a4fa23392e21838

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

Sections

CODE
Size: 8B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IMPORTS
Size: 6B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

imports
Size: 86B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

relocs
Size: 10B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FILES/SAMPLES/EX2.ASM
FILES/SAMPLES/EX2.EXE
.exe windows:1 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

CODE
Size: 33B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 35B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IMPORTS
Size: 12B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

imports
Size: 148B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

relocs
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FILES/SAMPLES/EX3.ASM
FILES/SAMPLES/EX3.EXE
.exe windows:1 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

CODE
Size: 35B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 35B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IMPORTS
Size: 12B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

imports
Size: 148B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

relocs
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FILES/SAMPLES/EX4.ASM
FILES/SAMPLES/EX4.EXE
.exe windows:1 windows x86 arch:x86

37b999431cf86f5dead6479046208a23

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleA

user32

DialogBoxParamA
EndDialog

Sections

CODE
Size: 103B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IMPORTS
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

imports
Size: 200B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

relocs
Size: 28B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

resource
Size: 232B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/SAMPLES/EX4.RC
FILES/UTILS/DESCRIPT.ION
FILES/UTILS/INFO-PE/INFO-PE.EXE
FILES/UTILS/INFO-PE/INFO-PE.PAS
.js
FILES/UTILS/INFO-PE/README.TXT
FILES/UTILS/PEMANGLE/MAKEFILE
FILES/UTILS/PEMANGLE/PEMANGLE.ASM
FILES/UTILS/PEMANGLE/PEMANGLE.DEF
FILES/UTILS/PEMANGLE/PEMANGLE.EXE
.exe windows:1 windows x86 arch:x86

d4f0d3036e1b95ffaa0e8843b6958e2a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
CloseHandle
ExitProcess
GetCommandLineA
CreateFileMappingA
GetStdHandle
MapViewOfFile
SetEndOfFile
SetFilePointer
UnmapViewOfFile
WriteFile
GetFileSize

imagehlp

CheckSumMappedFile

Sections

CODE
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/UTILS/PEMANGLE/README.TXT
FILES/UTILS/PEMANGLE/TEST.ASM
FILES/UTILS/PESHRINK/MAKEFILE
FILES/UTILS/PESHRINK/PESHRINK.ASM
FILES/UTILS/PESHRINK/PESHRINK.DEF
FILES/UTILS/PESHRINK/PESHRINK.EXE
.exe windows:1 windows x86 arch:x86

d4f0d3036e1b95ffaa0e8843b6958e2a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
CloseHandle
ExitProcess
GetCommandLineA
CreateFileMappingA
GetStdHandle
MapViewOfFile
SetEndOfFile
SetFilePointer
UnmapViewOfFile
WriteFile
GetFileSize

imagehlp

CheckSumMappedFile

Sections

CODE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/UTILS/PESHRINK/README.TXT
FILES/UTILS/PESHRINK/TEST.ASM
FILES/UTILS/PESPILL/MAKEFILE
FILES/UTILS/PESPILL/PESPILL.ASM
FILES/UTILS/PESPILL/PESPILL.DEF
FILES/UTILS/PESPILL/PESPILL.EXE
.exe windows:1 windows x86 arch:x86

b95e26812eedecc8bfaf02c6c97dd12c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
FreeLibrary
GetCommandLineA
GetLastError
GetStdHandle
IsBadReadPtr
IsBadStringPtrA
LoadLibraryA
WriteFile
lstrcpy
lstrlen
AllocConsole

Sections

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/UTILS/PESPILL/README.TXT
FILES/UTILS/PESPILL/TEST.ASM
FILES/UTILS/PEWRITE/MAKEFILE
FILES/UTILS/PEWRITE/PEWRITE.ASM
FILES/UTILS/PEWRITE/PEWRITE.DEF
FILES/UTILS/PEWRITE/PEWRITE.EXE
.exe windows:1 windows x86 arch:x86

a6a3480217c0dc34fbfb16ba31b79922

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
CreateFileMappingA
ExitProcess
GetCommandLineA
GetFileSize
GetStdHandle
MapViewOfFile
SetEndOfFile
SetFilePointer
UnmapViewOfFile
WriteFile
CloseHandle

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FILES/UTILS/PEWRITE/README.TXT
FILES/UTILS/PEWRITE/TEST.ASM
FILE_ID.DIZ
INDEX.MAG
VXTASY#1.000
VXTASY#1.100
VXTASY#1.101
VXTASY#1.102
VXTASY#1.103
VXTASY#1.104
VXTASY#1.105
VXTASY#1.106
VXTASY#1.200
VXTASY#1.201
VXTASY#1.202
VXTASY#1.203
VXTASY#1.204
VXTASY#1.205
VXTASY#1.206
VXTASY#1.207
VXTASY#1.208
VXTASY#1.209
VXTASY#1.20A
VXTASY#1.20B
VXTASY#1.20C
VXTASY#1.20D
VXTASY#1.300
VXTASY#1.301
VXTASY#1.400
VXTASY#1.401
VXTASY#1.402
VXTASY#1.403
VXTASY#1.404
VXTASY#1.405
VXTASY#1.406
VXTASY#1.407
VXTASY#1.408
VXTASY#1.409
VXTASY#1.40A
VXTASY#1.40B
VXTASY#1.40C
VXTASY#1.500
VXTASY#1.501
VXTASY#1.502
VXTASY#1.503
VXTASY#1.504
VXTASY#1.505
VXTASY#1.506
VXTASY#1.999
VXTASY#1.EXE
VXTASY.DAT
VXTASY.NFO

Sharing

General

Malware Config

Signatures

Files

535e5c6dcb45fe9fc166e4fe5bd3b19b

Headers

File Characteristics

Imports

kernel32

Sections

CODE Size: 512B - Virtual size: 4KB

DATA Size: 1024B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 512B - Virtual size: 4KB

DATA Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

Imports

user32

kernel32

Sections

CODE Size: 4KB - Virtual size: 4KB

DATA Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

f9ade0aa18f660a34a4fa23392e21838

Headers

File Characteristics

Imports

kernel32

Sections

CODE Size: 8B - Virtual size: 4KB

IMPORTS Size: 6B - Virtual size: 4KB

imports Size: 86B - Virtual size: 4KB

relocs Size: 10B - Virtual size: 4KB

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 33B - Virtual size: 4KB

DATA Size: 35B - Virtual size: 4KB

IMPORTS Size: 12B - Virtual size: 4KB

imports Size: 148B - Virtual size: 4KB

relocs Size: 24B - Virtual size: 4KB

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 35B - Virtual size: 4KB

DATA Size: 35B - Virtual size: 4KB

IMPORTS Size: 12B - Virtual size: 4KB

imports Size: 148B - Virtual size: 4KB

relocs Size: 24B - Virtual size: 4KB

37b999431cf86f5dead6479046208a23

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 103B - Virtual size: 4KB

IMPORTS Size: 24B - Virtual size: 4KB

CODE
Size: 512B - Virtual size: 4KB

DATA
Size: 1024B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

CODE
Size: 512B - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

CODE
Size: 4KB - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

CODE
Size: 8B - Virtual size: 4KB

IMPORTS
Size: 6B - Virtual size: 4KB

imports
Size: 86B - Virtual size: 4KB

relocs
Size: 10B - Virtual size: 4KB

CODE
Size: 33B - Virtual size: 4KB

DATA
Size: 35B - Virtual size: 4KB

IMPORTS
Size: 12B - Virtual size: 4KB

imports
Size: 148B - Virtual size: 4KB

relocs
Size: 24B - Virtual size: 4KB

CODE
Size: 35B - Virtual size: 4KB

DATA
Size: 35B - Virtual size: 4KB

IMPORTS
Size: 12B - Virtual size: 4KB

imports
Size: 148B - Virtual size: 4KB

relocs
Size: 24B - Virtual size: 4KB

CODE
Size: 103B - Virtual size: 4KB

IMPORTS
Size: 24B - Virtual size: 4KB

imports
Size: 200B - Virtual size: 4KB

relocs
Size: 28B - Virtual size: 4KB

resource
Size: 232B - Virtual size: 4KB

CODE
Size: 1KB - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

CODE
Size: 1024B - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

CODE
Size: 4KB - Virtual size: 4KB

DATA
Size: 7KB - Virtual size: 8KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

CODE
Size: 512B - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB