adrien mdrr[.]zip

Resubmissions

14/07/2024, 12:45

240714-py3n3a1aqr 6

14/07/2024, 12:39

240714-pvqv4azhpl 7

Sharing

Copy URL

Twitter E-mail

General

Target

adrien mdrr.zip
Size

5.5MB
MD5

ed2b46cd9ec7f5738116e4bd00b5a4a0
SHA1

62b7d317584bdaaf7622b90d4d21eb52929cb48d
SHA256

7fde9a526ff5d71c1f58edce263a66c2fb36045ff4856c3a9b9e22ab0509b87b
SHA512

a0848f343ea17ad3194b5dd679f7293675370b2502458d3ccc20a936ec21b2883dfe1a4d380d39325dd097c33588417e945cdb610212f82518e3fbecf2a3f1bf
SSDEEP

98304:FetdtSofvTyUuhDaXEmBxHdYobxWqgQhbsC5kQn5FGbVI+o/gh/cmcV9:FatSsvWTKBMEOQh4Ozi5gUcV9

Score

3^/10

Malware Config

Signatures

Unsigned PE 9 IoCs

Checks for missing Authenticode signature.

resource
unpack001/videos adrien/repertoire d'images/Assets/Mods/RainbowStrobe/RainbowStrobe.dll
unpack001/videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/bin/Release/DefaultMod.dll
unpack001/videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/bin/Release/GooseModdingAPI.dll
unpack001/videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/obj/Release/DefaultMod.dll
unpack001/videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/bin/Release/GooseModdingAPI.dll
unpack001/videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/obj/Release/GooseModdingAPI.dll
unpack001/videos adrien/repertoire d'images/GooseDesktop.exe
unpack001/videos adrien/repertoire d'images/GooseModdingAPI.dll
unpack001/videos adrien/repertoire d'images/MMQ.dll

Files

adrien mdrr.zip
.zip
videos adrien/desktop.ini
videos adrien/musique sur adrien.mp3 .bat - Raccourci.lnk
.lnk
videos adrien/repertoire d'images/Assets/Images/MemeAttributions.txt
videos adrien/repertoire d'images/Assets/Images/OtherGfx/DonatePage.png
.png
videos adrien/repertoire d'images/Assets/Images/OtherGfx/heart.png
.png
videos adrien/repertoire d'images/Assets/Mods/RainbowStrobe/RainbowStrobe.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\DemoPlugin\obj\Release\DemoPlugin.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/Assets/Sound/Music/odyssee_ch8.mp3
videos adrien/repertoire d'images/Assets/Sound/NotEmbedded/BITE.mp3
videos adrien/repertoire d'images/Assets/Sound/NotEmbedded/Honk.mp3
videos adrien/repertoire d'images/Assets/Sound/NotEmbedded/aaa.mp3
videos adrien/repertoire d'images/Assets/Text/NotepadMessages/am goose.txt
videos adrien/repertoire d'images/Assets/Text/NotepadMessages/good work.txt
videos adrien/repertoire d'images/Assets/Text/NotepadMessages/gooseASCII1.txt
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/.vs/GooseMod/v14/.suo
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/.vs/GooseModdingAPI/v14/.suo
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/DefaultMod.csproj
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/ModMain.cs
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/Properties/AssemblyInfo.cs
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/TaskDemo_FollowLowAccel.cs
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/bin/Release/DefaultMod.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\_API Solution\GooseModdingAPI\DefaultMod\obj\Release\DefaultMod.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/bin/Release/DefaultMod.pdb
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/bin/Release/GooseModdingAPI.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\_API Solution\GooseModdingAPI\GooseModdingAPI\obj\Release\GooseModdingAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/bin/Release/GooseModdingAPI.pdb
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/obj/Release/DefaultMod.csproj.FileListAbsolute.txt
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/obj/Release/DefaultMod.csprojResolveAssemblyReference.cache
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/obj/Release/DefaultMod.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\_API Solution\GooseModdingAPI\DefaultMod\obj\Release\DefaultMod.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/obj/Release/DefaultMod.pdb
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/DefaultMod/obj/Release/DesignTimeResolveAssemblyReferencesInput.cache
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseMod.sln
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/Exports.cs
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/GooseModdingAPI.csproj
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/Properties/AssemblyInfo.cs
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/SamEngine.cs
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/bin/Release/GooseModdingAPI.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\_API Solution\GooseModdingAPI\GooseModdingAPI\obj\Release\GooseModdingAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/bin/Release/GooseModdingAPI.pdb
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/obj/Release/GooseModdingAPI.csproj.FileListAbsolute.txt
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/obj/Release/GooseModdingAPI.csprojResolveAssemblyReference.cache
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/obj/Release/GooseModdingAPI.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\_API Solution\GooseModdingAPI\GooseModdingAPI\obj\Release\GooseModdingAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/FOR MOD-MAKERS/GooseMod_DefaultSolution/GooseModdingAPI/obj/Release/GooseModdingAPI.pdb
videos adrien/repertoire d'images/FOR MOD-MAKERS/What is this.txt
videos adrien/repertoire d'images/GooseDesktop.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Start Minecraft\documents\visual studio 2015\Projects\GooseDesktop\GooseDesktop\obj\Release\GooseDesktop.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 194KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/GooseModdingAPI.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\Projects\GooseDesktop\_API Solution\GooseModdingAPI\GooseModdingAPI\obj\Release\GooseModdingAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/MMQ.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Start Minecraft\Documents\Visual Studio 2015\_Libraries\MMQ-master\MMQ\obj\Release\MMQ.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
videos adrien/repertoire d'images/config.ini
videos adrien/repertoire d'images/dtd.bat
videos adrien/repertoire d'images/musique sur adrien.mp4 .bat

Resubmissions

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 3KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 3KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 14KB - Virtual size: 13KB

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 3KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 14KB - Virtual size: 13KB

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 14KB - Virtual size: 13KB

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 194KB - Virtual size: 193KB

.rsrc
Size: 26KB - Virtual size: 25KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 12B