Static task
static1
Behavioral task
behavioral1
Sample
5e5808116fdfc2e0c3a3140ae57a31e9_JaffaCakes118.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral2
Sample
5e5808116fdfc2e0c3a3140ae57a31e9_JaffaCakes118.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
5e5808116fdfc2e0c3a3140ae57a31e9_JaffaCakes118
-
Size
427KB
-
MD5
5e5808116fdfc2e0c3a3140ae57a31e9
-
SHA1
80227fff91b9b7cfba7477d5664f65fca1114f6e
-
SHA256
67b5ab23f320a218d5ee3b1cd55d40c4d5b50aee5cb5450dcacf98be06952fd9
-
SHA512
df20f4e493a6a2ddaf8f5cbb4714c7652b47dd96ae4c5a85544f265945a062bd94ae98479b19f41a344c1aa582d8de07fd00a38d7d8c1cd4286e4141b53534a6
-
SSDEEP
3072:Td+hb0FAZOFha4ciaFfcOVKTgCwAyxcR6kF6DhFF4nE2Gfeh52N4/qVYW9V8OQ24:Td+hoFAZCaDFfhPx36ELfWwSN1Ec1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5e5808116fdfc2e0c3a3140ae57a31e9_JaffaCakes118
Files
-
5e5808116fdfc2e0c3a3140ae57a31e9_JaffaCakes118.exe windows:4 windows x86 arch:x86
cf9843b728b831eddafb88bb38461e55
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntdll
NtUnlockFile
kernel32
GetCurrentThreadId
GetCurrentThread
SetThreadPriority
Sleep
LoadLibraryW
GetProcAddress
FreeLibrary
LeaveCriticalSection
GetLastError
VirtualAlloc
EnterCriticalSection
VirtualFree
InitializeCriticalSection
GetSystemInfo
DeleteCriticalSection
ReadFile
SetFilePointer
CloseHandle
GetFileSize
WriteFile
CreateFileW
CreateFileA
SetFileAttributesW
SetFileAttributesA
CopyFileW
CopyFileA
DeleteFileW
DeleteFileA
MoveFileW
MoveFileA
GetFileAttributesExW
GetFileAttributesExA
CreateDirectoryW
CreateDirectoryA
RemoveDirectoryW
RemoveDirectoryA
FindFirstFileW
FindNextFileW
FindFirstFileA
FindNextFileA
FindClose
SetCurrentDirectoryW
SetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentDirectoryA
GetStartupInfoA
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapSize
ExitProcess
GetModuleFileNameA
GetStdHandle
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileType
LockResource
HeapCreate
HeapDestroy
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
MultiByteToWideChar
LoadLibraryA
SetStdHandle
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
GetFileAttributesA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetEndOfFile
GetLocaleInfoA
CompareStringW
CompareStringA
SetEnvironmentVariableA
RtlUnwind
GetSystemDirectoryA
GetWindowsDirectoryA
GetSystemDirectoryW
GetWindowsDirectoryW
GetModuleFileNameW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
GlobalMemoryStatus
GetCommandLineW
CreateMutexW
CreateMutexA
GetSystemDefaultLCID
RaiseException
window
??1WObjectProperties@@UAE@XZ
??1WConfigProperties@@UAE@XZ
?MaybeDestroy@WWindow@@QAEXXZ
??1WLabel@@UAE@XZ
??1WWizardDialog@@UAE@XZ
??0WWizardDialog@@QAE@XZ
??0WLabel@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
?OnInitDialog@WWizardDialog@@UAEXXZ
?LoadFile@FWindowsBitmap@@QAEHPBG@Z
?GetBitmapHandle@FWindowsBitmap@@QAEPAUHBITMAP__@@XZ
??1WButton@@UAE@XZ
??1WWizardPage@@UAE@XZ
??0WWizardPage@@QAE@PBGHPAVWWizardDialog@@@Z
??_7FDelegate@@6B@
??0WButton@@QAE@PAVWWindow@@HUFDelegate@@P6GJPAUHWND__@@IIJ@Z@Z
?OnInitDialog@WDialog@@UAEXXZ
?EndDialog@WDialog@@QAEXH@Z
??1WCoolButton@@UAE@XZ
??0WCoolButton@@QAE@PAVWWindow@@HUFDelegate@@K@Z
?GLogWindow@@3PAVWLog@@A
?ScrollCaret@WEdit@@QAEXXZ
??0WObjectProperties@@QAE@VFName@@KPBGPAVWWindow@@H@Z
?OpenWindow@WProperties@@QAEXPAUHWND__@@@Z
??0WConfigProperties@@QAE@VFName@@PBG@Z
?SetNotifyHook@WWindow@@QAEXPAVFNotifyHook@@@Z
?SetExec@WTerminal@@QAEXPAVFExec@@@Z
??0WCrashBoxDialog@@QAE@PBG0@Z
?hInstanceWindow@@3PAUHINSTANCE__@@A
?DoModal@WDialog@@UAEHPAUHINSTANCE__@@@Z
??1WCrashBoxDialog@@UAE@XZ
?OnDrawItem@WWindow@@UAEXPAUtagDRAWITEMSTRUCT@@@Z
?Show@WWindow@@UAEXH@Z
?GetFinishText@WWizardPage@@UAEPBGXZ
?OnCreate@WWindow@@UAEXXZ
?GetBackText@WWizardPage@@UAEPBGXZ
?OnPaint@WWindow@@UAEXXZ
?GetNext@WWizardPage@@UAEPAV1@XZ
?OnKeyUp@WWindow@@UAEXIJ@Z
?OnCurrent@WWizardPage@@UAEXXZ
?Show@WDialog@@UAEXH@Z
?OnHScroll@WWindow@@UAEXIJ@Z
?OnVScroll@WWindow@@UAEXIJ@Z
?OnEraseBkgnd@WWindow@@UAEHXZ
?OnUndo@WWindow@@UAEXXZ
?Show@WObjectProperties@@UAEXH@Z
?OnShowWindow@WWindow@@UAEXH@Z
?GetRoot@WObjectProperties@@UAEPAVFTreeItem@@XZ
?GetPackageName@WBitmapButton@@UAEPBGXZ
?LocalizeText@WDialog@@UAEXPBG0@Z
?MyDrawEdge@WWindow@@UAEXPAUHDC__@@PAUtagRECT@@H@Z
?OnPaste@WWindow@@UAEXXZ
?OnClose@WWizardDialog@@UAEHXZ
?OnCopy@WWindow@@UAEXXZ
?OnCancel@WWizardDialog@@UAEXXZ
?GetWindowClassName@WConfigProperties@@UAEXPAG@Z
?CallDefaultProc@WDialog@@UAEHIIJ@Z
?OnDestroy@WWindow@@UAEXXZ
?OnCut@WWindow@@UAEXXZ
?OnFinish@WWizardDialog@@UAEXXZ
?OnClose@WWindow@@UAEHXZ
?OnKeyDown@WWindow@@UAEXG@Z
?ExpandAll@WProperties@@UAEXXZ
?OnNext@WWizardDialog@@UAEXXZ
?OnSetCursor@WWindow@@UAEHXZ
?OnChar@WWindow@@UAEXG@Z
?ForceRefresh@WProperties@@UAEXXZ
?OnBack@WWizardDialog@@UAEXXZ
?OnFinishSplitterDrag@WWindow@@UAEXPAVWDragInterceptor@@H@Z
?OnActivate@WWindow@@UAEXH@Z
?ResizeList@WProperties@@UAEXXZ
?OnDestroy@WWizardDialog@@UAEXXZ
?OnRightButtonUp@WWindow@@UAEXXZ
?OnSysCommand@WWindow@@UAEHH@Z
?SetItemFocus@WProperties@@UAEXH@Z
?RefreshPage@WWizardDialog@@UAEXXZ
?OnLeftButtonUp@WWindow@@UAEXXZ
?OnCommand@WWindow@@UAEXH@Z
?SetValue@WProperties@@UAEXPBG@Z
?Advance@WWizardDialog@@UAEXPAVWWizardPage@@@Z
?OnRightButtonDown@WWindow@@UAEXXZ
?OnMove@WWindow@@UAEXHH@Z
?OnFinishSplitterDrag@WProperties@@UAEXPAVWDragInterceptor@@H@Z
?OnRightButtonDoubleClick@WWindow@@UAEXXZ
?OnWindowPosChanging@WWindow@@UAEXPAH000@Z
?BeginSplitterDrag@WProperties@@UAEXXZ
?OnMiddleButtonDoubleClick@WWindow@@UAEXXZ
?OnSize@WWindow@@UAEXKHH@Z
?GetDividerWidth@WProperties@@UAEHXZ
?OnLeftButtonDoubleClick@WWindow@@UAEXXZ
?OnKillFocus@WWindow@@UAEXPAUHWND__@@@Z
?OnLeftButtonDown@WWindow@@UAEXXZ
?OnSetFocus@WWindow@@UAEXPAUHWND__@@@Z
?OnMouseMove@WWindow@@UAEXKUFPoint@@@Z
?OnCopyData@WWindow@@UAEXPAUHWND__@@PAUtagCOPYDATASTRUCT@@@Z
?OnPaint@WProperties@@UAEXXZ
??1FWindowAnchor@@QAE@XZ
?OnMdiActivate@WWindow@@UAEXH@Z
?OnSize@WProperties@@UAEXKHH@Z
?OnReleaseCapture@WWindow@@UAEXXZ
?GetLength@WWindow@@UAEHXZ
?OnActivate@WProperties@@UAEXH@Z
?OnTimer@WWindow@@UAEXXZ
?SetText@WWindow@@UAEXPBG@Z
?GetWindowClassName@WObjectProperties@@UAEXPAG@Z
?OnMouseHover@WWindow@@UAEXXZ
?GetText@WWindow@@UAE?AVFString@@XZ
?OnDestroy@WProperties@@UAEXXZ
?OnMouseLeave@WWindow@@UAEXXZ
?InterceptControlCommand@WWindow@@UAEHIIJ@Z
?OnSetCursor@WProperties@@UAEHXZ
?OnMouseEnter@WWindow@@UAEXXZ
?CallDefaultProc@WWindow@@UAEHIIJ@Z
?DoDestroy@WProperties@@UAEXXZ
?OnEnterIdle@WWindow@@UAEXXZ
?WndProc@WWindow@@UAEJIIJ@Z
?Serialize@WProperties@@UAEXAAVFArchive@@@Z
?OnCancel@WWizardPage@@UAEXXZ
?OnInitDialog@WWindow@@UAEXXZ
?DoDestroy@WWindow@@UAEXXZ
?GetRoot@WConfigProperties@@UAEPAVFTreeItem@@XZ
?GetShow@WWizardPage@@UAEHXZ
?OnMeasureItem@WWindow@@UAEXPAUtagMEASUREITEMSTRUCT@@@Z
?Serialize@WWindow@@UAEXAAVFArchive@@@Z
?GetCancelText@WWizardPage@@UAEPBGXZ
?InitWindowing@@YAXXZ
??1FWindowsBitmap@@QAE@XZ
core
?GMalloc@@3PAVFMalloc@@A
?appBaseDir@@YAPBGXZ
?GCRCTable@@3PAKA
??0FString@@QAE@PBG@Z
??YFString@@QAEAAV0@PBG@Z
?GObjObjects@UObject@@1V?$TArray@PAVUObject@@@@A
?appSqrt@@YANN@Z
?appPackage@@YAPBGXZ
?appSprintf@@YAHPAGPBGZZ
?appUnwindf@@YAXPBGZZ
??1FArray@@QAE@XZ
??1FString@@QAE@XZ
?Empty@FArray@@QAEXHH@Z
?appFailAssert@@YAXPBD0H@Z
?Remove@FArray@@QAEXHHH@Z
??DFString@@QBEPBGXZ
?Add@FArray@@QAEHHH@Z
??0FString@@QAE@XZ
?GUnicodeOS@@3HA
?LocalizeGeneral@@YAPBGPBG00@Z
??HFString@@QAE?AV0@PBG@Z
?GFileManager@@3PAVFFileManager@@A
?winGetSizeANSI@@YAHPBG@Z
?winToANSI@@YAPADPADPBGH@Z
?ParseCommand@@YAHPAPBGPBG@Z
?GIsEditor@@3HA
?GLog@@3PAVFOutputDevice@@A
?GetDefaultActor@UClass@@QAEPAVAActor@@XZ
??0FName@@QAE@PBGW4EFindName@@@Z
?Logf@FOutputDevice@@QAAXPBGZZ
?GetDefaultObject@UClass@@QAEPAVUObject@@XZ
?Parse@@YAHPBG0AAVFName@@@Z
?GetName@UObject@@QBEPBGXZ
??DFName@@QBEPBGXZ
?ExportToOutputDevice@UExporter@@SAXPAVUObject@@PAV1@AAVFOutputDevice@@PBGH@Z
?appClipboardCopy@@YAXPBG@Z
?LocalizeGeneral@@YAPBGPBDPBG1@Z
?GIsRunning@@3HA
?appSecondsQPC@@YANXZ
?appCmdLine@@YAPBGXZ
?Parse@@YAHPBG0AAH@Z
?appCyclesQPC@@YA_KXZ
?GIsBenchmarking@@3HA
?appRandInit@@YAXH@Z
?ParseParam@@YAHPBG0@Z
?GetObj@?$TSingleton@VL2ThreadUtil@@@@SAAAVL2ThreadUtil@@XZ
?Clear@L2ThreadStats@@QAEXXZ
?GL2UseReplayManager@@3HA
?GL2ReplayMode@@3HA
?GWindowManager@@3PAVUSubsystem@@A
?appSleep@@YAXM@Z
?GIsRequestingExit@@3HA
?GScriptCycles@@3HA
?GSecondsPerCycleQPF@@3NA
?GExec@@3PAVFExec@@A
?GLanguageType@@3HA
?GError@@3PAVFOutputDeviceError@@A
?GPageSize@@3KA
?Logf2@FOutputDevice@@QAAXPBGZZ
?appTimestamp@@YAPBGXZ
?Logf@FOutputDevice@@QAAXW4EName@@PBGZZ
?GIsCriticalError@@3HA
?SafeSuppressed@FName@@SAHW4EName@@@Z
?GL2SaveLog@@3HA
?appStrcpy@@YAPAGPAGPBG@Z
?appStrlen@@YAHPBG@Z
?Parse@@YAHPBG0PAGH@Z
?appStrcat@@YAPAGPAGPBG@Z
?GL2ClientOrder@@3HA
?appStrncpy@@YAPAGPAGPBGH@Z
?GNull@@3PAVFOutputDevice@@A
?appSystemTime@@YAXAAH0000000@Z
?SafeString@FName@@SAPBGW4EName@@@Z
?GLogHook@@3PAVFOutputDevice@@A
?GLogHook2@@3PAVFOutputDevice@@A
?Logf2@FOutputDevice@@QAAXW4EName@@PBGZZ
?appGetSystemErrorMessage@@YAPBGH@Z
?StaticShutdownAfterError@UObject@@SAXXZ
?GErrorHist@@3PAGA
?appStrncat@@YAPAGPAGPBGH@Z
?GIsGuarded@@3HA
?LocalizeError@@YAPBGPBDPBG1@Z
?appRequestExit@@YAXH@Z
?GIsClient@@3HA
?GIsStarted@@3HA
?GConfig@@3PAVFConfigCache@@A
?LocalizeError@@YAPBGPBG00@Z
?appGetVarArgs@@YAHPAGHAAPBG@Z
??4FString@@QAEAAV0@PBG@Z
?GIsSlowTask@@3HA
??4FString@@QAEAAV0@ABV0@@Z
??DFString@@QBE?AV0@PBG@Z
??DFString@@QBE?AV0@ABV0@@Z
?appStricmp@@YAHPBG0@Z
?appStrchr@@YAPAGPBGH@Z
??0FArchive@@QAE@XZ
??_7FArchive@@6B@
?ByteOrderSerialize@FArchive@@QAEAAV1@PAXH@Z
?appAtoi@@YAHPBG@Z
?GL2DESCodec@@3PAVFCodec@@A
?GIsUCC@@3HA
?appMsgf@@YA?BHHPBGZZ
?appStristr@@YAPAGPBG0@Z
?GL2ReplayLoadResource@@3HA
?winGetSizeUNICODE@@YAHPBD@Z
?winToUNICODE@@YAPAGPAGPBDH@Z
?appFromAnsi@@YAPBGPBDPAG@Z
?appLoadFileToString@@YAHAAVFString@@PBGPAVFFileManager@@@Z
?appStrstr@@YAPAGPBG0@Z
?Printf@FString@@SA?AV1@PBGZZ
??YFString@@QAEAAV0@ABV0@@Z
?appSaveStringToFile@@YAHABVFString@@PBGPAVFFileManager@@@Z
??8FString@@QBEHABV0@@Z
??8FString@@QBEHPBG@Z
?appStrcmp@@YAHPBG0@Z
?Log@FOutputDevice@@QAEXPBG@Z
?appStaticString1024@@YAPAGXZ
?appAtof@@YAMPBG@Z
??0FString@@QAE@ABV0@@Z
??0FArray@@IAE@HH@Z
?PrivateStaticClass@UClass@@0V1@A
?ParseObject@@YAHPBG0PAVUClass@@AAPAVUObject@@PAV2@@Z
?GetTransientPackage@UObject@@SAPAVUPackage@@XZ
?StaticConstructObject@UObject@@SAPAV1@PAVUClass@@PAV1@VFName@@K1PAVFOutputDevice@@1@Z
?MapName@FArchive@@UAEHPAVFName@@@Z
??0FArray@@QAE@W4ENoInit@@@Z
?CountBytes@FArchive@@UAEXKK@Z
?AttachLazyLoader@FArchive@@UAEXPAVFLazyLoader@@@Z
?SerializeInt@FArchive@@UAEXAAKK@Z
?SerializeBits@FArchive@@UAEXPAXH@Z
?GetCriticalSection@FArchive@@UAEPAVFCriticalSection@@XZ
?GetError@FArchive@@UAEHXZ
??1FFileStream@@AAE@XZ
?SetStopper@FArchive@@UAEXH@Z
?AtStopper@FArchive@@UAEHXZ
?AtEnd@FArchive@@UAEHXZ
?Tell@FArchive@@UAEHXZ
?GSecondsPerCycle@@3NA
?GL2IsFirstRun@@3HA
?GL2TextureDetail@@3HA
?GSEKScreenX@@3HA
?GSEKScreenY@@3HA
?GColorBits@@3HA
?GIsL2Projector@@3HA
?GL2RenderDeco@@3HA
?GL2TerrainCR@@3MA
?GetObj@?$TSingleton@VL2Configuration@@@@SAAAVL2Configuration@@XZ
?SetStaticMeshCR@L2Configuration@@QAEXM@Z
?SetActorCR@L2Configuration@@QAEXM@Z
?SetStaticMeshLodCR@L2Configuration@@QAEXM@Z
?GL2OriginPawnCR@@3MA
?PrivateStaticClass@UPackage@@0VUClass@@A
?appLoadFileToArray@@YAHAAV?$TArray@E@@PBGPAVFFileManager@@@Z
?Parse@@YAHPBG0AAVFString@@@Z
?StaticLoadClass@UObject@@SAPAVUClass@@PAV2@PAV1@PBG2KPAVUPackageMap@@@Z
?appStrfind@@YAPBGPBG0@Z
?GL2CheckResource@@3HA
?GL2NPGEPacking@@3HA
?GRunningOS@@3W4ERunningOS@@A
?GL2RunningFirstHandle@@3PAXA
?appInit@@YAXPBG0PAVFMalloc@@PAVFOutputDevice@@PAVFOutputDeviceError@@PAVFFeedbackContext@@PAVFFileManager@@P6APAVFConfigCache@@XZHPAVFCodec@@@Z
?GNetworkLog@@3PAVFOutputDevice@@A
?GCheckGrpLog@@3PAVFOutputDevice@@A
?GIsServer@@3HA
?GIsScriptable@@3HA
?GLazyLoad@@3HA
?appRand@@YAHXZ
?appPreExit@@YAXXZ
?appExit@@YAXXZ
?GIni@@3PAGA
?GUserIni@@3PAGA
?GIsL2NetLogin@@3HA
?GIsL2NetLog@@3HA
?Log@FOutputDevice@@QAEXW4EName@@PBG@Z
??HFString@@QAE?AV0@ABV0@@Z
?GL2ShowCMViewer@@3HA
??1FArchive@@UAE@XZ
?SinFloat@FGlobalMath@@QAEMM@Z
user32
LoadIconW
SendMessageW
LoadIconA
SendMessageA
SetForegroundWindow
SetFocus
PeekMessageW
PeekMessageA
TranslateMessage
DispatchMessageW
DispatchMessageA
GetForegroundWindow
GetWindowThreadProcessId
MessageBoxW
ShowWindow
UpdateWindow
DestroyWindow
BeginPaint
EndPaint
SetRect
GetDesktopWindow
GetWindowDC
GetDC
ReleaseDC
CreateDialogParamW
CreateDialogParamA
SetWindowRgn
GetDlgItem
GetSystemMetrics
SetWindowPos
RemovePropW
RemovePropA
wsprintfA
gdi32
DeleteObject
ExtCreateRegion
CombineRgn
GetDeviceCaps
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
GetDIBits
CreateDIBitmap
DeleteDC
ws2_32
WSAStartup
WSACleanup
shell32
ShellExecuteW
ShellExecuteA
ole32
CoUninitialize
CoInitialize
engine
?GStats@@3VFStats@@A
?Clear@FStats@@QAEXXZ
?GetPlaySpeed@FL2ReplayManager@@QAEMXZ
?GEngineStats@@3VFEngineStats@@A
?IsDiscardedBM@FL2ReplayManager@@QAEHXZ
?UpdateBMFrameTime@FL2ReplayManager@@QAEXN@Z
?PrivateStaticClass@UEngine@@0VUClass@@A
?PrivateStaticClass@AActor@@0VUClass@@A
?PrivateStaticClass@URenderDevice@@0VUClass@@A
??0?$TArray@E@@QAE@XZ
??1?$TArray@E@@QAE@XZ
?PrivateStaticClass@UGameEngine@@0VUClass@@A
?Release@FStats@@QAEXXZ
?eventUpdateCharacter@APlayerReplicationInfo@@QAEXXZ
comdlg32
GetSaveFileNameA
d3d9
Direct3DCreate9
ddraw
DirectDrawCreate
dsetup
DirectXSetupGetVersion
Sections
.text Size: 396KB - Virtual size: 432KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE