652cb172ab6c8cc2d860942873ccbd6e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

652cb172ab6c8cc2d860942873ccbd6e_JaffaCakes118
Size

1.3MB
MD5

652cb172ab6c8cc2d860942873ccbd6e
SHA1

592e3d6aa1e3b6723d48b728dca5ec480271abad
SHA256

740025445f56dc540d2766770ec0d1633c2fd539707a6c8773dd6094a91048b3
SHA512

b27ba169e3c678ce7f1678ef78d8b36c694da57123536008ee6678c8ce6c5cb903fa730bc568932678fc18929df2f8ad63776ad65e3e3a516bab969403481e15
SSDEEP

24576:b9ZE0wmfiY4F1oyzpx/Ra1H1oJojk1CIEYN7qgYxjhzNrpiPG8lknpTH4PISW6N:ZZxw7YEoyj/RyHCmwCIR7XIj9R8lkZ4/

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 6 IoCs

Checks for missing Authenticode signature.

resource
652cb172ab6c8cc2d860942873ccbd6e_JaffaCakes118
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/StartMenu.dll
unpack001/foobar2000.exe
unpack001/out.upx
unpack001/utf8api.dll

Files

652cb172ab6c8cc2d860942873ccbd6e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 192KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

1f4c4faa2a5228733f7ee5edf40f6693

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrlenA
WritePrivateProfileStringA
lstrcpynA
lstrcatA
lstrcpyA
GetPrivateProfileIntA
MultiByteToWideChar
GetModuleHandleA
lstrcmpiA
GlobalFree
GetPrivateProfileStringA
GlobalAlloc

user32

GetWindowLongA
DrawTextA
SetCursor
LoadCursorA
PtInRect
MapWindowPoints
GetDlgCtrlID
GetClientRect
DrawFocusRect
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
CallWindowProcA
PostMessageA
MessageBoxA
SendMessageA
SetWindowTextA
GetWindowTextA
wsprintfA
CharNextA
LoadIconA

gdi32

SetTextColor
DeleteObject

comdlg32

GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA

shell32

ShellExecuteA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDListA

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 894B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/StartMenu.dll
.dll windows:4 windows x86 arch:x86

aebc3107701149edfc563b8db7a789fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
GlobalAlloc
MulDiv
GetModuleHandleA
GlobalFree
FindClose
FindNextFileA
FindFirstFileA
lstrcmpiA
lstrcatA
lstrcpyA

user32

GetDlgItem
PostMessageA
CallWindowProcA
CreateDialogParamA
CheckDlgButton
ShowWindow
LoadIconA
GetClientRect
MoveWindow
ScreenToClient
GetWindowRect
ReleaseDC
GetDC
EnableWindow
SetWindowTextA
SendMessageA
GetWindowTextA
IsDlgButtonChecked
SetWindowLongA
IsDialogMessageA
GetMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
GetWindowLongA

gdi32

GetTextMetricsA
SelectObject

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA

Exports

Exports

Select

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
foobar2000.exe
.exe windows:4 windows x86 arch:x86

bc7cc360f5bcb879e3a581b6645e838b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTickCount
GetModuleHandleA
CloseHandle
WaitForSingleObject
CreateThread
GetVersionExA
Sleep
GetLastError
SetLastError
ExitProcess
ReleaseMutex
SleepEx
DuplicateHandle
GetCurrentThread
SetPriorityClass
TerminateThread
GlobalUnlock
GlobalLock
GlobalSize
InterlockedIncrement
InterlockedDecrement
GlobalFree
GlobalAlloc
GetFileTime
ReadFile
WriteFile
GetFileSize
SetFilePointer
SetEndOfFile
MulDiv
GetProcAddress
FreeLibrary
GetStartupInfoA
WideCharToMultiByte
MultiByteToWideChar
SetThreadPriority
GetCurrentThreadId

user32

GetDlgItem
GetWindowPlacement
SetWindowPlacement
MapDialogRect
MapWindowPoints
GetSubMenu
GetMenuState
GetMenuItemID
EnableWindow
SetDlgItemInt
GetDlgItemInt
KillTimer
SetTimer
SetForegroundWindow
ShowWindow
DestroyWindow
SetFocus
SetWindowPos
GetSystemMetrics
GetWindowRect
EndDialog
RegisterHotKey
UnregisterHotKey
DestroyMenu
TrackPopupMenu
CreatePopupMenu
GetKeyState
MapVirtualKeyA
MessageBoxA
EnumWindows
TranslateMessage
PostQuitMessage
PostMessageA
DdeNameService
GetMessageTime
DdeUninitialize
DdeFreeStringHandle
SetCursor
SetCapture
SendMessageA
RedrawWindow
LockWindowUpdate
PtInRect
GetClientRect
ScreenToClient
ClientToScreen
ReleaseCapture
GetMenuItemCount
IsWindowEnabled
GetParent
GetMessagePos
IsIconic
IsWindowVisible
MessageBeep

gdi32

DeleteObject

ole32

ReleaseStgMedium

comctl32

ord17

utf8api

stricmp_utf8_max
uAddStringLower
uCreateDirectory
uMoveFile
uDeleteFile
uRemoveDirectory
uCreateFile
uGetTempFileName
uGetTempPath
uCharUpper
uModifyMenu
uGetMenuString
uGetMenuItemType
uDragQueryFileCount
uCharLower
uSortStringCreate
uSortStringCompare
uSortStringFree
uSendDlgItemMessage
uSendMessage
uMessageBox
uSendMessageText
uGetModuleFileName
stricmp_utf8
uFindFirstFile
uLoadLibrary
uOutputDebugString
uCreateDialog
uDragQueryFile
uGetOpenFileNameMulti
uBrowseForFolder
uGetOpenFileName
stricmp_utf8_stringtoblock
uLoadCursor
uUnregisterClass
uDdeQueryString
uDdeAccessData_Text
uDefWindowProc
uGetModuleHandle
uRegisterClass
uCreateWindowEx
uDdeInitialize
uDdeCreateStringHandle
uGetClassName
uLoadImage
uLoadIcon
uPeekMessage
uGetMessage
uIsDialogMessage
uDispatchMessage
UTF8API_GetVersion
uPrintCrashInfo_Init
uGetCommandLine
uGetLongPathName
uGetFullPathName
uGetEnvironmentVariable
uCreateMutex
uRegisterClipboardFormat
uGetCurrentDirectory
uSetCurrentDirectory
uGetKeyNameText
uStringCompare
uSetDlgItemText
uAddStringUpper
??0uCallStackTracker@@QAE@PBD@Z
??1uCallStackTracker@@QAE@XZ
uGetFileAttributes
uSetClipboardString
stricmp_utf8_partial
uPostMessage
uCallWindowProc
uCreateFontIndirect
uChooseColor
IsUnicode
uChooseFont
uGetDefaultFont
uPrintfV
uTreeView_InsertItem
uSetWindowLong
uSetWindowText
uGetWindowLong
uShellExecute
uGetWindowText
uReplaceCharAdd
uDialogBox
uGetDlgItemText
uAppendMenu

msvcrt

__set_app_type
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
_except_handler3
wcslen
_ui64toa
_gcvt
strncpy
towupper
_atoi64
atoi
memmove
isalpha
strstr
strcpy
_i64toa
floor
strchr
pow
strncmp
calloc
_controlfp
strrchr
_purecall
strtoul
strcmp
memset
_ftol
abs
_strdup
sprintf
_fpclass
_stricmp
__p__fmode
??3@YAXPAX@Z
realloc
strlen
memcpy
qsort
??2@YAPAXI@Z
memcmp
malloc
free
_itoa

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
utf8api.dll
.dll windows:4 windows x86 arch:x86

9d7e4b442188e0439287e6b63f2fed25

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringA
lstrcmpiA
CreateEventA
GlobalUnlock
GlobalLock
GlobalAlloc
GetEnvironmentVariableA
GetModuleHandleA
MoveFileA
DeleteFileA
GetFileAttributesA
RemoveDirectoryA
CreateDirectoryA
CreateMutexA
GetFullPathNameA
GetCommandLineA
GetTempPathA
GetTempFileNameA
WideCharToMultiByte
FindNextFileA
FindClose
GetSystemDirectoryA
GetWindowsDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryA
ExpandEnvironmentStringsA
GetShortPathNameA
CompareStringA
CreateProcessA
CreateFileMappingA
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
MultiByteToWideChar
DisableThreadLibraryCalls
MulDiv
LeaveCriticalSection
ExitProcess
SetUnhandledExceptionFilter
IsBadReadPtr
WriteFile
CreateFileA
LoadLibraryA
GetProcAddress
FreeLibrary
InterlockedIncrement
EnterCriticalSection
GetCurrentProcess
GetModuleFileNameA
CloseHandle
DeleteCriticalSection
FindFirstFileA
InitializeCriticalSection

user32

SendNotifyMessageA
SetWindowsHookExA
DdeAccessData
DdeInitializeA
DdeQueryStringA
DdeCreateStringHandleA
UnregisterClassA
LoadImageA
SendMessageCallbackA
RegisterClassA
RegisterWindowMessageA
wsprintfA
CharNextA
IntersectRect
CharLowerA
CharUpperA
LoadMenuA
LoadIconA
GetKeyNameTextA
GetMenuStringA
GetClipboardFormatNameA
RegisterClipboardFormatA
GetMenuItemInfoA
CreateWindowExA
ModifyMenuA
LoadCursorA
DispatchMessageA
SendMessageTimeoutA
GetClassNameA
GetMessageA
IsDialogMessageA
DefWindowProcA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
InsertMenuA
AppendMenuA
CallWindowProcA
MessageBoxA
SetWindowLongA
GetWindowLongA
DialogBoxParamA
CreateDialogParamA
SetDlgItemTextA
SetWindowTextA
GetWindowTextLengthA
GetWindowTextA
PostThreadMessageA
PostMessageA
GetDlgItem
SendDlgItemMessageA
SendMessageA
PeekMessageA

gdi32

CreateCompatibleDC
SelectObject
DeleteDC
GetStockObject
GetObjectA
CreateFontIndirectA
SetTextAlign
SetBkMode
SetTextColor
ExtTextOutA
GetTextExtentPoint32A
GetTextMetricsA
LPtoDP

comdlg32

GetOpenFileNameA
ChooseColorA
ChooseFontA
GetSaveFileNameA

advapi32

GetUserNameA

shell32

DragQueryFileA
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
Shell_NotifyIconA
ShellExecuteA
SHFileOperationA

comctl32

ord6
ImageList_LoadImageA

msvcrt

realloc
malloc
memcpy
_except_handler3
strchr
strcpy
sprintf
strlen
memset
free
__CxxFrameHandler
_itoa
strtoul
??2@YAPAXI@Z
??3@YAXPAX@Z
_ultoa
wcslen
__dllonexit
_onexit
_initterm
_adjust_fdiv
_strdup
_mbsnbcpy

Exports

Exports

??0uCallStackTracker@@QAE@PBD@Z
??1uCallStackTracker@@QAE@XZ
??4uCallStackTracker@@QAEAAV0@ABV0@@Z
IsUnicode
UTF8API_GetVersion
stricmp_utf8
stricmp_utf8_ex
stricmp_utf8_max
stricmp_utf8_partial
stricmp_utf8_stringtoblock
uAddStringLower
uAddStringUpper
uAppendMenu
uBrowseForFolder
uCallWindowProc
uCharLength
uCharLower
uCharUpper
uChooseColor
uChooseFont
uCompareString
uCreateDialog
uCreateDirectory
uCreateEvent
uCreateFile
uCreateFileMapping
uCreateFontIndirect
uCreateMutex
uCreateProcess
uCreateStatusWindow
uCreateWindowEx
uDdeAccessData_Text
uDdeCreateStringHandle
uDdeInitialize
uDdeQueryString
uDefWindowProc
uDeleteFile
uDialogBox
uDispatchMessage
uDragQueryFile
uDragQueryFileCount
uDumpCrashInfo
uExpandEnvironmentStrings
uExtTextOut
uFindFirstFile
uFindResource
uFixAmpersandChars
uFixAmpersandChars_v2
uGetCallStackPath
uGetClassName
uGetClipboardFormatName
uGetCommandLine
uGetCurrentDirectory
uGetDefaultFont
uGetDlgItemText
uGetEnvironmentVariable
uGetFileAttributes
uGetFontHeight
uGetFullPathName
uGetKeyNameText
uGetLongPathName
uGetMenuItemType
uGetMenuString
uGetMessage
uGetModuleFileName
uGetModuleHandle
uGetOpenFileName
uGetOpenFileNameMulti
uGetShortPathName
uGetSystemDirectory
uGetTempFileName
uGetTempPath
uGetTextExtentPoint32
uGetTextHeight
uGetUserName
uGetWindowLong
uGetWindowText
uGetWindowsDirectory
uImageList_LoadImage
uInsertMenu
uIsDialogMessage
uListBox_GetText
uLoadCursor
uLoadIcon
uLoadImage
uLoadLibrary
uLoadMenu
uLoadResource
uLoadString
uMessageBox
uModifyMenu
uMoveFile
uOSStringConvert
uOSStringEstimateSize
uOutputDebugString
uPeekMessage
uPostMessage
uPostThreadMessage
uPrintCrashInfo
uPrintCrashInfo_Init
uPrintf
uPrintfV
uRegisterClass
uRegisterClipboardFormat
uRegisterWindowMessage
uRemoveDirectory
uReplaceCharAdd
uReplaceStringAdd
uSHFileOperation
uSendDlgItemMessage
uSendDlgItemMessageText
uSendMessage
uSendMessageCallback
uSendMessageText
uSendMessageTimeout
uSendNotifyMessage
uSetClipboardString
uSetCurrentDirectory
uSetDlgItemText
uSetWindowLong
uSetWindowText
uSetWindowsHookEx
uShellExecute
uShellNotifyIcon
uShellNotifyIconEx
uSortPathCompare
uSortStringCompare
uSortStringCompareEx
uSortStringCreate
uSortStringFree
uStringCompare
uTabCtrl_InsertItem
uTabCtrl_SetItem
uTextOutColors
uTextOutColorsTabbed
uTreeView_InsertItem
uUnregisterClass

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 192KB

UPX1 Size: 18KB - Virtual size: 20KB

.rsrc Size: 24KB - Virtual size: 24KB

1f4c4faa2a5228733f7ee5edf40f6693

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 894B

aebc3107701149edfc563b8db7a789fd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 296B

.reloc Size: 512B - Virtual size: 444B

bc7cc360f5bcb879e3a581b6645e838b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

comctl32

utf8api

msvcrt

Sections

.text Size: 224KB - Virtual size: 223KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 24KB - Virtual size: 35KB

.rsrc Size: 41KB - Virtual size: 40KB

Headers

File Characteristics

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 27KB - Virtual size: 28KB

9d7e4b442188e0439287e6b63f2fed25

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

msvcrt

UPX0
Size: - Virtual size: 192KB

UPX1
Size: 18KB - Virtual size: 20KB

.rsrc
Size: 24KB - Virtual size: 24KB

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 894B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 296B

.reloc
Size: 512B - Virtual size: 444B

.text
Size: 224KB - Virtual size: 223KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 24KB - Virtual size: 35KB

.rsrc
Size: 41KB - Virtual size: 40KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 27KB - Virtual size: 28KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 1KB - Virtual size: 1KB

.tls
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB