mpv-0[.]37[.]0-Lowcy-Kreskowek-Windows[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

mpv-0.37.0-Lowcy-Kreskowek-Windows.zip
Size

39.2MB
MD5

3d543cac22b27044f6780eb96888c7cb
SHA1

dffa08c00747890a970c1bb5d61d5f37825f6f53
SHA256

ce2eb34682836e3f49bac6715ea3251b22f873a07c526448b10175f6895924fa
SHA512

81568c8369b21c9564f96c94234560a12b23273a8480d648658044ef5a816042137a1c6eeae637dfcf2d53ab584af16f98e0eeb51307bf7ec10c7217ff901407
SSDEEP

786432:cMEq8Uon7LjV9+ag+1NIORw+QepwllaHcLR2DFgqYiFgme/d6fdWZ4tY3OBPJL:w7LjV9NgbCSrlOc2gTIgRl6fdW6tYEh

Score

5^/10

pdf

Malware Config

Signatures

Malformed data in PDF
A PDF can contain malformed data to evade detection
pdf

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/mpv.com
unpack001/mpv.exe

Files

mpv-0.37.0-Lowcy-Kreskowek-Windows.zip
.zip
doc/manual.pdf
.pdf
mpv.com
.exe windows:4 windows x64 arch:x64

7dc1206707c706d8f8db3e5c894be02d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateProcessW
DeleteCriticalSection
EnterCriticalSection
FormatMessageW
FreeLibrary
GetCommandLineW
GetExitCodeProcess
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetStartupInfoW
GetStdHandle
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalFree
SetEnvironmentVariableW
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
__C_specific_handler

api-ms-win-crt-environment-l1-1-0

__p__environ
__p__wenviron

api-ms-win-crt-heap-l1-1-0

_set_new_mode
calloc
free
malloc

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-private-l1-1-0

memcpy
wcsrchr

api-ms-win-crt-runtime-l1-1-0

_set_app_type
__p___argc
__p___argv
__p___wargv
_cexit
_configure_narrow_argv
_configure_wide_argv
_crt_at_quick_exit
_crt_atexit
_exit
_initialize_narrow_environment
_initialize_wide_environment
_initterm
_set_invalid_parameter_handler
abort
exit
signal

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__p__commode
__p__fmode
__stdio_common_vfprintf
__stdio_common_vfwprintf
fwrite

api-ms-win-crt-string-l1-1-0

strlen
strncmp
wcscpy
wcslen

api-ms-win-crt-time-l1-1-0

__daylight
__timezone
__tzname
_tzset

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 512B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mpv.exe
.exe windows:4 windows x64 arch:x64

a624cee7128b0605e31ee77492041e57

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

avrt

AvRevertMmThreadCharacteristics
AvSetMmThreadCharacteristicsW

dwmapi

DwmEnableMMCSS
DwmFlush
DwmGetCompositionTimingInfo
DwmGetWindowAttribute
DwmIsCompositionEnabled
DwmSetWindowAttribute

imm32

ImmAssociateContext
ImmGetCandidateListW
ImmGetCompositionStringW
ImmGetContext
ImmGetConversionStatus
ImmGetIMEFileNameA
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionStringW
ImmSetCompositionWindow
ImmSetConversionStatus

api-ms-win-crt-convert-l1-1-0

_i64toa
_itoa_s
_ui64toa
_ultoa
atof
atoi
mbrtowc
mbstowcs
strtod
strtol
strtoll
strtoul
strtoull
strtoumax
wcrtomb
wcstol
wcstombs
wcstombs_s
wcstoul
_ltoa
_itoa

api-ms-win-crt-environment-l1-1-0

__p__environ
__p__wenviron
_wgetcwd
_wgetenv
getenv
_putenv

api-ms-win-crt-filesystem-l1-1-0

_access
_findclose
_findfirst64
_findnext64
_fstat64
_lock_file
_stat64
_unlock_file
_waccess
_wfindfirst64
_wfindnext64
_wfullpath
_wmkdir
_wremove
_wrename
_wrmdir
_wstat64
_wunlink
remove
rename
_unlink
_unlink
_rmdir
_rmdir
_mkdir
_chmod

api-ms-win-crt-heap-l1-1-0

_aligned_free
_aligned_malloc
_aligned_realloc
_set_new_mode
calloc
free
malloc
realloc

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func
___mb_cur_max_func
localeconv
setlocale

api-ms-win-crt-math-l1-1-0

__setusermatherr
_hypot
_j1
acos
acosf
asin
asinf
asinhf
atan
atan2
atan2f
atanf
cbrt
cbrtf
ceil
ceilf
cos
cosf
cosh
erf
erff
exp
exp2
exp2f
expf
expm1
fabs
floor
floorf
fma
fmaf
fmax
fmaxf
fmin
fminf
fmod
fmodf
frexp
hypot
llrint
llround
log
log10
log10f
log1p
log1pf
log2
log2f
logf
lrint
lrintf
lround
lroundf
modf
modff
nextafter
pow
powf
remainder
rint
round
roundf
sin
sinf
sinh
sinhf
sqrt
sqrtf
tan
tanf
tanh
tanhf
tgamma
_j1
_fdopen

api-ms-win-crt-multibyte-l1-1-0

_ismbblead
_mbsrchr

api-ms-win-crt-private-l1-1-0

__DestructExceptionObject
__intrinsic_setjmpex
longjmp
memchr
memcmp
memcpy
memmove
strchr
strrchr
strstr
wcschr
wcsrchr
wcsstr

api-ms-win-crt-runtime-l1-1-0

_set_app_type
__p___argc
__p___argv
__p___wargv
__p__acmdln
_assert
_beginthreadex
_cexit
_configure_narrow_argv
_configure_wide_argv
_crt_at_quick_exit
_crt_atexit
_endthreadex
_errno
_exit
_initialize_narrow_environment
_initialize_wide_environment
_initterm
_register_thread_local_exe_atexit_callback
_set_invalid_parameter_handler
_wassert
abort
exit
perror
raise
signal
strerror
strerror_s
system

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__p__commode
__p__fmode
__stdio_common_vfprintf
__stdio_common_vfscanf
__stdio_common_vfwprintf
__stdio_common_vsnprintf_s
__stdio_common_vsprintf
__stdio_common_vsprintf_s
__stdio_common_vsscanf
__stdio_common_vswprintf
_close
_fileno
_fseeki64
_ftelli64
_get_osfhandle
_locking
_lseeki64
_open_osfhandle
_pclose
_popen
_sopen
_wfopen
_wfopen_s
_wopen
_write
_wsopen
clearerr
fclose
feof
ferror
fflush
fgetc
fgets
fopen
fopen_s
fputc
fputs
fread
freopen
fseek
ftell
fwrite
getc
getwc
putc
putchar
puts
putwc
rewind
setvbuf
tmpfile
tmpnam
ungetc
ungetwc
_write
_setmode
_setmode
_read
_read
_open
_open
_isatty
_getcwd
_fileno
_dup2
_dup
_close

api-ms-win-crt-string-l1-1-0

_isctype
_strlwr
_strnicmp
_strrev
_wcsicmp
isalnum
isalpha
iscntrl
isgraph
islower
isprint
ispunct
isspace
isupper
iswctype
isxdigit
mbrlen
memset
strcat
strcmp
strcoll
strcpy
strcspn
strlen
strncat
strncat_s
strncmp
strncpy
strncpy_s
strpbrk
strspn
strtok
strtok_s
strxfrm
tolower
toupper
towlower
towupper
wcscat
wcscmp
wcscoll
wcscpy
wcscpy_s
wcslen
wcsncmp
wcsncpy
wcsncpy_s
wcsxfrm
_wcsnicmp
_wcsdup
_strupr
_stricmp
_strdup
_strdup

api-ms-win-crt-time-l1-1-0

__daylight
__timezone
__tzname
_difftime64
_ftime64
_gmtime64
_gmtime64_s
_localtime64
_localtime64_s
_mkgmtime64
_mktime64
_time64
_tzset
_utime64
clock
strftime
wcsftime

api-ms-win-crt-utility-l1-1-0

bsearch
div
qsort
rand
rand_s
srand

uxtheme

SetWindowTheme

winmm

timeBeginPeriod
timeEndPeriod
waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetErrorTextW
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

advapi32

ConvertSidToStringSidA
ConvertStringSecurityDescriptorToSecurityDescriptorA
CryptAcquireContextA
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
DeregisterEventSource
GetSidSubAuthority
GetSidSubAuthorityCount
GetTokenInformation
GetUserNameA
OpenProcessToken
RegCloseKey
RegEnumKeyExW
RegEnumValueA
RegEnumValueW
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExA
RegQueryValueExW
RegisterEventSourceW
ReportEventW
SystemFunction036

bcrypt

BCryptCloseAlgorithmProvider
BCryptGenRandom
BCryptOpenAlgorithmProvider

cfgmgr32

CM_Get_Child
CM_Get_DevNode_Registry_PropertyW
CM_Get_DevNode_Status
CM_Get_Device_IDW
CM_Get_Device_ID_ListW
CM_Get_Device_ID_List_SizeW
CM_Get_Sibling
CM_Locate_DevNodeW
CM_Open_DevNode_Key

crypt32

CertCloseStore
CertFindCertificateInStore
CertFreeCertificateContext
CertOpenSystemStoreW

d2d1

D2D1CreateFactory

dwrite

DWriteCreateFactory

gdi32

BitBlt
ChoosePixelFormat
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateDIBSection
CreateFontIndirectW
CreateFontW
CreateICW
CreatePen
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
DescribePixelFormat
EnumFontFamiliesExW
EnumFontFamiliesW
ExtTextOutW
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetICMProfileW
GetObjectA
GetPixelFormat
GetStockObject
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextFaceW
GetTextMetricsW
Rectangle
SelectObject
SetBkMode
SetDeviceGammaRamp
SetPixelFormat
SetTextColor
SwapBuffers

iphlpapi

if_nametoindex

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
AreFileApisANSI
AttachConsole
CancelIo
CancelIoEx
CloseHandle
CompareStringA
CompareStringOrdinal
ConnectNamedPipe
ConvertFiberToThread
ConvertThreadToFiberEx
CopyFileExW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFiberEx
CreateFile2
CreateFileA
CreateFileMappingA
CreateFileMappingW
CreateFileW
CreateHardLinkW
CreateMutexA
CreateNamedPipeW
CreateProcessW
CreateSemaphoreA
CreateSemaphoreW
CreateSymbolicLinkW
CreateThread
CreateToolhelp32Snapshot
CreateWaitableTimerExW
DebugBreak
DeleteCriticalSection
DeleteFiber
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
DuplicateHandle
EnterCriticalSection
ExitProcess
FileTimeToSystemTime
FillConsoleOutputCharacterW
FindClose
FindFirstFileExA
FindFirstFileExW
FindFirstFileW
FindNextFileA
FindNextFileW
FindResourceW
FlushFileBuffers
FlushViewOfFile
FormatMessageA
FormatMessageW
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExA
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameA
GetFullPathNameW
GetHandleInformation
GetLastError
GetLocaleInfoA
GetLogicalDrives
GetLongPathNameA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetNumaHighestNodeNumber
GetNumaNodeProcessorMaskEx
GetNumberOfConsoleInputEvents
GetOEMCP
GetOverlappedResult
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetProcessId
GetProcessTimes
GetStartupInfoA
GetStdHandle
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemPreferredUILanguages
GetSystemTime
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadGroupAffinity
GetThreadId
GetThreadPriority
GetThreadTimes
GetTickCount
GetTimeZoneInformation
GetUserDefaultLocaleName
GetUserPreferredUILanguages
GetVersion
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAlloc
GlobalLock
GlobalMemoryStatusEx
GlobalUnlock
HeapAlloc
HeapFree
HeapReAlloc
HeapSetInformation
InitOnceBeginInitialize
InitOnceComplete
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSRWLock
IsDebuggerPresent
IsValidCodePage
IsWow64Process
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LockResource
MapViewOfFile
Module32FirstW
Module32NextW
MoveFileExA
MoveFileExW
MulDiv
MultiByteToWideChar
OpenFileMappingA
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleA
ReadConsoleInputW
ReadConsoleW
ReadFile
ReadFileEx
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
ResetEvent
ResumeThread
RtlCaptureStackBackTrace
RtlRestoreContext
RtlUnwindEx
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
SetConsoleTitleW
SetCurrentDirectoryW
SetDllDirectoryW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFileInformationByHandle
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetProcessAffinityMask
SetSearchPathMode
SetSystemTime
SetThreadAffinityMask
SetThreadContext
SetThreadErrorMode
SetThreadExecutionState
SetThreadGroupAffinity
SetThreadPriority
SetThreadStackGuarantee
SetUnhandledExceptionFilter
SetWaitableTimer
SignalObjectAndWait
SizeofResource
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SleepEx
SuspendThread
SwitchToFiber
SwitchToThread
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryEnterCriticalSection
UnmapViewOfFile
UnregisterWait
UpdateProcThreadAttribute
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualLock
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteFileEx
__C_specific_handler
lstrcmpiW
lstrcpyA
lstrcpynA

ntdll

NtCreateFile
NtReadFile
NtWriteFile
RtlCaptureContext
RtlLookupFunctionEntry
RtlNtStatusToDosError
RtlVirtualUnwind
VerSetConditionMask

ole32

CLSIDFromString
CoCreateInstance
CoGetMalloc
CoInitialize
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateBindCtx
OleInitialize
OleLoadFromStream
OleSaveToStream
OleUninitialize
PropVariantClear
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StringFromCLSID
StringFromGUID2

oleaut32

OleCreatePropertyFrame
SysFreeString

opengl32

glBindTexture
glBlendFunc
glClear
glClearColor
glDeleteTextures
glDrawElements
glEnable
glGenTextures
glGetError
glGetIntegerv
glGetString
glPixelStorei
glTexImage2D
glTexParameteri
glTexSubImage2D
glViewport
wglCreateContext
wglDeleteContext
wglGetProcAddress
wglMakeCurrent

setupapi

CM_Get_Device_IDA
CM_Get_Parent
CM_Locate_DevNodeA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA

shell32

CommandLineToArgvW
DragAcceptFiles
DragFinish
DragQueryFileW
ExtractIconExW
SHGetFolderPathA
SHGetFolderPathW
SHGetKnownFolderPath
SHGetSpecialFolderPathA
ShellExecuteW

shlwapi

PathRemoveFileSpecW
SHCreateStreamOnFileA

user32

AdjustWindowRect
AdjustWindowRectEx
AttachThreadInput
BeginPaint
CallNextHookEx
CallWindowProcW
ChangeDisplaySettingsExW
ClientToScreen
ClipCursor
CloseClipboard
CopyIcon
CopyImage
CreateIconFromResource
CreateIconIndirect
CreateWindowExA
CreateWindowExW
DefWindowProcA
DefWindowProcW
DestroyCursor
DestroyIcon
DestroyWindow
DialogBoxIndirectParamW
DispatchMessageA
DispatchMessageW
DisplayConfigGetDeviceInfo
DrawIcon
DrawTextW
EmptyClipboard
EnableWindow
EndDialog
EndPaint
EnumDisplayDevicesW
EnumDisplayMonitors
EnumDisplaySettingsW
EqualRect
FillRect
FindWindowExW
FindWindowW
FlashWindowEx
FrameRect
GetAsyncKeyState
GetClassInfoExW
GetClientRect
GetClipCursor
GetClipboardData
GetClipboardSequenceNumber
GetCursorInfo
GetCursorPos
GetDC
GetDesktopWindow
GetDisplayConfigBufferSizes
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetKeyboardLayout
GetKeyboardState
GetMenu
GetMessageExtraInfo
GetMessageW
GetMonitorInfoW
GetParent
GetProcessWindowStation
GetPropW
GetRawInputData
GetRawInputDeviceInfoA
GetRawInputDeviceList
GetShellWindow
GetSystemMetrics
GetUpdateRect
GetUserObjectInformationW
GetWindowLongPtrA
GetWindowLongPtrW
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
IntersectRect
InvalidateRect
IsClipboardFormatAvailable
IsIconic
IsWindowVisible
IsZoomed
KillTimer
LoadCursorA
LoadCursorW
LoadIconW
MapVirtualKeyW
MapWindowPoints
MessageBoxA
MessageBoxW
MonitorFromPoint
MonitorFromRect
MonitorFromWindow
MsgWaitForMultipleObjects
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
QueryDisplayConfig
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatW
RegisterDeviceNotificationW
RegisterRawInputDevices
RegisterWindowMessageA
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemovePropW
ScreenToClient
SendMessageA
SendMessageW
SendNotifyMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetLayeredWindowAttributes
SetPropW
SetRect
SetTimer
SetWinEventHook
SetWindowDisplayAffinity
SetWindowLongPtrA
SetWindowLongPtrW
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
ToUnicode
TrackMouseEvent
TranslateMessage
UnhookWinEvent
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UnregisterDeviceNotification
ValidateRect
wsprintfA

userenv

GetUserProfileDirectoryW

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA
VerQueryValueW

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

ws2_32

WSACleanup
WSACloseEvent
WSACreateEvent
WSADuplicateSocketW
WSAGetLastError
WSAGetOverlappedResult
WSARecv
WSARecvFrom
WSAResetEvent
WSASend
WSASendTo
WSASetLastError
WSASocketW
WSAStartup
WSAStringToAddressA
WSAWaitForMultipleEvents
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyaddr
gethostbyname
getnameinfo
getpeername
getservbyname
getservbyport
getsockname
getsockopt
htonl
htons
inet_addr
inet_ntoa
ioctlsocket
listen
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

wsock32

__WSAFDIsSet
gethostname
ntohl

Exports

Exports

FT_Activate_Size
FT_Add_Default_Modules
FT_Add_Module
FT_Angle_Diff
FT_Atan2
FT_Attach_File
FT_Attach_Stream
FT_Bitmap_Blend
FT_Bitmap_Convert
FT_Bitmap_Copy
FT_Bitmap_Done
FT_Bitmap_Embolden
FT_Bitmap_Init
FT_Bitmap_New
FT_CeilFix
FT_Cos
FT_DivFix
FT_Done_Face
FT_Done_FreeType
FT_Done_Glyph
FT_Done_Library
FT_Done_MM_Var
FT_Done_Size
FT_Error_String
FT_Face_GetCharVariantIndex
FT_Face_GetCharVariantIsDefault
FT_Face_GetCharsOfVariant
FT_Face_GetVariantSelectors
FT_Face_GetVariantsOfChar
FT_Face_Properties
FT_FloorFix
FT_Get_Advance
FT_Get_Advances
FT_Get_BDF_Charset_ID
FT_Get_BDF_Property
FT_Get_CMap_Format
FT_Get_CMap_Language_ID
FT_Get_Char_Index
FT_Get_Charmap_Index
FT_Get_Color_Glyph_ClipBox
FT_Get_Color_Glyph_Layer
FT_Get_Color_Glyph_Paint
FT_Get_Colorline_Stops
FT_Get_Default_Named_Instance
FT_Get_First_Char
FT_Get_Font_Format
FT_Get_Glyph
FT_Get_Glyph_Name
FT_Get_Kerning
FT_Get_MM_Blend_Coordinates
FT_Get_MM_Var
FT_Get_MM_WeightVector
FT_Get_Module
FT_Get_Multi_Master
FT_Get_Name_Index
FT_Get_Next_Char
FT_Get_PS_Font_Info
FT_Get_PS_Font_Private
FT_Get_PS_Font_Value
FT_Get_Paint
FT_Get_Paint_Layers
FT_Get_Postscript_Name
FT_Get_Renderer
FT_Get_Sfnt_LangTag
FT_Get_Sfnt_Name
FT_Get_Sfnt_Name_Count
FT_Get_Sfnt_Table
FT_Get_SubGlyph_Info
FT_Get_Track_Kerning
FT_Get_Transform
FT_Get_TrueType_Engine_Type
FT_Get_Var_Axis_Flags
FT_Get_Var_Blend_Coordinates
FT_Get_Var_Design_Coordinates
FT_Get_X11_Font_Format
FT_GlyphSlot_AdjustWeight
FT_GlyphSlot_Embolden
FT_GlyphSlot_Oblique
FT_GlyphSlot_Own_Bitmap
FT_GlyphSlot_Slant
FT_Glyph_Copy
FT_Glyph_Get_CBox
FT_Glyph_Stroke
FT_Glyph_StrokeBorder
FT_Glyph_To_Bitmap
FT_Glyph_Transform
FT_Gzip_Uncompress
FT_Has_PS_Glyph_Names
FT_Init_FreeType
FT_Library_SetLcdFilter
FT_Library_SetLcdFilterWeights
FT_Library_SetLcdGeometry
FT_Library_Version
FT_List_Add
FT_List_Finalize
FT_List_Find
FT_List_Insert
FT_List_Iterate
FT_List_Remove
FT_List_Up
FT_Load_Char
FT_Load_Glyph
FT_Load_Sfnt_Table
FT_Matrix_Invert
FT_Matrix_Multiply
FT_MulDiv
FT_MulFix
FT_New_Face
FT_New_Glyph
FT_New_Library
FT_New_Memory_Face
FT_New_Size
FT_Open_Face
FT_Outline_Check
FT_Outline_Copy
FT_Outline_Decompose
FT_Outline_Done
FT_Outline_Embolden
FT_Outline_EmboldenXY
FT_Outline_GetInsideBorder
FT_Outline_GetOutsideBorder
FT_Outline_Get_Bitmap
FT_Outline_Get_CBox
FT_Outline_Get_Orientation
FT_Outline_New
FT_Outline_Render
FT_Outline_Reverse
FT_Outline_Transform
FT_Outline_Translate
FT_Palette_Data_Get
FT_Palette_Select
FT_Palette_Set_Foreground_Color
FT_Property_Get
FT_Property_Set
FT_Reference_Face
FT_Reference_Library
FT_Remove_Module
FT_Render_Glyph
FT_Request_Size
FT_RoundFix
FT_Select_Charmap
FT_Select_Size
FT_Set_Char_Size
FT_Set_Charmap
FT_Set_Debug_Hook
FT_Set_Default_Log_Handler
FT_Set_Default_Properties
FT_Set_Log_Handler
FT_Set_MM_Blend_Coordinates
FT_Set_MM_Design_Coordinates
FT_Set_MM_WeightVector
FT_Set_Named_Instance
FT_Set_Pixel_Sizes
FT_Set_Renderer
FT_Set_Transform
FT_Set_Var_Blend_Coordinates
FT_Set_Var_Design_Coordinates
FT_Sfnt_Table_Info
FT_Sin
FT_Stream_OpenGzip
FT_Stream_OpenLZW
FT_Stroker_BeginSubPath
FT_Stroker_ConicTo
FT_Stroker_CubicTo
FT_Stroker_Done
FT_Stroker_EndSubPath
FT_Stroker_Export
FT_Stroker_ExportBorder
FT_Stroker_GetBorderCounts
FT_Stroker_GetCounts
FT_Stroker_LineTo
FT_Stroker_New
FT_Stroker_ParseOutline
FT_Stroker_Rewind
FT_Stroker_Set
FT_Tan
FT_Trace_Set_Default_Level
FT_Trace_Set_Level
FT_Vector_From_Polar
FT_Vector_Length
FT_Vector_Polarize
FT_Vector_Rotate
FT_Vector_Transform
FT_Vector_Unit
Java_java_awt_BDFontMetrics_charWidthN
Java_java_awt_BDFontMetrics_charsWidthN
Java_java_awt_BDFontMetrics_destroyFontN
Java_java_awt_BDFontMetrics_destroyN
Java_java_awt_BDFontMetrics_getFontFamilyAndStyleN
Java_java_awt_BDFontMetrics_initN
Java_java_awt_BDFontMetrics_loadFontN
Java_java_awt_BDFontMetrics_resolveFontN
Java_java_awt_BDFontMetrics_stringWidthN
Java_java_awt_BDFontMetrics_unloadFontConfigN
Java_java_awt_BDGraphics_drawStringN
Java_org_videolan_Libbluray_cacheBdRomFileN
Java_org_videolan_Libbluray_getAacsDataN
Java_org_videolan_Libbluray_getBdjoN
Java_org_videolan_Libbluray_getPlaylistInfoN
Java_org_videolan_Libbluray_getTitleInfosN
Java_org_videolan_Libbluray_getUOMaskN
Java_org_videolan_Libbluray_listBdFilesN
Java_org_videolan_Libbluray_readRegN
Java_org_videolan_Libbluray_seekN
Java_org_videolan_Libbluray_selectAngleN
Java_org_videolan_Libbluray_selectPlaylistN
Java_org_videolan_Libbluray_selectRateN
Java_org_videolan_Libbluray_selectTitleN
Java_org_videolan_Libbluray_setKeyInterestN
Java_org_videolan_Libbluray_setUOMaskN
Java_org_videolan_Libbluray_setVirtualPackageN
Java_org_videolan_Libbluray_soundEffectN
Java_org_videolan_Libbluray_tellTimeN
Java_org_videolan_Libbluray_updateGraphicN
Java_org_videolan_Libbluray_writeRegN
Java_org_videolan_Logger_logN
JxlColorEncodingSetToLinearSRGB
JxlColorEncodingSetToSRGB
JxlDecoderCloseInput
JxlDecoderCreate
JxlDecoderDestroy
JxlDecoderExtraChannelBufferSize
JxlDecoderFlushImage
JxlDecoderGetBasicInfo
JxlDecoderGetBoxSizeRaw
JxlDecoderGetBoxType
JxlDecoderGetColorAsEncodedProfile
JxlDecoderGetColorAsICCProfile
JxlDecoderGetExtraChannelBlendInfo
JxlDecoderGetExtraChannelInfo
JxlDecoderGetExtraChannelName
JxlDecoderGetFrameHeader
JxlDecoderGetFrameName
JxlDecoderGetICCProfileSize
JxlDecoderGetIntendedDownsamplingRatio
JxlDecoderImageOutBufferSize
JxlDecoderPreviewOutBufferSize
JxlDecoderProcessInput
JxlDecoderReleaseBoxBuffer
JxlDecoderReleaseInput
JxlDecoderReleaseJPEGBuffer
JxlDecoderReset
JxlDecoderRewind
JxlDecoderSetBoxBuffer
JxlDecoderSetCms
JxlDecoderSetCoalescing
JxlDecoderSetDecompressBoxes
JxlDecoderSetDesiredIntensityTarget
JxlDecoderSetExtraChannelBuffer
JxlDecoderSetImageOutBitDepth
JxlDecoderSetImageOutBuffer
JxlDecoderSetImageOutCallback
JxlDecoderSetInput
JxlDecoderSetJPEGBuffer
JxlDecoderSetKeepOrientation
JxlDecoderSetMultithreadedImageOutCallback
JxlDecoderSetOutputColorProfile
JxlDecoderSetParallelRunner
JxlDecoderSetPreferredColorProfile
JxlDecoderSetPreviewOutBuffer
JxlDecoderSetProgressiveDetail
JxlDecoderSetRenderSpotcolors
JxlDecoderSetUnpremultiplyAlpha
JxlDecoderSizeHintBasicInfo
JxlDecoderSkipCurrentFrame
JxlDecoderSkipFrames
JxlDecoderSubscribeEvents
JxlDecoderVersion
JxlEncoderAddBox
JxlEncoderAddChunkedFrame
JxlEncoderAddImageFrame
JxlEncoderAddJPEGFrame
JxlEncoderAllowExpertOptions
JxlEncoderCloseBoxes
JxlEncoderCloseFrames
JxlEncoderCloseInput
JxlEncoderCollectStats
JxlEncoderCreate
JxlEncoderDestroy
JxlEncoderDistanceFromQuality
JxlEncoderFlushInput
JxlEncoderFrameSettingsCreate
JxlEncoderFrameSettingsSetFloatOption
JxlEncoderFrameSettingsSetOption
JxlEncoderGetError
JxlEncoderGetRequiredCodestreamLevel
JxlEncoderInitBasicInfo
JxlEncoderInitBlendInfo
JxlEncoderInitExtraChannelInfo
JxlEncoderInitFrameHeader
JxlEncoderProcessOutput
JxlEncoderReset
JxlEncoderSetBasicInfo
JxlEncoderSetCms
JxlEncoderSetCodestreamLevel
JxlEncoderSetColorEncoding
JxlEncoderSetDebugImageCallback
JxlEncoderSetExtraChannelBlendInfo
JxlEncoderSetExtraChannelBuffer
JxlEncoderSetExtraChannelDistance
JxlEncoderSetExtraChannelInfo
JxlEncoderSetExtraChannelName
JxlEncoderSetFrameBitDepth
JxlEncoderSetFrameDistance
JxlEncoderSetFrameHeader
JxlEncoderSetFrameLossless
JxlEncoderSetFrameName
JxlEncoderSetICCProfile
JxlEncoderSetOutputProcessor
JxlEncoderSetParallelRunner
JxlEncoderSetUpsamplingMode
JxlEncoderStatsCreate
JxlEncoderStatsDestroy
JxlEncoderStatsGet
JxlEncoderStatsMerge
JxlEncoderStoreJPEGMetadata
JxlEncoderUseBoxes
JxlEncoderUseContainer
JxlEncoderVersion
JxlSignatureCheck
TT_New_Context
TT_RunIns
memcpy_layout
mpv_abort_async_command
mpv_client_api_version
mpv_client_id
mpv_client_name
mpv_command
mpv_command_async
mpv_command_node
mpv_command_node_async
mpv_command_ret
mpv_command_string
mpv_create
mpv_create_client
mpv_create_weak_client
mpv_del_property
mpv_destroy
mpv_error_string
mpv_event_name
mpv_event_to_node
mpv_free
mpv_free_node_contents
mpv_get_property
mpv_get_property_async
mpv_get_property_osd_string
mpv_get_property_string
mpv_get_time_ns
mpv_get_time_us
mpv_get_wakeup_pipe
mpv_hook_add
mpv_hook_continue
mpv_initialize
mpv_load_config_file
mpv_observe_property
mpv_render_context_create
mpv_render_context_free
mpv_render_context_get_info
mpv_render_context_render
mpv_render_context_report_swap
mpv_render_context_set_parameter
mpv_render_context_set_update_callback
mpv_render_context_update
mpv_request_event
mpv_request_log_messages
mpv_set_option
mpv_set_option_string
mpv_set_property
mpv_set_property_async
mpv_set_property_string
mpv_set_wakeup_callback
mpv_stream_cb_add_ro
mpv_terminate_destroy
mpv_unobserve_property
mpv_wait_async_requests
mpv_wait_event
mpv_wakeup
opus_decode
opus_decode_float
opus_decoder_create
opus_decoder_ctl
opus_decoder_destroy
opus_decoder_get_nb_samples
opus_decoder_get_size
opus_decoder_init
opus_encode
opus_encode_float
opus_encoder_create
opus_encoder_ctl
opus_encoder_destroy
opus_encoder_get_size
opus_encoder_init
opus_get_version_string
opus_multistream_decode
opus_multistream_decode_float
opus_multistream_decoder_create
opus_multistream_decoder_ctl
opus_multistream_decoder_destroy
opus_multistream_decoder_get_size
opus_multistream_decoder_init
opus_multistream_encode
opus_multistream_encode_float
opus_multistream_encoder_create
opus_multistream_encoder_ctl
opus_multistream_encoder_destroy
opus_multistream_encoder_get_size
opus_multistream_encoder_init
opus_multistream_packet_pad
opus_multistream_packet_unpad
opus_multistream_surround_encoder_create
opus_multistream_surround_encoder_get_size
opus_multistream_surround_encoder_init
opus_packet_get_bandwidth
opus_packet_get_nb_channels
opus_packet_get_nb_frames
opus_packet_get_nb_samples
opus_packet_get_samples_per_frame
opus_packet_pad
opus_packet_parse
opus_packet_unpad
opus_pcm_soft_clip
opus_repacketizer_cat
opus_repacketizer_create
opus_repacketizer_destroy
opus_repacketizer_get_nb_frames
opus_repacketizer_get_size
opus_repacketizer_init
opus_repacketizer_out
opus_repacketizer_out_range
opus_strerror
pl_alpha_overlay
pl_bit_encoding_equal
pl_buf_copy
pl_buf_create
pl_buf_destroy
pl_buf_export
pl_buf_poll
pl_buf_read
pl_buf_recreate
pl_buf_write
pl_cache_create
pl_cache_default_params
pl_cache_destroy
pl_cache_get
pl_cache_iterate
pl_cache_load
pl_cache_load_ex
pl_cache_objects
pl_cache_reset
pl_cache_save
pl_cache_save_ex
pl_cache_set
pl_cache_signature
pl_cache_size
pl_cache_try_set
pl_chroma_location_offset
pl_color_adjustment_neutral
pl_color_levels_guess
pl_color_map_default_params
pl_color_map_high_quality_params
pl_color_primaries_guess
pl_color_primaries_is_wide_gamut
pl_color_repr_decode
pl_color_repr_equal
pl_color_repr_hdtv
pl_color_repr_jpeg
pl_color_repr_merge
pl_color_repr_normalize
pl_color_repr_rgb
pl_color_repr_sdtv
pl_color_repr_uhdtv
pl_color_repr_unknown
pl_color_space_bt2020_hlg
pl_color_space_bt709
pl_color_space_equal
pl_color_space_hdr10
pl_color_space_infer
pl_color_space_infer_map
pl_color_space_infer_ref
pl_color_space_is_black_scaled
pl_color_space_is_hdr
pl_color_space_merge
pl_color_space_monitor
pl_color_space_nominal_luma_ex
pl_color_space_srgb
pl_color_space_unknown
pl_color_system_guess_ycbcr
pl_color_system_is_linear
pl_color_system_is_ycbcr_like
pl_color_transfer_nominal_peak
pl_d3d11_create
pl_d3d11_create_swapchain
pl_d3d11_default_params
pl_d3d11_destroy
pl_d3d11_get
pl_d3d11_swapchain_unwrap
pl_d3d11_wrap
pl_deband_default_params
pl_deinterlace_default_params
pl_desc_access_glsl_name

Sections

.text
Size: 84.5MB - Virtual size: 84.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 333KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16.6MB - Virtual size: 16.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 25.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 325KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mpv/fonts.conf
.xml

Sharing

General

Malware Config

Signatures

Files

7dc1206707c706d8f8db3e5c894be02d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-private-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-time-l1-1-0

Sections

.text Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 256B

.rdata Size: 2KB - Virtual size: 2KB

/4 Size: 512B - Virtual size: 4B

.pdata Size: 1024B - Virtual size: 636B

.xdata Size: 512B - Virtual size: 512B

.bss Size: - Virtual size: 512B

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 96B

.tls Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 144B

a624cee7128b0605e31ee77492041e57

Headers

DLL Characteristics

File Characteristics

Imports

avrt

dwmapi

imm32

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-multibyte-l1-1-0

api-ms-win-crt-private-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-utility-l1-1-0

uxtheme

winmm

advapi32

bcrypt

cfgmgr32

crypt32

d2d1

dwrite

gdi32

iphlpapi

kernel32

ntdll

ole32

oleaut32

opengl32

setupapi

shell32

shlwapi

user32

userenv

version

avicap32

ws2_32

wsock32

Exports

Exports

Sections

.text Size: 84.5MB - Virtual size: 84.5MB

.text
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 256B

.rdata
Size: 2KB - Virtual size: 2KB

/4
Size: 512B - Virtual size: 4B

.pdata
Size: 1024B - Virtual size: 636B

.xdata
Size: 512B - Virtual size: 512B

.bss
Size: - Virtual size: 512B

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 96B

.tls
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 144B

.text
Size: 84.5MB - Virtual size: 84.5MB

.rodata
Size: 21KB - Virtual size: 20KB

.data
Size: 333KB - Virtual size: 332KB

.rdata
Size: 16.6MB - Virtual size: 16.6MB

/4
Size: 512B - Virtual size: 4B

.pdata
Size: 1.2MB - Virtual size: 1.2MB

.xdata
Size: 1.9MB - Virtual size: 1.9MB

.bss
Size: - Virtual size: 25.4MB

.edata
Size: 29KB - Virtual size: 28KB

.idata
Size: 38KB - Virtual size: 38KB

.CRT
Size: 512B - Virtual size: 128B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 267KB - Virtual size: 267KB

.reloc
Size: 325KB - Virtual size: 325KB

/14
Size: 512B - Virtual size: 16B