dd9f245e8b788848dd970b24f29245c0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

dd9f245e8b788848dd970b24f29245c0N.exe
Size

6.8MB
MD5

dd9f245e8b788848dd970b24f29245c0
SHA1

2f6c4867450b18873e632db12a01f4e9a454ba4e
SHA256

87960d60e7e295d91317f4d4959f1646b389b26c24f22a374eeaaf350f4e9efb
SHA512

b85428e16ba6c6aadea1bb7bd937e972aa85bfffdc8458f69cffae15437b441e9cfed9b44118f6043afef7a59fe69e4b1840fd6ec79f0cb8de53947de1c93d0e
SSDEEP

98304:TtBfDRldt1hVRoqve+44Atj48H4LR0alvkXgrU1iq44h71sDRjKqTzQxW4lID8Fj:f7R/2Iv+4F0ZP131sDRjKE5mt

Score

1^/10

Malware Config

Signatures

Files

dd9f245e8b788848dd970b24f29245c0N.exe
.exe windows:6 windows x86 arch:x86

7c488f254c70fd69c2eb50fefbee1cde

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:d8:c9:fa:57:f5:56:0b:fe:a3:82:5e:29:8a:86:9b
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

20/09/2025, 23:59

Subject

CN=HCL America Inc.,O=HCL America Inc.,L=Sunnyvale,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f7:9e:59:5b:4d:2b:13:70:2f:07:a8:37:73:8d:69:27:84:c5:b5:8d:81:b7:6b:22:38:dd:71:43:2b:b8:68:4e
Signer

Actual PE Digest

f7:9e:59:5b:4d:2b:13:70:2f:07:a8:37:73:8d:69:27:84:c5:b5:8d:81:b7:6b:22:38:dd:71:43:2b:b8:68:4e

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\j\workspace\bes\w\Output\Release\BESRemove.pdb

Imports

gdiplus

GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipSetInterpolationMode
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipFree
GdipAlloc
GdiplusShutdown
GdipDeleteGraphics

odbc32

ord24
ord72
ord31
ord36
ord111
ord13
ord141
ord139
ord9
ord75
ord4

shlwapi

PathRemoveFileSpecW
PathFindFileNameW
PathStripPathW
StrFormatKBSizeW
PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathRemoveExtensionW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeExW
GetFileVersionInfoExW
GetFileVersionInfoSizeW

shell32

ShellExecuteExW
SHAppBarMessage
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
SHGetFileInfoW

uxtheme

DrawThemeText
GetThemeSysColor
GetThemePartSize
SetWindowTheme
IsAppThemed
GetWindowTheme
GetCurrentThemeName
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
IsThemeBackgroundPartiallyTransparent

user32

SetRectEmpty
SendDlgItemMessageA
SystemParametersInfoW
InflateRect
GetMenuItemInfoW
DestroyMenu
GetMenuStringW
MapVirtualKeyW
GetKeyNameTextW
LoadMenuW
ReleaseCapture
WindowFromPoint
DrawFocusRect
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
SetRect
OffsetRect
RealChildWindowFromPoint
GetDoubleClickTime
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
IsRectEmpty
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
CreateMenu
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetDesktopWindow
GetMenuState
InsertMenuW
AppendMenuW
RemoveMenu
CopyImage
GetWindowThreadProcessId
GetUserObjectInformationW
GetProcessWindowStation
LockWindowUpdate
DeleteMenu
WindowFromDC
GetWindowRgn
InvalidateRect
DestroyIcon
CharUpperW
GetSysColorBrush
LoadCursorW
IntersectRect
GetAsyncKeyState
MapDialogRect
TrackMouseEvent
LoadImageW
GetNextDlgGroupItem
SetMenuDefaultItem
SetCapture
DrawIconEx
DestroyCursor
GetLastActivePopup
FindWindowExW
UnregisterClassW
EnableWindow
SendMessageW
PostMessageW
IsIconic
GetDlgItem
SetTimer
KillTimer
GetSystemMetrics
GetSystemMenu
EnableMenuItem
DrawIcon
GetClientRect
LoadIconW
MessageBoxW
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
SetClassLongW
SetWindowRgn
SetParent
DrawEdge
DrawFrameControl
IsZoomed
BringWindowToTop
SetCursorPos
CopyIcon
FrameRect
UnionRect
UpdateLayeredWindow
MonitorFromPoint
LoadAcceleratorsW
ToUnicodeEx
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
PostThreadMessageW
WaitMessage
GetKeyboardLayout
IsCharLowerW
DefFrameProcW
MapVirtualKeyExW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
UnhookWindowsHookEx
GetWindow
TranslateMessage
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
FillRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
LoadBitmapW
GetParent
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
GetFocus
SetCursor
ShowOwnedPopups
PostQuitMessage
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageW
DispatchMessageW
GetMessageW

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
InitializeSListHead
GetStartupInfoW
RtlUnwind
InterlockedPushEntrySList
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
GetStdHandle
ExitProcess
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
SetConsoleCtrlHandler
IsValidCodePage
GetOEMCP
WriteConsoleW
ReleaseSRWLockShared
AcquireSRWLockShared
VirtualFree
GetSystemDirectoryA
SetConsoleMode
ReadConsoleA
GetDriveTypeW
PeekNamedPipe
GetSystemTimeAsFileTime
OutputDebugStringW
IsDebuggerPresent
GetCPInfo
GetStringTypeW
LCMapStringEx
InitOnceComplete
InitOnceBeginInitialize
SleepConditionVariableSRW
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
DecodePointer
RaiseException
GetLastError
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionEx
DeleteCriticalSection
LoadResource
LockResource
SizeofResource
FindResourceW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExpandEnvironmentStringsW
CreateFileW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
RemoveDirectoryW
SetFileAttributesW
CloseHandle
GetQueuedCompletionStatus
WaitForSingleObject
Sleep
GetCurrentProcess
TerminateProcess
GetSystemDirectoryW
GetProcAddress
LocalFree
SetEvent
CreateEventW
GetCurrentThreadId
SetThreadPriority
ResumeThread
OutputDebugStringA
SetLastError
GetCurrentThread
GetVersionExW
FreeLibrary
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
LoadLibraryExW
LoadLibraryW
GlobalAlloc
GlobalLock
GlobalDeleteAtom
lstrcmpA
lstrcmpW
MultiByteToWideChar
WideCharToMultiByte
GlobalAddAtomW
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GlobalUnlock
MulDiv
EncodePointer
LoadLibraryA
GlobalFindAtomW
CompareStringW
GlobalFree
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
InitializeCriticalSectionAndSpinCount
GlobalSize
FormatMessageW
CopyFileW
GetCurrentProcessId
GetCurrentDirectoryW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
lstrcmpiW
GlobalGetAtomNameW
FileTimeToSystemTime
VirtualProtect
lstrcpyW
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
FindResourceExW
GetWindowsDirectoryW
VerSetConditionMask
VerifyVersionInfoW
GetTempPathW
GetTickCount
GetProfileIntW
SearchPathW
GetTempFileNameW
GetUserDefaultLCID
TryEnterCriticalSection
GetFileType
CreateDirectoryW
FindFirstFileExW
GetFileInformationByHandle
CreateIoCompletionPort
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
GetExitCodeProcess
CreateProcessW
CreateJobObjectW
AssignProcessToJobObject
SetInformationJobObject
GetACP
FormatMessageA
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemTime
GetLocaleInfoA
GetNumberFormatW
GetTimeZoneInformation
ResetEvent
WaitForSingleObjectEx
GetLocaleInfoEx
CreateFileA

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueW
RegCloseKey
ReportEventW
RegisterEventSourceW
DeregisterEventSource
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextW
SetEntriesInAclW
SetNamedSecurityInfoW
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCreateKeyExW
RegDeleteValueW
RegSetValueExW
RegEnumValueW
RegEnumKeyExW
OpenProcessToken
GetTokenInformation
CloseServiceHandle
OpenSCManagerW
OpenServiceW
QueryServiceStatus
StartServiceW
GetUserNameW
RegDeleteKeyExW
RegQueryInfoKeyW
ControlService
DeleteService

ole32

OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoDisconnectObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize

oleaut32

LoadTypeLi
VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocString
SysFreeString

gdi32

GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
GetCurrentObject
OffsetRgn
GetRgnBox
Rectangle
LPtoDP
CreateRoundRectRgn
Polyline
Polygon
GetTextFaceW
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
CreateDIBSection
StretchBlt
SetPixel
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
CreateCompatibleBitmap
GetBkColor
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExW
GetTextMetricsW
DPtoLP
SetRectRgn
CombineRgn
CreateDCW
CopyMetaFileW
GetTextExtentPoint32W
CreateFontIndirectW
PatBlt
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
GetViewportOrgEx
TextOutW
MoveToEx
GetObjectW
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetDeviceCaps
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
CreateBitmap
ExtTextOutW
CreatePolygonRgn

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

crypt32

CryptProtectData
CertGetCertificateContextProperty
CertFreeCertificateContext
CertDuplicateCertificateContext
CertFindCertificateInStore
CertEnumCertificatesInStore
CertCloseStore
CertOpenStore
CryptUnprotectData

ws2_32

getsockopt
ioctlsocket
htons
htonl
WSAGetLastError
WSACleanup
WSAStartup
gethostbyname
ntohs
closesocket
send
connect
setsockopt
socket
shutdown
inet_ntoa
select
inet_addr
gethostbyaddr
getservbyport
getservbyname
WSASetLastError
recv

bcrypt

BCryptGenRandom

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c488f254c70fd69c2eb50fefbee1cde

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:d8:c9:fa:57:f5:56:0b:fe:a3:82:5e:29:8a:86:9bCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

f7:9e:59:5b:4d:2b:13:70:2f:07:a8:37:73:8d:69:27:84:c5:b5:8d:81:b7:6b:22:38:dd:71:43:2b:b8:68:4eSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

gdiplus

odbc32

shlwapi

version

shell32

uxtheme

user32

kernel32

advapi32

ole32

oleaut32

gdi32

msimg32

winspool.drv

oleacc

imm32

winmm

crypt32

ws2_32

bcrypt

Sections

.text Size: 3.7MB - Virtual size: 3.7MB

.rdata Size: 2.7MB - Virtual size: 2.7MB

.data Size: 57KB - Virtual size: 100KB

.rsrc Size: 60KB - Virtual size: 60KB

.reloc Size: 256KB - Virtual size: 255KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:d8:c9:fa:57:f5:56:0b:fe:a3:82:5e:29:8a:86:9b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

f7:9e:59:5b:4d:2b:13:70:2f:07:a8:37:73:8d:69:27:84:c5:b5:8d:81:b7:6b:22:38:dd:71:43:2b:b8:68:4e
Signer

.text
Size: 3.7MB - Virtual size: 3.7MB

.rdata
Size: 2.7MB - Virtual size: 2.7MB

.data
Size: 57KB - Virtual size: 100KB

.rsrc
Size: 60KB - Virtual size: 60KB

.reloc
Size: 256KB - Virtual size: 255KB