zint-2[.]13[.]0-win32[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

zint-2.13.0-win32.zip
Size

10.1MB
MD5

3ac9eb2f76eb27dcc5d50ca1f9e0c8c1
SHA1

04c2447c04abbb32339a2b2da52a01611de70980
SHA256

7f3e1c60f61c8d78623d7cee438c1f4fb7f1f7c49d16ecbe456c3545c8b2a87d
SHA512

6004e06bbd92189ce40a61bed7516539325a1b16c7394c2f6a90b1a694f055659cd35406e0ac64b0b31a4526c2bee6d66ff24d1492466da534988809bb5ba46e
SSDEEP

196608:XXptJqtVUxIDg6yFJiBAbnBFZHKiBlD5jmpjLQreP8MG1v8XZf:XX1qIxaMPFxKiBltQLOPSZf

Score

5^/10

pdf

Malware Config

Signatures

Malformed data in PDF
A PDF can contain malformed data to evade detection
pdf

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/zint-2.13.0/qtZint.exe
unpack001/zint-2.13.0/tcl/zint.dll
unpack001/zint-2.13.0/zint.exe

Files

zint-2.13.0-win32.zip
.zip

Password: infected
zint-2.13.0/ChangeLog.txt
zint-2.13.0/README.txt
zint-2.13.0/manual.pdf
.pdf
zint-2.13.0/manual.txt
zint-2.13.0/qtZint.exe
.exe windows:6 windows x86 arch:x86

Password: infected

3967ff251ffc851d67be434d2c1d0b49

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wtsapi32

WTSQuerySessionInformationW
WTSFreeMemory

uxtheme

SetWindowThemeAttribute
OpenThemeData
GetThemePartSize
GetThemeColor
GetThemeInt
DrawThemeTextEx
GetThemeMargins
GetThemePropertyOrigin
GetThemeTransitionDuration
CloseThemeData
GetThemeSysFont
DrawThemeBackground
GetThemeEnumValue
GetCurrentThemeName
IsAppThemed
IsThemeActive
SetWindowTheme
GetThemeBool
IsThemeBackgroundPartiallyTransparent
ord47
GetThemeBackgroundRegion

dwmapi

DwmExtendFrameIntoClientArea
DwmGetWindowAttribute
DwmIsCompositionEnabled
DwmSetWindowAttribute
DwmDefWindowProc
DwmEnableBlurBehindWindow

oleaut32

SafeArrayCreateVector
SafeArrayPutElement
SysFreeString
SysAllocString

imm32

ImmSetCompositionWindow
ImmGetContext
ImmReleaseContext
ImmAssociateContext
ImmAssociateContextEx
ImmGetCompositionStringW
ImmGetVirtualKey
ImmSetCandidateWindow
ImmGetDefaultIMEWnd
ImmNotifyIME
ImmGetOpenStatus

opengl32

glLoadIdentity
glOrtho
glMatrixMode
glLoadMatrixf

gdi32

GetTextMetricsW
GetDIBits
ExtTextOutW
SetWorldTransform
SetTextAlign
SetTextColor
SetGraphicsMode
SetBkMode
GetCharABCWidthsI
GetTextExtentPoint32W
GetOutlineTextMetricsW
GetGlyphOutlineW
GetCharABCWidthsFloatW
GetCharABCWidthsW
GetTextFaceW
DescribePixelFormat
RemoveFontMemResourceEx
AddFontMemResourceEx
RemoveFontResourceExW
AddFontResourceExW
GetStockObject
GetFontData
EnumFontFamiliesExW
CreateFontIndirectW
GetObjectW
CombineRgn
CreateCompatibleDC
CreateRectRgn
DeleteDC
DeleteObject
GetRegionData
SelectClipRgn
SelectObject
CreateDIBSection
GdiFlush
BitBlt
OffsetRgn
SetLayout
GetDeviceCaps
CreateCompatibleBitmap
CreateDCW
CreateBitmap
ChoosePixelFormat
GetBitmapBits
GetPixelFormat
SetPixelFormat
SwapBuffers

userenv

GetUserProfileDirectoryW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

netapi32

NetApiBufferFree
NetShareEnum

ws2_32

WSAAsyncSelect

advapi32

GetLengthSid
GetSidSubAuthorityCount
GetSidSubAuthority
SystemFunction036
BuildTrusteeWithSidW
GetNamedSecurityInfoW
GetEffectiveRightsFromAclW
LookupAccountSidW
MapGenericMask
GetTokenInformation
FreeSid
DuplicateToken
CopySid
AllocateAndInitializeSid
AccessCheck
OpenProcessToken
RegSetValueExW
RegQueryInfoKeyW
RegFlushKey
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

kernel32

FindNextFileW
FindFirstFileExW
LoadLibraryA
FreeLibrary
ExpandEnvironmentStringsW
GetModuleHandleExW
LoadLibraryW
UnregisterWaitEx
RegisterWaitForSingleObject
GetTimeZoneInformation
GetGeoInfoW
GetUserGeoID
GetSystemDirectoryW
lstrcmpW
OpenProcess
GetExitCodeProcess
WideCharToMultiByte
ResetEvent
GetProcAddress
GetUserPreferredUILanguages
GetUserDefaultLCID
GetCurrencyFormatW
GetLocaleInfoW
GetTimeFormatW
GetDateFormatW
UnmapViewOfFile
VirtualFree
CreateProcessW
CheckRemoteDebuggerPresent
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalSize
GetUserDefaultLangID
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseMutex
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
InitializeSListHead
CompareStringW
FindCloseChangeNotification
FindFirstChangeNotificationW
FindNextChangeNotification
CreateMutexW
WTSGetActiveConsoleSessionId
CreateDirectoryW
GetFileAttributesW
GetLastError
MultiByteToWideChar
CompareStringEx
GetCommandLineW
GetCurrentProcessId
LocalFree
MapViewOfFile
OutputDebugStringW
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetConsoleWindow
CloseHandle
DuplicateHandle
SetEvent
WaitForSingleObject
CreateEventW
Sleep
WaitForMultipleObjects
CreateThread
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemInfo
WaitForSingleObjectEx
GetSystemTime
GetLocalTime
CreateFileW
GetFileAttributesExW
GetStartupInfoW
GetModuleFileNameW
GetModuleHandleW
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount64
FormatMessageW
GetCurrentDirectoryW
DeleteFileW
FindClose
FindFirstFileW
GetFileInformationByHandle
GetFullPathNameW
GetLogicalDrives
GetLongPathNameW
RemoveDirectoryW
SetFileTime
GetTempPathW
GetVolumePathNamesForVolumeNameW
SetErrorMode
DeviceIoControl
CopyFileW
MoveFileW
MoveFileExW
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
SystemTimeToFileTime
GetFileInformationByHandleEx
FlushFileBuffers
GetDriveTypeW
GetFileType
GetVolumeInformationW
ReadFile
SetEndOfFile
SetFilePointerEx
WriteFile
CreateFileMappingW
VirtualAlloc

ole32

CoUninitialize
CoCreateInstance
CoInitialize
CoLockObjectExternal
CoCreateGuid
RegisterDragDrop
CoTaskMemFree
RevokeDragDrop
OleInitialize
OleUninitialize
CoInitializeEx
OleSetClipboard
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
ReleaseStgMedium
CoGetMalloc
StringFromGUID2

shell32

Shell_NotifyIconW
SHBrowseForFolderW
SHGetKnownFolderIDList
SHGetPathFromIDListW
SHGetMalloc
SHCreateItemFromIDList
ShellExecuteW
ord727
SHGetStockIconInfo
SHGetFileInfoW
SHCreateItemFromParsingName
CommandLineToArgvW
SHGetKnownFolderPath
Shell_NotifyIconGetRect

user32

GetIconInfo
GetCursorInfo
CreateIconIndirect
CreateCursor
LoadCursorW
GetCursor
SetCursorPos
TrackPopupMenuEx
MapVirtualKeyW
ToUnicode
ToAscii
GetKeyboardState
GetKeyState
IsZoomed
FindWindowA
SetCaretPos
ShowCaret
HideCaret
DestroyCaret
CreateCaret
IsWindowEnabled
RegisterWindowMessageW
EnumDisplayDevicesW
GetClipboardFormatNameW
TrackMouseEvent
GetMessageExtraInfo
GetAsyncKeyState
GetTouchInputInfo
CloseTouchInputHandle
GetWindowTextW
EnumWindows
RealGetWindowClassW
ChangeWindowMessageFilterEx
DrawIconEx
MessageBoxW
RegisterDeviceNotificationW
UnhookWindowsHookEx
TranslateMessage
DispatchMessageW
PeekMessageW
PostMessageW
DefWindowProcW
RegisterClassW
UnregisterClassW
CreateWindowExW
DestroyWindow
GetQueueStatus
MsgWaitForMultipleObjectsEx
SetTimer
KillTimer
GetWindowLongW
SetWindowLongW
SetWindowsHookExW
UnregisterDeviceNotification
CallNextHookEx
CharNextExA
GetSystemMetrics
SystemParametersInfoW
GetDC
ReleaseDC
GetSysColor
GetDesktopWindow
GetDoubleClickTime
IsWindow
MessageBeep
GetCaretBlinkTime
UpdateLayeredWindowIndirect
SendMessageW
AttachThreadInput
IsChild
ShowWindow
UpdateLayeredWindow
SetLayeredWindowAttributes
FlashWindowEx
MoveWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
IsWindowVisible
IsIconic
SetFocus
RegisterTouchWindow
UnregisterTouchWindow
IsTouchWindow
GetCapture
SetCapture
ReleaseCapture
GetMenu
GetSystemMenu
EnableMenuItem
GetForegroundWindow
SetForegroundWindow
BeginPaint
EndPaint
GetUpdateRect
SetWindowRgn
InvalidateRect
SetWindowTextW
GetClientRect
GetWindowRect
AdjustWindowRectEx
SetCursor
ClientToScreen
ScreenToClient
GetParent
SetParent
GetWindowThreadProcessId
GetWindow
DestroyCursor
DestroyIcon
MonitorFromPoint
GetAncestor
GetKeyboardLayoutList
RegisterPowerSettingNotification
UnregisterPowerSettingNotification
GetClassInfoW
RegisterClassExW
GetFocus
GetCursorPos
WindowFromPoint
ChildWindowFromPointEx
GetSysColorBrush
LoadImageW
SetMenu
DrawMenuBar
CreateMenu
CreatePopupMenu
DestroyMenu
InsertMenuW
AppendMenuW
ModifyMenuW
RemoveMenu
TrackPopupMenu
GetMenuItemInfoW
SetMenuItemInfoW
MonitorFromWindow
GetMonitorInfoW
EnumDisplayMonitors
LoadIconW
IsHungAppWindow
SetClipboardViewer
ChangeClipboardChain
RegisterClipboardFormatW
GetKeyboardLayout

winmm

timeSetEvent
timeKillEvent
PlaySoundW

msvcp140

?_Xbad_function_call@std@@YAXXZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Syserror_map@std@@YAPBDH@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@D@std@@QBEDD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?classic@locale@std@@SAABV12@XZ
??Bid@locale@std@@QAEIXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Xbad_alloc@std@@YAXXZ

vcruntime140

__std_exception_destroy
memchr
wcsrchr
strstr
__vcrt_InitializeCriticalSectionEx
_except_handler4_common
_CxxThrowException
__std_exception_copy
_setjmp3
longjmp
strrchr
memmove
__std_terminate
_purecall
memset
strchr
__CxxFrameHandler3
memcpy

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_invalid_parameter_noinfo_noreturn
_set_app_type
terminate
_seh_filter_exe
_register_onexit_function
_endthreadex
__p___argv
__p___argc
_controlfp_s
_cexit
_initialize_onexit_table
_errno
_initterm
exit
_initterm_e
_configure_narrow_argv
_exit
_c_exit
_register_thread_local_exe_atexit_callback
abort
strerror
_initialize_narrow_environment
_get_narrow_winmain_command_line

api-ms-win-crt-math-l1-1-0

_except1
_libm_sse2_exp_precise
_libm_sse2_log_precise
trunc
ceil
__setusermatherr
roundf
_libm_sse2_atan_precise
_libm_sse2_sqrt_precise
floor
_CIfmod
_libm_sse2_acos_precise
_CIatan2
hypot
_libm_sse2_sin_precise
_libm_sse2_tan_precise
_libm_sse2_cos_precise
_libm_sse2_asin_precise
_dtest
round
lround
_libm_sse2_log10_precise
_libm_sse2_pow_precise

api-ms-win-crt-string-l1-1-0

isxdigit
isspace
strncpy
isdigit
wcsncmp
toupper
strncat
strncmp
strcpy_s

api-ms-win-crt-stdio-l1-1-0

_open_osfhandle
fputs
_wfopen
_write
_read
_set_fmode
__stdio_common_vsnprintf_s
fopen
__stdio_common_vsprintf
_close
__stdio_common_vfprintf
ftell
fseek
_fseeki64
fread
fputc
fflush
fgets
puts
ferror
feof
_fileno
__stdio_common_vsscanf
fwrite
fclose
__acrt_iob_func
_setmode
putc
__p__commode
_ftelli64
_lseeki64
_get_osfhandle

api-ms-win-crt-heap-l1-1-0

malloc
free
calloc
_callnewh
realloc
_set_new_mode

api-ms-win-crt-convert-l1-1-0

strtol
atoi

api-ms-win-crt-environment-l1-1-0

getenv
getenv_s
_wgetenv_s

api-ms-win-crt-time-l1-1-0

_mktime64
_get_timezone
_get_tzname
_localtime64_s
_tzset

api-ms-win-crt-filesystem-l1-1-0

_waccess
_wchmod

api-ms-win-crt-utility-l1-1-0

qsort
bsearch
rand_s
rand

api-ms-win-crt-locale-l1-1-0

setlocale
_configthreadlocale

Sections

.text
Size: 8.8MB - Virtual size: 8.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 13B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmetad
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmimed
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
zint-2.13.0/tcl/licence.txt
zint-2.13.0/tcl/pkgIndex.tcl
zint-2.13.0/tcl/readme.txt
zint-2.13.0/tcl/zint.dll
.dll windows:4 windows x86 arch:x86

Password: infected

1e32d30e4d64300ad0014ee11a2855c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GetFileAttributesW
GetLastError
CreateDirectoryW
DisableThreadLibraryCalls

msvcrt

sprintf
strncat
fputc
_iob
fputs
fflush
fclose
fwrite
free
strerror
_errno
_setmode
floor
malloc
_ftol
printf
ceil
strchr
calloc
realloc
puts
fread
ftell
fseek
atoi
_CIfmod
_wfopen
strrchr
fprintf
putc
strncpy
_initterm
_adjust_fdiv
memmove

Exports

Exports

ZBarcode_BarcodeName
ZBarcode_Buffer
ZBarcode_Buffer_Vector
ZBarcode_Cap
ZBarcode_Clear
ZBarcode_Create
ZBarcode_Default_Xdim
ZBarcode_Delete
ZBarcode_Encode
ZBarcode_Encode_File
ZBarcode_Encode_File_and_Buffer
ZBarcode_Encode_File_and_Buffer_Vector
ZBarcode_Encode_File_and_Print
ZBarcode_Encode_Segs
ZBarcode_Encode_Segs_and_Buffer
ZBarcode_Encode_Segs_and_Buffer_Vector
ZBarcode_Encode_Segs_and_Print
ZBarcode_Encode_and_Buffer
ZBarcode_Encode_and_Buffer_Vector
ZBarcode_Encode_and_Print
ZBarcode_NoPng
ZBarcode_Print
ZBarcode_Reset
ZBarcode_Scale_From_XdimDp
ZBarcode_ValidID
ZBarcode_Version
ZBarcode_XdimDp_From_Scale
Zint_Init
Zint_Unload
_DllEntryPoint@12

Sections

.text
Size: 308KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 240KB - Virtual size: 238KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
zint-2.13.0/zint.exe
.exe windows:4 windows x86 arch:x86

Password: infected

b3536d55f190baeb2a482f4966c65264

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
WideCharToMultiByte
GetCommandLineW
lstrcpyW
LocalAlloc
lstrlenW
MultiByteToWideChar
GetFileAttributesW
GetLastError
CreateDirectoryW

msvcrt

printf
sprintf
strncat
fputc
_iob
fputs
fflush
fclose
fwrite
free
strerror
_errno
_setmode
floor
malloc
_ftol
memmove
ceil
strchr
calloc
fprintf
strncmp
getenv
realloc
puts
fread
ftell
fseek
strncpy
exit
strrchr
strstr
fgetc
_wfopen
atoi
_CIfmod
_setjmp3
longjmp
putc
abort
_exit
_XcptFilter
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 360KB - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

3967ff251ffc851d67be434d2c1d0b49

Headers

DLL Characteristics

File Characteristics

Imports

wtsapi32

uxtheme

dwmapi

oleaut32

imm32

opengl32

gdi32

userenv

version

netapi32

ws2_32

advapi32

kernel32

ole32

shell32

user32

winmm

msvcp140

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-locale-l1-1-0

Sections

.text Size: 8.8MB - Virtual size: 8.8MB

.rdata Size: 3.6MB - Virtual size: 3.6MB

.data Size: 115KB - Virtual size: 170KB

.tls Size: 512B - Virtual size: 13B

.qtmetad Size: 2KB - Virtual size: 1KB

.gfids Size: 512B - Virtual size: 68B

_RDATA Size: 1024B - Virtual size: 548B

.qtmimed Size: 2.2MB - Virtual size: 2.2MB

.rsrc Size: 103KB - Virtual size: 103KB

.reloc Size: 298KB - Virtual size: 297KB

Password: infected

1e32d30e4d64300ad0014ee11a2855c0

Headers

File Characteristics

Imports

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 308KB - Virtual size: 305KB

.rdata Size: 240KB - Virtual size: 238KB

.data Size: 44KB - Virtual size: 41KB

.reloc Size: 12KB - Virtual size: 12KB

Password: infected

b3536d55f190baeb2a482f4966c65264

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 360KB - Virtual size: 356KB

.rdata Size: 256KB - Virtual size: 255KB

.data Size: 64KB - Virtual size: 60KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 8.8MB - Virtual size: 8.8MB

.rdata
Size: 3.6MB - Virtual size: 3.6MB

.data
Size: 115KB - Virtual size: 170KB

.tls
Size: 512B - Virtual size: 13B

.qtmetad
Size: 2KB - Virtual size: 1KB

.gfids
Size: 512B - Virtual size: 68B

_RDATA
Size: 1024B - Virtual size: 548B

.qtmimed
Size: 2.2MB - Virtual size: 2.2MB

.rsrc
Size: 103KB - Virtual size: 103KB

.reloc
Size: 298KB - Virtual size: 297KB

.text
Size: 308KB - Virtual size: 305KB

.rdata
Size: 240KB - Virtual size: 238KB

.data
Size: 44KB - Virtual size: 41KB

.reloc
Size: 12KB - Virtual size: 12KB

.text
Size: 360KB - Virtual size: 356KB

.rdata
Size: 256KB - Virtual size: 255KB

.data
Size: 64KB - Virtual size: 60KB

.rsrc
Size: 16KB - Virtual size: 15KB