dffea3bbd7ac4eb4949263af53bf6cda_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dffea3bbd7ac4eb4949263af53bf6cda_JaffaCakes118
Size

3.9MB
MD5

dffea3bbd7ac4eb4949263af53bf6cda
SHA1

2b4b7f23dcbb2ffcbbf85727c7eb3a75b54662af
SHA256

54fc27864211f75a83460de5faea593fa6fcde0254020057287d5b35d8724a03
SHA512

cc1dfaa247aad81f2e4286b5bdabc6f0b7b55cb4d99602620cd900d7bb4e3834586c0d53914731717a65a074061e71f75f3db96ec84a12b776195eb5d1f5bdd4
SSDEEP

98304:B7k0BhZh9y7Ug/e9cjehfOTEUZbOFfKccCCxxVCzTYfY2l/Y:1htyAg/LelOLZi1s3VCo9/Y

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 6 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/汇博计件工资(2005-03-16-16-02)/Common/UninstallPgm/Uninstall.exe	aspack_v212_v242
static1/unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/GBMgr.dll	aspack_v212_v242
static1/unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/PSMgr.dll	aspack_v212_v242
static1/unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/SMMgr.dll	aspack_v212_v242
static1/unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/HYPER_DESKTOP.exe	aspack_v212_v242
static1/unpack001/汇博计件工资(2005-03-16-16-02)/Setup.exe	aspack_v212_v242

Unsigned PE 6 IoCs

Checks for missing Authenticode signature.

resource
unpack001/汇博计件工资(2005-03-16-16-02)/Common/UninstallPgm/Uninstall.exe
unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/GBMgr.dll
unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/PSMgr.dll
unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/SMMgr.dll
unpack001/汇博计件工资(2005-03-16-16-02)/Desktop/HYPER_DESKTOP.exe
unpack001/汇博计件工资(2005-03-16-16-02)/Setup.exe

Files

dffea3bbd7ac4eb4949263af53bf6cda_JaffaCakes118
.rar
下载说明.htm
.html .js polyglot
汇博计件工资(2005-03-16-16-02)/Common/UninstallPgm/Uninstall.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 185KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汇博计件工资(2005-03-16-16-02)/Console/Msi/Hyper_CSalary.MSI
.msi
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_employee_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_employee_sel.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_salary_item_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_salary_item_sel.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_voc_frm_salary_dtl_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_voc_frm_salary_dtl_sel.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_voc_frm_salary_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_ps_voc_frm_salary_sel.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_opr_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_opr_sel.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_parameter_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_partaker_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_seqno_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_sysctrl_desc_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Grid/grd_sm_sysctrl_mtn.txt
.xml
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/sample.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/人员一览表.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/人员档案卡.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/员工一览表.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/员工档案卡.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/员工计件工资统计表.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/工作量明细查询.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/工作量登记单.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/常用电话一览表.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/常用电话档案卡.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/知识库档案卡.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/记件项目一览表.rept
汇博计件工资(2005-03-16-16-02)/Console/RunTimeData/Report/记件项目档案卡.rept
汇博计件工资(2005-03-16-16-02)/Console/inidb/Hyper_CSalary.dat
汇博计件工资(2005-03-16-16-02)/Console/inidb/Hyper_CSalary.mdb
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/Hyper.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/梦幻魅色.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/涟漪.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/神奈川之海.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/蓝樱.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/铃铛草.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/BackGround/飞鱼，鸟.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/GBMgr.dll
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

CODE
Size: 226KB - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 23KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/PSMgr.dll
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

CODE
Size: 251KB - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汇博计件工资(2005-03-16-16-02)/Desktop/Dlls/Component/SMMgr.dll
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

CODE
Size: 349KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 54KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汇博计件工资(2005-03-16-16-02)/Desktop/HYPER_DESKTOP.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ps_employee_gbf
ps_get_trx_detail_gqf
ps_get_trx_detail_gqf_getversion
ps_get_trx_emply_summary_gqf
ps_get_trx_emply_summary_gqf_getversion
ps_salary_item_gbf
ps_voc_frm_salary_gbf
ps_voc_frm_salary_gbf_getversion
ps_voc_frm_salary_gfk
sm_opr_gbf
sm_opr_gbf_getversion
sm_parameter_gbf
sm_parameter_gbf_getversion
sm_partaker_gbf
sm_partaker_gbf_getversion
sm_vpd_list_gbf
sm_vpd_list_gbf_getversion

Sections

CODE
Size: 920KB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汇博计件工资(2005-03-16-16-02)/Desktop/Help/Hyper_CSalary.chm
.chm
汇博计件工资(2005-03-16-16-02)/Desktop/Hyper_DeskTop.ini
汇博计件工资(2005-03-16-16-02)/Desktop/Image/Cover.jpg
.jpg
汇博计件工资(2005-03-16-16-02)/Install.txt
.xml
汇博计件工资(2005-03-16-16-02)/Setup.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 234KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汇博计件工资(2005-03-16-16-02)/下载说明.htm
.html .js polyglot
汇博计件工资(2005-03-16-16-02)/协议.txt
汇博计件工资(2005-03-16-16-02)/标题.txt
汇博计件工资(2005-03-16-16-02)/欢迎.txt
汇博计件工资(2005-03-16-16-02)/说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 185KB - Virtual size: 464KB

DATA Size: 2KB - Virtual size: 8KB

BSS Size: - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 32KB

.rsrc Size: 15KB - Virtual size: 80KB

.aspack Size: 6KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 226KB - Virtual size: 604KB

DATA Size: 3KB - Virtual size: 8KB

BSS Size: - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 12KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 23KB - Virtual size: 44KB

.rsrc Size: 11KB - Virtual size: 28KB

.aspack Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 251KB - Virtual size: 780KB

DATA Size: 3KB - Virtual size: 8KB

BSS Size: - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 12KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 28KB - Virtual size: 52KB

.rsrc Size: 19KB - Virtual size: 36KB

.aspack Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 349KB - Virtual size: 1.6MB

DATA Size: 3KB - Virtual size: 8KB

BSS Size: - Virtual size: 8KB

.idata Size: 3KB - Virtual size: 12KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 54KB - Virtual size: 96KB

.rsrc Size: 63KB - Virtual size: 88KB

.aspack Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 920KB - Virtual size: 2.9MB

DATA Size: 7KB - Virtual size: 20KB

BSS Size: - Virtual size: 12KB

.idata Size: 4KB - Virtual size: 12KB

.edata Size: 1024B - Virtual size: 4KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 192KB

.rsrc Size: 212KB - Virtual size: 1.3MB

.aspack Size: 208KB - Virtual size: 208KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

CODE Size: 234KB - Virtual size: 576KB

CODE
Size: 185KB - Virtual size: 464KB

DATA
Size: 2KB - Virtual size: 8KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 32KB

.rsrc
Size: 15KB - Virtual size: 80KB

.aspack
Size: 6KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

CODE
Size: 226KB - Virtual size: 604KB

DATA
Size: 3KB - Virtual size: 8KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 12KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 23KB - Virtual size: 44KB

.rsrc
Size: 11KB - Virtual size: 28KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

CODE
Size: 251KB - Virtual size: 780KB

DATA
Size: 3KB - Virtual size: 8KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 12KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 28KB - Virtual size: 52KB

.rsrc
Size: 19KB - Virtual size: 36KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

CODE
Size: 349KB - Virtual size: 1.6MB

DATA
Size: 3KB - Virtual size: 8KB

BSS
Size: - Virtual size: 8KB

.idata
Size: 3KB - Virtual size: 12KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 54KB - Virtual size: 96KB

.rsrc
Size: 63KB - Virtual size: 88KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

CODE
Size: 920KB - Virtual size: 2.9MB

DATA
Size: 7KB - Virtual size: 20KB

BSS
Size: - Virtual size: 12KB

.idata
Size: 4KB - Virtual size: 12KB

.edata
Size: 1024B - Virtual size: 4KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 192KB

.rsrc
Size: 212KB - Virtual size: 1.3MB

.aspack
Size: 208KB - Virtual size: 208KB

.adata
Size: - Virtual size: 4KB

CODE
Size: 234KB - Virtual size: 576KB

DATA
Size: 3KB - Virtual size: 12KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 40KB

.rsrc
Size: 38KB - Virtual size: 88KB

.aspack
Size: 6KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB