E:\A031_WorkSpace\SVN_POWERLED2012\trunk\bin\PowerLed.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-09-29_7523047e2f554fcf729a9bd5c4e67920_bkransomware.exe
Resource
win7-20240729-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-09-29_7523047e2f554fcf729a9bd5c4e67920_bkransomware.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
2024-09-29_7523047e2f554fcf729a9bd5c4e67920_bkransomware
-
Size
5.0MB
-
MD5
7523047e2f554fcf729a9bd5c4e67920
-
SHA1
655327a0b830a1f17aeaf020bc8a6a31e1cbc31e
-
SHA256
33b6921edc85895776276361d298af82020aa220117d794bc975d8b8382c43a5
-
SHA512
38185eeb530debc53b65121dc0dd379794b0d7c3a0fe9b08e3240ce432e45eb15540b3076f43f972adb0c1d4b631fca18ebe1ea778b9e5e70c4222d577299997
-
SSDEEP
98304:mgveT3dmTTXno9riJaxKPt0EE+d8+rN8kVTwG5Iy6G7jDUS32Rutcu+0MQ7:sTt4BtD8sWhG7jDUS32Rd0d
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-09-29_7523047e2f554fcf729a9bd5c4e67920_bkransomware
Files
-
2024-09-29_7523047e2f554fcf729a9bd5c4e67920_bkransomware.exe windows:5 windows x86 arch:x86
d9251fb7b9b09e924fefe34fde438c5a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
FatalAppExitA
SetFilePointerEx
SetConsoleCtrlHandler
ReadConsoleW
OutputDebugStringW
IsValidCodePage
GetFullPathNameA
GetConsoleMode
SetEnvironmentVariableA
QueryPerformanceFrequency
GetConsoleCP
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
GetStringTypeW
GetCPInfo
GetOEMCP
CreateSemaphoreW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
SetCurrentDirectoryW
GetACP
GetEnvironmentStringsW
QueryPerformanceCounter
GetStdHandle
HeapQueryInformation
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
AreFileApisANSI
GetModuleHandleExW
ExitProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
ExitThread
CreateThread
RtlUnwind
GetCommandLineW
FindResourceExW
VirtualProtect
GetProfileIntW
SearchPathW
GetTempPathW
GetWindowsDirectoryW
VerifyVersionInfoW
VerSetConditionMask
LocalUnlock
LocalLock
SetErrorMode
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalFlags
GetAtomNameW
LocalReAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LocalFileTimeToFileTime
GetFileSizeEx
LocalAlloc
GlobalGetAtomNameW
GetUserDefaultLCID
ReplaceFileW
GetTempFileNameW
GetDiskFreeSpaceW
GetCurrentDirectoryW
GetPrivateProfileStringW
CompareStringA
GetCurrentThread
SuspendThread
SetThreadPriority
lstrcmpA
FileTimeToLocalFileTime
GetThreadLocale
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetShortPathNameW
GetFullPathNameW
FlushFileBuffers
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetProcAddress
GetModuleHandleA
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
CopyFileW
SetLastError
WaitForMultipleObjects
CreateFileA
ResumeThread
TerminateProcess
GetProcessTimes
SetThreadUILanguage
LoadLibraryW
FormatMessageW
LocalFree
FreeLibrary
DeviceIoControl
GetVolumeInformationW
GetDiskFreeSpaceExW
SystemTimeToFileTime
FileTimeToSystemTime
SetFileTime
GetFileTime
GetModuleFileNameA
GetFileAttributesExW
lstrlenA
RemoveDirectoryW
GetFileAttributesW
GlobalFree
GlobalAlloc
GetOverlappedResult
BuildCommDCBW
SetCommTimeouts
SetCommState
PurgeComm
GetCommTimeouts
SetupComm
DebugBreak
lstrlenW
lstrcatW
lstrcpyW
GlobalUnlock
GlobalLock
GlobalSize
GlobalReAlloc
_llseek
GetVersionExW
CreateDirectoryW
GetFileSize
FreeResource
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
LoadResource
RaiseException
DecodePointer
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
CreateFileW
CreateEventW
ResetEvent
SetEvent
MulDiv
GetStartupInfoW
GetCurrentProcessId
CreatePipe
ReadFile
GetLastError
SetFileAttributesW
GetLogicalDriveStringsW
GetDriveTypeW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
GetPrivateProfileIntW
GetSystemTime
GetModuleHandleW
GetTickCount
WideCharToMultiByte
WritePrivateProfileStringW
GetModuleFileNameW
GetUserDefaultUILanguage
lstrcpynW
CreateProcessW
MultiByteToWideChar
Sleep
WaitForSingleObject
CloseHandle
FindResourceW
SizeofResource
LockResource
WriteConsoleW
user32
CreateDialogIndirectParamW
IsDialogMessageW
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
SetFocus
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
RegisterClassW
GetMessageTime
RegisterWindowMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
CheckMenuItem
SendDlgItemMessageA
RemoveMenu
GetMenuState
GetMenuStringW
GetScrollRange
MsgWaitForMultipleObjects
AppendMenuW
GetMenuItemID
DeferWindowPos
PeekMessageW
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
RedrawWindow
UnionRect
WindowFromPoint
ClientToScreen
CallWindowProcW
DrawFocusRect
MapWindowPoints
DrawFrameControl
DispatchMessageW
EndDialog
DestroyIcon
EqualRect
InvertRect
ClipCursor
GetWindowRgn
SetCapture
GetCapture
GetKeyState
IsClipboardFormatAvailable
IsWindow
GetClassInfoW
FrameRect
GetSysColor
DrawEdge
GetWindowTextA
SetWindowTextA
LoadImageW
UnregisterClassW
GetFocus
EndDeferWindowPos
BeginDeferWindowPos
GetDlgItem
OffsetRect
LoadStringW
GetWindowTextW
SetWindowTextW
DeleteMenu
ModifyMenuW
InsertMenuW
GetMenuItemCount
DrawMenuBar
MessageBoxW
UpdateWindow
GetLastInputInfo
SetWindowLongW
GetWindowLongW
ShowWindow
GetClassInfoExW
EnumChildWindows
SubtractRect
GetUpdateRect
RegisterClassExW
DefWindowProcW
IsWindowVisible
TranslateMDISysAccel
DefMDIChildProcW
SendMessageW
EnableWindow
GetParent
IsRectEmpty
IntersectRect
GetSysColorBrush
GetClientRect
EndPaint
BeginPaint
BringWindowToTop
MoveWindow
DestroyWindow
CreateWindowExW
PostMessageW
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetNextDlgTabItem
GetActiveWindow
GetKeyNameTextW
MapVirtualKeyW
GetWindowDC
GetWindowThreadProcessId
DestroyMenu
GetMenuItemInfoW
IsZoomed
SetRectEmpty
CharUpperW
GetMessageW
PostQuitMessage
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
EnableMenuItem
wvsprintfW
ScreenToClient
GetMessagePos
SystemParametersInfoW
PtInRect
LoadIconW
LoadBitmapW
InflateRect
SetRect
GetCursorPos
InvalidateRect
SetMenuItemBitmaps
GetSubMenu
WaitMessage
IsIconic
DrawIcon
SetWindowRgn
LoadAcceleratorsW
TranslateAcceleratorW
CreatePopupMenu
TranslateMessage
InsertMenuItemW
SetTimer
KillTimer
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
GetDesktopWindow
WindowFromDC
GetDC
GetWindowRect
FillRect
CopyRect
ReleaseDC
GetDlgItemTextA
SetDlgItemTextA
SetCursor
LoadCursorW
GetDlgCtrlID
DefFrameProcW
GetDoubleClickTime
MapVirtualKeyExW
IsCharLowerW
GetSystemMetrics
LoadMenuW
GetComboBoxInfo
CreateMenu
CopyIcon
CharUpperBuffW
SetClassLongW
DestroyAcceleratorTable
CreateAcceleratorTableW
SetCursorPos
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
LockWindowUpdate
GetDCEx
HideCaret
GetIconInfo
DrawIconEx
SendNotifyMessageW
InSendMessage
PostThreadMessageW
MonitorFromPoint
EnableScrollBar
UpdateLayeredWindow
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
GetAsyncKeyState
TrackMouseEvent
EnumDisplayMonitors
SetLayeredWindowAttributes
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
MessageBeep
GetTabbedTextExtentW
SetParent
GetSystemMenu
GetDialogBaseUnits
CopyImage
RealChildWindowFromPoint
RegisterClipboardFormatW
DrawStateW
CharNextW
DestroyCursor
ReleaseCapture
gdi32
GetDIBits
RealizePalette
SelectPalette
GetPixel
PlgBlt
SetBkColor
Ellipse
SetGraphicsMode
SetROP2
SetWorldTransform
ModifyWorldTransform
Polygon
CreatePatternBrush
SetDIBits
CopyMetaFileW
CreateDCW
PatBlt
CreateDIBPatternBrushPt
CreateHatchBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
OffsetClipRgn
PlayMetaFile
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetMapperFlags
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetColorAdjustment
StartDocW
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
PolyBezierTo
PolylineTo
SetViewportExtEx
CreateRectRgnIndirect
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetCurrentObject
GetMapMode
SetRectRgn
DPtoLP
GetCharWidthW
StretchDIBits
CreateEllipticRgn
CreateDIBSection
LPtoDP
GetTextColor
GetWindowOrgEx
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
Polyline
SetDIBColorTable
OffsetRgn
EnumFontFamiliesExW
RoundRect
ExtFloodFill
SetPaletteEntries
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
SetPixelV
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
EnumFontsW
Rectangle
GetTextMetricsW
LineTo
CreatePen
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetBkColor
Escape
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetTextExtentPoint32W
GetObjectW
StretchBlt
SetBitmapBits
CreateFontIndirectW
CreateFontW
DeleteDC
SetPixel
CreatePolygonRgn
FillRgn
GetDeviceCaps
SetTextColor
SetBkMode
CreateSolidBrush
MoveToEx
SetStretchBltMode
CombineRgn
SelectObject
GetStockObject
GetBitmapBits
SetViewportOrgEx
CreateBitmap
DeleteObject
msimg32
AlphaBlend
TransparentBlt
comdlg32
GetOpenFileNameW
GetSaveFileNameW
winspool.drv
GetJobW
DocumentPropertiesW
ClosePrinter
OpenPrinterW
advapi32
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW
SetFileSecurityW
GetFileSecurityW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegSetValueW
RegEnumValueW
shell32
SHGetDesktopFolder
DragAcceptFiles
SHGetSpecialFolderPathW
ShellExecuteExW
SHGetFileInfoW
SHAddToRecentDocs
DragQueryFileW
DragFinish
SHBrowseForFolderW
SHGetMalloc
SHAppBarMessage
ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ExtractIconW
comctl32
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_DrawEx
ImageList_Draw
ImageList_GetIconSize
ImageList_GetImageInfo
ord17
ImageList_AddMasked
ImageList_GetImageCount
ImageList_DragShowNolock
shlwapi
PathFindFileNameW
PathRemoveExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
UrlUnescapeW
PathFindExtensionW
StrFormatKBSizeW
uxtheme
DrawThemeBackground
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
OpenThemeData
CloseThemeData
DrawThemeText
DrawThemeParentBackground
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
ole32
CoCreateGuid
StgCreateDocfileOnILockBytes
OleCreateStaticFromData
CreateILockBytesOnHGlobal
CoUninitialize
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoInitialize
OleRun
CreateStreamOnHGlobal
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
CoTreatAsClass
CreateBindCtx
ReadClassStg
WriteClassStg
ReadFmtUserTypeStg
OleDuplicateData
ReleaseStgMedium
OleRegGetUserType
SetConvertStg
CoInitializeEx
PropVariantCopy
CoDisconnectObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleGetClipboard
StgOpenStorageOnILockBytes
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleLockRunning
OleGetIconOfClass
GetHGlobalFromILockBytes
StringFromGUID2
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
StgCreateDocfile
GetRunningObjectTable
CreateOleAdviseHolder
CreateDataAdviseHolder
OleRegEnumVerbs
OleRegGetMiscStatus
CoGetMalloc
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleSetMenuDescriptor
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
CreateFileMoniker
StgIsStorageFile
StgOpenStorage
WriteFmtUserTypeStg
oleaut32
VariantInit
VariantClear
VariantCopy
VariantChangeType
SysAllocStringLen
VarDateFromStr
SysStringLen
OleCreateFontIndirect
SysReAllocStringLen
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SysAllocStringByteLen
VarUdateFromDate
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SysStringByteLen
SysFreeString
SafeArrayGetUBound
SysAllocString
GetErrorInfo
SetErrorInfo
VariantTimeToSystemTime
SafeArrayGetLBound
CreateErrorInfo
SystemTimeToVariantTime
oledlg
OleUIBusyW
ws2_32
select
recv
WSAAsyncSelect
WSASetLastError
gethostbyname
htonl
getsockname
htons
ntohs
closesocket
inet_addr
inet_ntoa
recvfrom
sendto
setsockopt
socket
WSAStartup
WSACleanup
WSAGetLastError
listen
accept
bind
connect
getpeername
send
iphlpapi
GetAdaptersInfo
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
cfgmgr32
CM_Get_Parent
CM_Get_DevNode_Status
CM_Query_And_Remove_SubTreeW
hid
HidP_GetCaps
HidD_GetAttributes
HidD_GetHidGuid
HidD_GetPreparsedData
HidD_FreePreparsedData
setupapi
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
CM_Request_Device_EjectW
SetupDiEnumDeviceInterfaces
gdiplus
GdipBitmapUnlockBits
GdipCreateBitmapFromFileICM
GdipBitmapLockBits
GdiplusShutdown
GdipAlloc
GdipFree
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipCloneImage
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectI
GdiplusStartup
GdipGetImageGraphicsContext
GdipCreateBitmapFromStreamICM
GdipGetDC
GdipReleaseDC
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipResetWorldTransform
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipDrawImageI
GdipSaveGraphics
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreatePath
GdipCreatePath2
GdipDeletePath
GdipGetPointCount
GdipGetPathTypes
GdipGetPathPoints
GdipAddPathString
GdipWarpPath
GdipTransformPath
GdipGetPathWorldBounds
GdipCreateMatrix2
GdipDeleteMatrix
GdipCloneBrush
GdipDeleteBrush
GdipCreateTexture
GdipCreateSolidFill
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipFillRectangleI
GdipFillPie
GdipFillPath
GdipDrawImagePointRectI
GdipDrawImageRectRectI
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipCreateBitmapFromHBITMAP
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
avcodec-56
av_free_packet
avcodec_close
avcodec_decode_video2
avcodec_find_decoder
avcodec_open2
avcodec_register_all
avpicture_fill
avpicture_get_size
avformat-56
av_read_frame
av_register_all
avformat_close_input
avformat_find_stream_info
avformat_open_input
swscale-3
sws_getContext
sws_scale
avutil-54
av_frame_alloc
av_free
av_malloc
wininet
HttpSendRequestExW
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
GopherGetAttributeW
GopherOpenFileW
GopherFindFirstFileW
GopherCreateLocatorW
FtpCommandW
FtpGetCurrentDirectoryW
FtpSetCurrentDirectoryW
FtpRemoveDirectoryW
FtpCreateDirectoryW
FtpOpenFileW
FtpRenameFileW
HttpEndRequestW
FtpPutFileW
FtpGetFileW
FtpFindFirstFileW
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetSetOptionExW
InternetQueryOptionW
InternetFindNextFileW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetOpenUrlW
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
HttpQueryInfoW
InternetSetCookieW
InternetGetCookieW
InternetErrorDlg
FtpDeleteFileW
imm32
ImmGetContext
ImmReleaseContext
ImmGetOpenStatus
winmm
PlaySoundW
Sections
.text Size: 3.6MB - Virtual size: 3.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 864KB - Virtual size: 863KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 57KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 274KB - Virtual size: 274KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ