17230ed65783b82193cecf70fed8f1d4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

17230ed65783b82193cecf70fed8f1d4_JaffaCakes118
Size

7.0MB
MD5

17230ed65783b82193cecf70fed8f1d4
SHA1

d5ed2c2829c870af6bbb41904b976e2b37660c1b
SHA256

6cd165dbd5211d604fbe37f3fbdf64878f01de5866ee5e3d3b7017184898b94d
SHA512

237bd22921272f4f9fec892bf3289e658e14bc100049c859b1faf83664ee602544c278f256f8dee79138c0f261a42c85f186f7c76da9eb643e998aab8872ac5d
SSDEEP

196608:uTPbI/SwFZH9aMSlfR0yRTPbI/SdbCz0qO3c8IOaD:UP8f9aMSlf3tPFC9Os8IOaD

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 9 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9LibLite.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9OfflineLite.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/JLF10.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2KeyWizard.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2SecuritiesCodeTable.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysCMDTable.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysConfig.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Update2.dll	acprotect
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/升级后打此补丁/SysConfig.dll	acprotect

UPX packed file 10 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9LibLite.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9OfflineLite.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/JLF10.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2KeyWizard.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2SecuritiesCodeTable.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/LiveUp.Exe	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysCMDTable.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysConfig.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Update2.dll	upx
static1/unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/升级后打此补丁/SysConfig.dll	upx

Unsigned PE 20 IoCs

Checks for missing Authenticode signature.

resource
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9LibLite.dll
unpack002/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9OfflineLite.dll
unpack003/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/JLF10.dll
unpack004/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/JRJLevel2.exe
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2KeyWizard.dll
unpack005/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2SecuritiesCodeTable.dll
unpack006/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/LiveUp.Exe
unpack007/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysCMDTable.dll
unpack008/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysConfig.dll
unpack009/out.upx
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Update2.dll
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/升级后打此补丁/JRJLevel2.exe
unpack001/金融界大趋势证券分析系统10档行情L2绿色特别版/升级后打此补丁/SysConfig.dll

Files

17230ed65783b82193cecf70fed8f1d4_JaffaCakes118
.rar
价值26800元的SuperView超赢&TotalView 全赢数据查询.url
.url
使用说明.url
.url
免费提供明日涨停三只股.url
.url
金融界大趋势证券分析系统10档行情L2绿色特别版/10档行情使用方法.txt
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/Group/CustomBoard.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/His2/Min/Sh/20090306/000001.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/His2/Sh/600030.day
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/His2/Sh/600739.day
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/His2/Sh/600973.day
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/His2/Sh/601988.day
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/His2/Sz/000507.day
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/Min2/Sh/000001.Dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Data/Temp/InstStocks.xml
.xml
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9LibLite.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DestroyF10
F10ChangeWindowPos
F10CopyDataToClipBoard
F10GoToModule
F10GotoNavigate
F10Initialization
F10PrintData
F10RefreshData
F10ResetProxyServer
F10SaveDataToFile
F10SendEmailAsAttachment
F10SendEmailAsText
F10ShowAbout
F10ShowHelp
F10ShowInnerCode
GetF10ActiveInnerCode

Sections

UPX0
Size: - Virtual size: 7.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 9KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 489B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 201KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/F9OfflineLite.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateOfflineForm
FreeOfflineForm

Sections

UPX0
Size: - Virtual size: 652KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 283KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 735KB - Virtual size: 735KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/JLF10.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DestroyF9
F9ChangeWindowPos
F9Initialization
F9RefreshData
F9ResetProxyServer
F9ShowCodeNum
GetF9ActiveInnerID

Sections

UPX0
Size: - Virtual size: 432KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 231KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 497KB - Virtual size: 496KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 24KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 231B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/JRJLevel2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Sections

packerBY
Size: - Virtual size: 4.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bero^fr
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2KeyWizard.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateKeyWizardObject
DestroyKeyWizardObject

Sections

UPX0
Size: - Virtual size: 392KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 208KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 434KB - Virtual size: 434KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 19KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/L2SecuritiesCodeTable.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateSecuritiesCodeTableObject

Sections

UPX0
Size: - Virtual size: 340KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 199KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 385KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 25KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/LiveUp.Exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 824KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 528KB - Virtual size: 527KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 23KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 56B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 431KB - Virtual size: 431KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Profile.ini
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysCMDTable.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateSysCmdTableObject

Sections

UPX0
Size: - Virtual size: 288KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 164KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 338KB - Virtual size: 337KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 19KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/SysConfig.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateSysConfigCenterObject

Sections

UPX0
Size: - Virtual size: 332KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 168KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 386KB - Virtual size: 385KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/CodeTable.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/FileV2.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/Finance.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/HisStockName.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/alert.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/catas.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/cmdtable.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/config.ini
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/msg.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/quanG.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/stocks.dat
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/techparam.cfg
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/System/userparam.cfg
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/Update2.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CheckUpdate
DownLoadOneFile

Sections

UPX0
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 761KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/Light.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/Unlight.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/aboutlogo.jpg
.jpg
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/closebtn.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/downbtn.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/hotinfo.jpg
.jpg
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/login.jpg
.jpg
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/mainico.ico
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/splash.jpg
.jpg
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_61.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_Institute.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_Institute_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_InstitutionStocks.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_InstitutionStocks_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_Learning.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_Learning_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_PrivateInvest.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_PrivateInvest_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_adv_alt.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_adv_att.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_buy.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_classfy.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_custom.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_draw.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_expert.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f1_0.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f1_0_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f1_1.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f1_1_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f1_2.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f1_2_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f6_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f9.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_f9_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_forum.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_forum_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_hidekey.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_hidekey_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_hist.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_hist_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_home.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_home_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_minute.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_minute_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_period.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/tlb_period_gr.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/JRJQuoteBasic/img/upbtn.bmp
金融界大趋势证券分析系统10档行情L2绿色特别版/升级后打此补丁/JRJLevel2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Sections

packerBY
Size: - Virtual size: 4.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bero^fr
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
金融界大趋势证券分析系统10档行情L2绿色特别版/升级后打此补丁/SysConfig.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateSysConfigCenterObject

Sections

UPX0
Size: - Virtual size: 332KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 168KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 7.6MB

UPX1 Size: 1.6MB - Virtual size: 1.6MB

.rsrc Size: 23KB - Virtual size: 24KB

Headers

File Characteristics

Sections

CODE Size: 3.3MB - Virtual size: 3.3MB

DATA Size: 17KB - Virtual size: 17KB

BSS Size: - Virtual size: 9KB

.idata Size: 11KB - Virtual size: 11KB

.edata Size: 512B - Virtual size: 489B

.reloc Size: 201KB - Virtual size: 201KB

.rsrc Size: 5.5MB - Virtual size: 5.5MB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 652KB

UPX1 Size: 283KB - Virtual size: 284KB

.rsrc Size: 7KB - Virtual size: 8KB

Headers

File Characteristics

Sections

CODE Size: 735KB - Virtual size: 735KB

DATA Size: 11KB - Virtual size: 10KB

BSS Size: - Virtual size: 8KB

.idata Size: 9KB - Virtual size: 8KB

.edata Size: 512B - Virtual size: 112B

.reloc Size: 50KB - Virtual size: 49KB

.rsrc Size: 71KB - Virtual size: 71KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 432KB

UPX1 Size: 231KB - Virtual size: 232KB

.rsrc Size: 5KB - Virtual size: 8KB

Headers

File Characteristics

Sections

.text Size: 497KB - Virtual size: 496KB

.itext Size: 2KB - Virtual size: 2KB

.data Size: 11KB - Virtual size: 10KB

.bss Size: - Virtual size: 24KB

.idata Size: 10KB - Virtual size: 9KB

.edata Size: 512B - Virtual size: 231B

.reloc Size: 36KB - Virtual size: 36KB

.rsrc Size: 28KB - Virtual size: 28KB

Headers

File Characteristics

Sections

packerBY Size: - Virtual size: 4.9MB

bero^fr Size: 1.3MB - Virtual size: 1.3MB

.rsrc Size: 26KB - Virtual size: 60KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 392KB

UPX1 Size: 208KB - Virtual size: 212KB

.rsrc Size: 6KB - Virtual size: 8KB

Headers

File Characteristics

Sections

.text Size: 434KB - Virtual size: 434KB

.itext Size: 2KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 8KB

UPX0
Size: - Virtual size: 7.6MB

UPX1
Size: 1.6MB - Virtual size: 1.6MB

.rsrc
Size: 23KB - Virtual size: 24KB

CODE
Size: 3.3MB - Virtual size: 3.3MB

DATA
Size: 17KB - Virtual size: 17KB

BSS
Size: - Virtual size: 9KB

.idata
Size: 11KB - Virtual size: 11KB

.edata
Size: 512B - Virtual size: 489B

.reloc
Size: 201KB - Virtual size: 201KB

.rsrc
Size: 5.5MB - Virtual size: 5.5MB

UPX0
Size: - Virtual size: 652KB

UPX1
Size: 283KB - Virtual size: 284KB

.rsrc
Size: 7KB - Virtual size: 8KB

CODE
Size: 735KB - Virtual size: 735KB

DATA
Size: 11KB - Virtual size: 10KB

BSS
Size: - Virtual size: 8KB

.idata
Size: 9KB - Virtual size: 8KB

.edata
Size: 512B - Virtual size: 112B

.reloc
Size: 50KB - Virtual size: 49KB

.rsrc
Size: 71KB - Virtual size: 71KB

UPX0
Size: - Virtual size: 432KB

UPX1
Size: 231KB - Virtual size: 232KB

.rsrc
Size: 5KB - Virtual size: 8KB

.text
Size: 497KB - Virtual size: 496KB

.itext
Size: 2KB - Virtual size: 2KB

.data
Size: 11KB - Virtual size: 10KB

.bss
Size: - Virtual size: 24KB

.idata
Size: 10KB - Virtual size: 9KB

.edata
Size: 512B - Virtual size: 231B

.reloc
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 28KB - Virtual size: 28KB

packerBY
Size: - Virtual size: 4.9MB

bero^fr
Size: 1.3MB - Virtual size: 1.3MB

.rsrc
Size: 26KB - Virtual size: 60KB

UPX0
Size: - Virtual size: 392KB

UPX1
Size: 208KB - Virtual size: 212KB

.rsrc
Size: 6KB - Virtual size: 8KB

.text
Size: 434KB - Virtual size: 434KB

.itext
Size: 2KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 8KB

.bss
Size: - Virtual size: 19KB

.idata
Size: 10KB - Virtual size: 9KB

.edata
Size: 512B - Virtual size: 121B

.reloc
Size: 29KB - Virtual size: 29KB

.rsrc
Size: 52KB - Virtual size: 52KB

UPX0
Size: - Virtual size: 340KB

UPX1
Size: 199KB - Virtual size: 200KB

.rsrc
Size: 4KB - Virtual size: 4KB

.text
Size: 385KB - Virtual size: 384KB

.itext
Size: 2KB - Virtual size: 1KB

.data
Size: 37KB - Virtual size: 36KB

.bss
Size: - Virtual size: 25KB

.idata
Size: 9KB - Virtual size: 9KB

.edata
Size: 512B - Virtual size: 108B

.reloc
Size: 23KB - Virtual size: 23KB

.rsrc
Size: 14KB - Virtual size: 14KB

UPX0
Size: - Virtual size: 824KB

UPX1
Size: 248KB - Virtual size: 248KB

.rsrc
Size: 8KB - Virtual size: 12KB

.text
Size: 528KB - Virtual size: 527KB

.itext
Size: 2KB - Virtual size: 2KB

.data
Size: 13KB - Virtual size: 12KB

.bss
Size: - Virtual size: 23KB

.idata
Size: 10KB - Virtual size: 10KB

.tls
Size: - Virtual size: 56B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 34KB - Virtual size: 34KB

.rsrc
Size: 431KB - Virtual size: 431KB

UPX0
Size: - Virtual size: 288KB

UPX1
Size: 164KB - Virtual size: 168KB

.rsrc
Size: 4KB - Virtual size: 4KB

.text
Size: 338KB - Virtual size: 337KB

.itext
Size: 2KB - Virtual size: 1KB