Aseprite_v1[.]1[.]5[.]6_WIN[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Aseprite_v1.1.5.6_WIN.zip
Size

2.2MB
MD5

362b2257ce6a585edda47a8e67bd0778
SHA1

f5c71c4ec9674cf98d6aaaac755743aebecf24ce
SHA256

9d990ef891358d34d463fb67186c35420330c452eb358487af7d4dd7fff3ae42
SHA512

d27bccf2a7450a5cf8c803f48182b99b7b8e57440b97a9ab024efcbffb09e0cb7da2cac835b890426c75b12c2d46bff8dd06c4f74a6df8ff6e79b69eed206943
SSDEEP

49152:t77mjrti/TT4Yn82kTgnPObXR6/cM1jvc2w30RctGIzRSfD:thnHnET1fM1jvBw8IzRS7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/aseprite.exe

Files

Aseprite_v1.1.5.6_WIN.zip
.zip
aseprite.exe
.exe windows:6 windows x86 arch:x86

aae278e290158f7d9f23199e25fdec7f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\bonfi\Desktop\ase2\build\bin\aseprite.pdb

Imports

ole32

CoUninitialize
CoInitialize
CoCreateInstance

shlwapi

StrRetToBufW

ws2_32

select
WSAStartup
__WSAFDIsSet
gethostbyname
WSACleanup
WSASetLastError
closesocket
socket
setsockopt
WSAGetLastError
recv
ntohs
htons
getsockopt
getsockname
send
bind
connect
getpeername
ioctlsocket

shell32

DragFinish
DragQueryFileW
SHGetFolderPathW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
ShellExecuteExW

msvcp140

?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?_Sync@ios_base@std@@0_NA
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@U_Mbstatet@@@2@XZ
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@V?$fpos@U_Mbstatet@@@2@@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?_BADOFF@std@@3_JB
??0_Lockit@std@@QAE@H@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
??1_Lockit@std@@QAE@XZ
??Bid@locale@std@@QAEIXZ
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?always_noconv@codecvt_base@std@@QBE_NXZ

vcruntime140

memcpy
_purecall
memmove
__std_exception_copy
__std_exception_destroy
__RTDynamicCast
__CxxFrameHandler3
memchr
memset
__std_terminate
longjmp
__CxxLongjmpUnwind
_setjmp3
__RTtypeid
__std_type_info_name
strchr
strrchr
strstr
__telemetry_main_invoke_trigger
__telemetry_main_return_trigger
__vcrt_InitializeCriticalSectionEx
__std_type_info_destroy_list
_except_handler4_common
_CxxThrowException

api-ms-win-crt-runtime-l1-1-0

_errno
_invalid_parameter_noinfo_noreturn
abort
strerror
_beginthread
_invalid_parameter_noinfo
exit
_controlfp_s
terminate
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_seh_filter_dll
__sys_nerr
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
_seh_filter_exe
_exit
_initterm_e
_initterm
_get_narrow_winmain_command_line
_initialize_narrow_environment
_configure_narrow_argv
_set_app_type

api-ms-win-crt-utility-l1-1-0

qsort
srand
rand
div

api-ms-win-crt-locale-l1-1-0

_configthreadlocale
setlocale

api-ms-win-crt-time-l1-1-0

_gmtime64
_time64
clock

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__stdio_common_vsnprintf_s
fopen_s
__p__commode
fflush
__stdio_common_vsprintf
_dup
_get_stream_buffer_pointers
fclose
_setmode
_close
fgetc
tmpfile
fgetpos
_read
tmpnam
_getdcwd
_wopen
fputc
fsetpos
_open
_write
_wsopen_dispatch
_wfopen
_fseeki64
freopen
fwrite
setvbuf
ungetc
__stdio_common_vsscanf
__stdio_common_vfprintf
fopen
__acrt_iob_func
__stdio_common_vsprintf_s
fgets
feof
getc
fputs
_lseek
ftell
fseek
fread
ferror

api-ms-win-crt-convert-l1-1-0

strtoul
atof
strtod
strtol
atoi
strtoll
atol

api-ms-win-crt-filesystem-l1-1-0

_wstat64i32
remove
_getdrive
_unlock_file
_wunlink
_wfindfirst64i32
_lock_file
_wfindnext64i32
_unlink
_findfirst64i32
_findnext64i32
_findclose
_stat64i32

api-ms-win-crt-string-l1-1-0

strncmp
_stricmp
tolower
strtok
isdigit
strpbrk
toupper
isspace
_strdup
isalnum
iswctype
strncat
strncpy
isalpha
isxdigit

api-ms-win-crt-math-l1-1-0

_CIfmod
_libm_sse2_sqrt_precise
_libm_sse2_cos_precise
_libm_sse2_sin_precise
floor
_dclass
_dsign
_libm_sse2_acos_precise
_libm_sse2_atan_precise
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_tan_precise
ceil
_libm_sse2_log10_precise
hypot
_fdopen
modf
frexp
__setusermatherr
_libm_sse2_exp_precise
_except1
_CIatan2
_libm_sse2_asin_precise

api-ms-win-crt-environment-l1-1-0

_wgetdcwd
getenv
_wgetenv

api-ms-win-crt-multibyte-l1-1-0

_mbsicmp

api-ms-win-crt-heap-l1-1-0

realloc
free
calloc
_set_new_mode
_callnewh
malloc

kernel32

IsDebuggerPresent
GlobalAlloc
GlobalLock
GetStartupInfoW
GlobalUnlock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleW
CreateFileW
CloseHandle
SetUnhandledExceptionFilter
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetStdHandle
GetFileType
FreeConsole
AttachConsole
AllocConsole
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
GetFileAttributesExW
Sleep
RemoveDirectoryW
SetFileAttributesW
GetTempPathW
GetModuleFileNameW
MoveFileW
GetLastError
WaitForSingleObject
CreateThread
ResumeThread
GetExitCodeProcess
OpenProcess
GetLocalTime
GetTickCount
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
SystemTimeToFileTime
GetLogicalDrives
SetEvent
LocalFree
FormatMessageW
GetCommandLineW
DebugBreak
CreateEventW
SetThreadPriority
GetProcAddress
WaitForMultipleObjects
GetTempPathA
OutputDebugStringA
DuplicateHandle
GetModuleHandleA
OutputDebugStringW
GetVersionExW
FreeLibrary
LoadLibraryW
ExitProcess
SleepEx
SetLastError
ExpandEnvironmentStringsA
UnhandledExceptionFilter
InitializeSListHead
TerminateProcess
IsProcessorFeaturePresent
ResetEvent
GetCurrentThread
GetVersion
WaitForSingleObjectEx
GetSystemTimeAsFileTime
FileTimeToSystemTime
FormatMessageA
GetSystemTime
GetFullPathNameW
SystemTimeToTzSpecificLocalTime

user32

LoadCursorW
InvalidateRect
ClientToScreen
EndPaint
DestroyIcon
CreateIconIndirect
SetCursor
SetForegroundWindow
LoadIconW
GetForegroundWindow
SetCursorPos
MessageBoxA
GetActiveWindow
IsIconic
MoveWindow
DestroyWindow
ToUnicode
GetKeyboardState
UpdateWindow
GetAsyncKeyState
CreateWindowExW
BeginPaint
SystemParametersInfoW
OpenClipboard
CloseClipboard
SetClipboardData
RegisterClassW
PostQuitMessage
DefWindowProcW
PostMessageW
SendMessageW
DispatchMessageW
GetClipboardData
GetMessageW
RegisterWindowMessageW
RegisterClipboardFormatW
EmptyClipboard
SetClassLongW
IsClipboardFormatAvailable
GetClassLongW
MessageBoxW
AdjustWindowRect
GetWindowRect
SetWindowTextW
RedrawWindow
ReleaseDC
GetDC
EnableMenuItem
CallWindowProcW
GetSystemMenu
SetWindowPos
ShowWindow
SetScrollInfo
SetWindowLongW
GetWindowLongW
MapWindowPoints
ScreenToClient
GetCursorPos
GetClientRect
GetScrollPos
SetScrollPos
GetSystemMetrics
GetWindowPlacement
SetWindowPlacement
ReleaseCapture
GetCapture
SetCapture

gdi32

GetObjectW
StretchBlt
SetPaletteEntries
SelectPalette
RealizePalette
GetPaletteEntries
GetDIBits
CreatePalette
CreateDIBitmap
GetSystemPaletteEntries
SetPixel
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt
GetDeviceCaps
StretchDIBits

comdlg32

CommDlgExtendedError
GetSaveFileNameW
GetOpenFileNameW

winmm

timeGetTime

comctl32

_TrackMouseEvent

dbghelp

MiniDumpWriteDump

Sections

.text
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 693KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 374B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 194KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/convmatr.def
data/fonts/allegro.pcx
data/fonts/anipro_fixed.pcx
data/fonts/anipro_variable.pcx
data/fonts/ase1.pcx
data/fonts/ase2.pcx
data/gui.xml
.xml
data/icons/ase.ico
data/icons/ase16.png
.png
data/icons/ase32.png
.png
data/icons/ase48.png
.png
data/icons/ase64.png
.png
data/icons/doc.ico
data/icons/doc16.png
.png
data/icons/doc32.png
.png
data/icons/doc48.png
.png
data/icons/doc64.png
.png
data/palettes/a64.gpl
data/palettes/apple-ii.gpl
data/palettes/arne-paldac.gpl
data/palettes/arne16.gpl
data/palettes/arne32.gpl
data/palettes/atari2600-ntsc.gpl
data/palettes/atari2600-pal.gpl
data/palettes/cg-arne.gpl
data/palettes/cga.gpl
data/palettes/commodore-plus4.gpl
data/palettes/commodore-vic20.gpl
data/palettes/commodore64.gpl
data/palettes/copper-tech.gpl
data/palettes/cpc-boy.gpl
data/palettes/db16.gpl
data/palettes/db32.gpl
data/palettes/eroge-copper.gpl
data/palettes/gameboy-color-type1.gpl
data/palettes/gameboy.gpl
data/palettes/google-ui.gpl
data/palettes/jmp.gpl
data/palettes/master-system.gpl
data/palettes/monokai.gpl
data/palettes/nes-ntsc.gpl
data/palettes/nes.gpl
data/palettes/pico-8.gpl
data/palettes/psygnork.gpl
data/palettes/solarized.gpl
data/palettes/teletext.gpl
data/palettes/vga-13h.gpl
data/palettes/web-safe-colors.gpl
data/palettes/win16.gpl
data/palettes/x11.gpl
data/palettes/zx-spectrum.gpl
data/pref.xml
.xml
data/scripts/white_to_alpha.js
.js
data/skins/default/font.png
.png
data/skins/default/minifont.png
.png
data/skins/default/palette.png
.png
data/skins/default/sheet.png
.png
data/skins/default/skin.xml
.vbs .xml polyglot
data/widgets/advanced_mode.xml
data/widgets/brush_slot_params.xml
data/widgets/canvas_size.xml
data/widgets/cel_properties.xml
data/widgets/color_curve_point.xml
data/widgets/convolution_matrix.xml
data/widgets/despeckle.xml
data/widgets/duplicate_sprite.xml
data/widgets/export_sprite_sheet.xml
data/widgets/file_selector.xml
data/widgets/font_popup.xml
data/widgets/frame_properties.xml
.xml
data/widgets/frame_tag_properties.xml
.xml
data/widgets/gif_options.xml
data/widgets/goto_frame.xml
data/widgets/grid_settings.xml
data/widgets/home_view.xml
data/widgets/import_sprite_sheet.xml
data/widgets/jpeg_options.xml
data/widgets/keyboard_shortcuts.xml
data/widgets/layer_properties.xml
data/widgets/main_window.xml
data/widgets/modify_selection.xml
data/widgets/new_folder_window.xml
data/widgets/new_layer.xml
data/widgets/new_sprite.xml
data/widgets/options.xml
data/widgets/palette_from_sprite.xml
data/widgets/palette_popup.xml
data/widgets/palette_size.xml
data/widgets/paste_text.xml
data/widgets/replace_color.xml
data/widgets/select_accelerator.xml
data/widgets/send_crash.xml
data/widgets/sprite_properties.xml
data/widgets/sprite_size.xml
data/widgets/timeline_conf.xml
data/widgets/undo_history.xml
data/widgets/user_data.xml
data/widgets/webp_options.xml
data/www/aseprite.css
data/www/aseprite.js
.js
data/www/aseprite.png
.png
data/www/index.html
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

aae278e290158f7d9f23199e25fdec7f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ole32

shlwapi

ws2_32

shell32

msvcp140

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-multibyte-l1-1-0

api-ms-win-crt-heap-l1-1-0

kernel32

user32

gdi32

comdlg32

winmm

comctl32

dbghelp

Sections

.text Size: 5.1MB - Virtual size: 5.1MB

.rdata Size: 693KB - Virtual size: 692KB

.data Size: 92KB - Virtual size: 156KB

.idata Size: 20KB - Virtual size: 19KB

.tls Size: 1KB - Virtual size: 1KB

.gfids Size: 512B - Virtual size: 374B

.00cfg Size: 512B - Virtual size: 260B

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 194KB - Virtual size: 193KB

.text
Size: 5.1MB - Virtual size: 5.1MB

.rdata
Size: 693KB - Virtual size: 692KB

.data
Size: 92KB - Virtual size: 156KB

.idata
Size: 20KB - Virtual size: 19KB

.tls
Size: 1KB - Virtual size: 1KB

.gfids
Size: 512B - Virtual size: 374B

.00cfg
Size: 512B - Virtual size: 260B

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 194KB - Virtual size: 193KB