3adb99fa7b44a06516d36160cab5372a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3adb99fa7b44a06516d36160cab5372a_JaffaCakes118
Size

246KB
MD5

3adb99fa7b44a06516d36160cab5372a
SHA1

074fe090f70c9ae596b4357b463434a5997d4b99
SHA256

9c071f3c8f5608a2b3224540e3938ad11c20193170de7b363eadaf0d92ec9e24
SHA512

31afff124fe5b035d0c3e6123f8324a1750f1d0a10a1219fa1e6d9886e89fcb3959be47dd16aafb1c61a71c0cb69e16472deee5f10196312a2a2bc0209155c97
SSDEEP

6144:hPO2188Z28Z2hgrMUWs4wM3F2SmebMuP9mz2j8CZZ9:hG26IvYUK8ebMY9mCjh9

Score

3^/10

Malware Config

Signatures

Unsigned PE 30 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Werbung.exe
unpack002/Src/!!!!Szablon_Projektow/Projekt.exe
unpack002/Src/!Symbole/!Symbole.exe
unpack002/Src/AppBar/AppBar.exe
unpack002/Src/COMIShellLink/COMIShellLink.exe
unpack002/Src/COMITaskbarList/COMITaskbarList.exe
unpack002/Src/COMIWebBrowser2/COMIWebBrowser2.exe
unpack002/Src/COMIWebBrowser2_Res/COMIWebBrowser2_res.exe
unpack002/Src/DLL/DLL.exe
unpack002/Src/DLL/DeeLeLka.dll
unpack002/Src/DLL/DeeLeLka/DeeLeLka.dll
unpack002/Src/Data/Data1.exe
unpack002/Src/Data/Data2.exe
unpack002/Src/DlgMsg/DlgMsg.exe
unpack002/Src/Edytor/Edytor2.exe
unpack002/Src/IntUp/IntUp.exe
unpack002/Src/Konsola/Konsola.exe
unpack002/Src/Magnetic/Magnetic.exe
unpack002/Src/ManifestXP/ManifestXP.exe
unpack002/Src/MessageBoxAW/MessageBoxAW.exe
unpack002/Src/Prisoner/Prisoner.exe
unpack002/Src/RAT/k.exe
unpack002/Src/RAT/s.exe
unpack002/Src/Rety/Rety.exe
unpack002/Src/Start/Start.exe
unpack002/Src/SzDialog/SzDialog.exe
unpack002/Src/TransMenu/TransMenu.exe
unpack002/Src/UpTime/UpTime.exe
unpack002/Src/Wyjatek/Wyjatek.exe
unpack002/Src/ZakWer/ZakWer.exe

Files

3adb99fa7b44a06516d36160cab5372a_JaffaCakes118
.rar
Werbung.exe
.exe windows:4 windows x86 arch:x86

5c4d602843f54570889588b32f7af650

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
_adj_fdiv_m64
_adj_fprem1
_adj_fdiv_m32
_adj_fdiv_m16i
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
_CIlog
_adj_fdiv_m32i
_adj_fdivr_m32i
_adj_fdivr_m32
_adj_fdiv_r
ord100
_CIatan
_allmul
_CItan
_CIexp

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
asmwin.zip
.zip
!Czytaj!.to
BuildAll.bat
CRLF.TXT
Debug.bat
Dos-Win.txt
Release.bat
Src/!!!!Szablon_Projektow/Projekt.asm
Src/!!!!Szablon_Projektow/Projekt.exe
.exe windows:4 windows x86 arch:x86

0b5579f42ddfd81ae977d24bcd4aaefc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

DialogBoxParamA
EndDialog
SendMessageA

Sections

.text
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 222B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/!!!!Szablon_Projektow/Projekt.rc
Src/!!!!Szablon_Projektow/d.bat
Src/!!!!Szablon_Projektow/makefile
Src/!!!!Szablon_Projektow/r.bat
Src/!Symbole/!Symbole.asm
Src/!Symbole/!Symbole.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Src/!Symbole/!Symbole.txt
Src/!Symbole/makefile
Src/!Symbole/r.bat
Src/AppBar/AppBar.asm
Src/AppBar/AppBar.exe
.exe windows:4 windows x86 arch:x86

7753dc66c2957ad1ea94ea555e00c9eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

DefWindowProcA
DispatchMessageA
GetMessageA
GetSystemMetrics
CreateWindowExA
MoveWindow
PostQuitMessage
RegisterClassExA
SendMessageA
TranslateMessage
LoadCursorA

shell32

SHAppBarMessage

Sections

.text
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 498B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/AppBar/d.bat
Src/AppBar/makefile
Src/AppBar/r.bat
Src/COMIShellLink/COMIShellLink.asm
Src/COMIShellLink/COMIShellLink.exe
.exe windows:4 windows x86 arch:x86

4905ccd06184856b4f4f806d1a8cb623

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleFileNameA
GetModuleHandleA
MultiByteToWideChar
DeleteFileA

user32

SendMessageA
DialogBoxParamA
EndDialog
SetDlgItemTextA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

Sections

.text
Size: 1024B - Virtual size: 514B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 446B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/COMIShellLink/COMIShellLink.rc
Src/COMIShellLink/d.bat
Src/COMIShellLink/makefile
Src/COMIShellLink/r.bat
Src/COMITaskbarList/COMITaskbarList.asm
Src/COMITaskbarList/COMITaskbarList.exe
.exe windows:4 windows x86 arch:x86

f23f9b9112e20fb401c031d7d68835af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

EndDialog
DialogBoxParamA
SendMessageA
SetDlgItemTextA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

Sections

.text
Size: 512B - Virtual size: 382B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 364B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/COMITaskbarList/COMITaskbarList.rc
Src/COMITaskbarList/d.bat
Src/COMITaskbarList/makefile
Src/COMITaskbarList/r.bat
Src/COMIWebBrowser2/COMIWebBrowser2.asm
Src/COMIWebBrowser2/COMIWebBrowser2.exe
.exe windows:4 windows x86 arch:x86

d2f920207b1792da26fcb2251504c950

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

GetClientRect
EndDialog
DialogBoxParamA
SendMessageA
SetDlgItemTextA

ole32

OleUninitialize
OleSetContainedObject
OleInitialize
CoCreateInstance

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/COMIWebBrowser2/COMIWebBrowser2.rc
Src/COMIWebBrowser2/HelionLogo.gif
.gif
Src/COMIWebBrowser2/Strona.html
.html
Src/COMIWebBrowser2/d.bat
Src/COMIWebBrowser2/makefile
Src/COMIWebBrowser2/r.bat
Src/COMIWebBrowser2_Res/COMIWebBrowser2_res.asm
Src/COMIWebBrowser2_Res/COMIWebBrowser2_res.exe
.exe windows:4 windows x86 arch:x86

d2f920207b1792da26fcb2251504c950

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

GetClientRect
EndDialog
DialogBoxParamA
SendMessageA
SetDlgItemTextA

ole32

OleUninitialize
OleSetContainedObject
OleInitialize
CoCreateInstance

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/COMIWebBrowser2_Res/COMIWebBrowser2_res.rc
Src/COMIWebBrowser2_Res/HelionLogo.gif
.gif
Src/COMIWebBrowser2_Res/Strona.html
.html
Src/COMIWebBrowser2_Res/d.bat
Src/COMIWebBrowser2_Res/makefile
Src/COMIWebBrowser2_Res/r.bat
Src/DLL/DLL.asm
Src/DLL/DLL.exe
.exe windows:4 windows x86 arch:x86

3f222e757ff6ba1b85872b7968fcb43e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

deelelka

DllHelloWorld

Sections

.text
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/DLL/DeeLeLka.dll
.dll windows:4 windows x86 arch:x86

a96d166ab17e011e8049d87211158ae5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

Exports

Exports

DllHelloWorld

Sections

.text
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 173B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Src/DLL/DeeLeLka/DeeLeLka.asm
Src/DLL/DeeLeLka/DeeLeLka.def
Src/DLL/DeeLeLka/DeeLeLka.dll
.dll windows:4 windows x86 arch:x86

a96d166ab17e011e8049d87211158ae5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

Exports

Exports

DllHelloWorld

Sections

.text
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 173B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Src/DLL/DeeLeLka/DeeLeLka.exp
Src/DLL/DeeLeLka/DeeLeLka.inc
Src/DLL/DeeLeLka/DeeLeLka.lib
Src/DLL/DeeLeLka/d.bat
Src/DLL/DeeLeLka/makefile
Src/DLL/DeeLeLka/r.bat
Src/DLL/d.bat
Src/DLL/makefile
Src/DLL/r.bat
Src/Data/Data1.asm
Src/Data/Data1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/Data/Data2.asm
Src/Data/Data2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/Data/c.bat
Src/Data/makefile1
Src/Data/makefile2
Src/Data/r.bat
Src/DlgMsg/DlgMsg.asm
Src/DlgMsg/DlgMsg.exe
.exe windows:4 windows x86 arch:x86

032269e9a367d0db22ff391896c0b2fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
ExitProcess
FreeConsole
GetModuleHandleA
GetStdHandle
Sleep
WriteConsoleA
lstrcatA
lstrcpyA
lstrlenA

user32

DialogBoxParamA
EndDialog
SendMessageA
wsprintfA

Sections

.text
Size: 512B - Virtual size: 338B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/DlgMsg/DlgMsg.rc
Src/DlgMsg/d.bat
Src/DlgMsg/makefile
Src/DlgMsg/r.bat
Src/Edytor/Edytor2.asm
Src/Edytor/Edytor2.exe
.exe windows:4 windows x86 arch:x86

45c4e05ce9b89dcf4cfab56c9ab449b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
WriteFile
CreateFileA
ReadFile
GetModuleHandleA
CloseHandle

user32

EndDialog
GetDlgItem
GetDlgItemTextA
MessageBoxA
MoveWindow
SendMessageA
SetDlgItemTextA
DialogBoxParamA
GetClientRect

comdlg32

GetSaveFileNameA
GetOpenFileNameA

Sections

.text
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 546B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/Edytor/d.bat
Src/Edytor/edytor.h
Src/Edytor/edytor.rc
Src/Edytor/edytor2.h
Src/Edytor/edytor2.rc
Src/Edytor/makefile
Src/Edytor/r.bat
Src/Edytor/tekst.txt
Src/IntUp/IntUp.asm
Src/IntUp/IntUp.exe
.exe windows:4 windows x86 arch:x86

730d4049d6d02515ee3feb74edac56ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
lstrcatA
GetModuleHandleA
ExitProcess

user32

SendMessageA
DialogBoxParamA
EndDialog
GetDlgItem

gdi32

CreateSolidBrush
DeleteObject

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

Sections

.text
Size: 1024B - Virtual size: 646B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/IntUp/IntUp.rc
Src/IntUp/d.bat
Src/IntUp/makefile
Src/IntUp/r.bat
Src/Konsola/Konsola.asm
Src/Konsola/Konsola.exe
.exe windows:4 windows x86 arch:x86

b64a665f3c3ef96553bd488aaf6c3215

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FreeConsole
GetStdHandle
Sleep
WriteConsoleA
AllocConsole

Sections

.text
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 194B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/Konsola/d.bat
Src/Konsola/makefile
Src/Konsola/r.bat
Src/Magnetic/Magnetic.asm
Src/Magnetic/Magnetic.exe
.exe windows:4 windows x86 arch:x86

492ffd8bfb4315e057f529c031dd5e77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

DialogBoxParamA
EndDialog
GetSystemMetrics
SendMessageA
SetDlgItemTextA
SystemParametersInfoA

Sections

.text
Size: 1024B - Virtual size: 526B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/Magnetic/Magnetic.rc
Src/Magnetic/d.bat
Src/Magnetic/makefile
Src/Magnetic/r.bat
Src/Magnetic/rsrc.txt
Src/ManifestXP/ManifestXP.asm
Src/ManifestXP/ManifestXP.exe
.exe windows:4 windows x86 arch:x86

51c2315934d9db9b82314bd793e64685

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

MessageBoxA
SendMessageA
EndDialog
DialogBoxParamA

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 316B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/ManifestXP/ManifestXP.rc
Src/ManifestXP/ManifestXP.txt
Src/ManifestXP/d.bat
Src/ManifestXP/makefile
Src/ManifestXP/r.bat
Src/MessageBoxAW/MessageBoxAW.asm
Src/MessageBoxAW/MessageBoxAW.exe
.exe windows:4 windows x86 arch:x86

f1e0bc950109c828d05fe775ff779bbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA
MessageBoxW

Sections

.text
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/MessageBoxAW/Uni2Asm/Uni2Asm.pas
Src/MessageBoxAW/Uni2Asm/uni2asm.exe
Src/MessageBoxAW/d.bat
Src/MessageBoxAW/makefile
Src/MessageBoxAW/r.bat
Src/MessageBoxAW/uni.inc
Src/MessageBoxAW/uni.txt
Src/MessageBoxAW/uni2asm.exe
Src/MessageBoxAW/unidump.txt
Src/Okienko/okienko.rc
Src/Prisoner/Prisoner.asm
Src/Prisoner/Prisoner.exe
.exe windows:4 windows x86 arch:x86

492ffd8bfb4315e057f529c031dd5e77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

DialogBoxParamA
EndDialog
GetSystemMetrics
SendMessageA
SetDlgItemTextA
SystemParametersInfoA

Sections

.text
Size: 512B - Virtual size: 370B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/Prisoner/Prisoner.rc
Src/Prisoner/d.bat
Src/Prisoner/makefile
Src/Prisoner/r.bat
Src/RAT/c.bat
Src/RAT/k.asm
Src/RAT/k.exe
.exe windows:4 windows x86 arch:x86

51340efeb478de8f8ecc6baea451da43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitProcess
GetModuleHandleA
TerminateThread
lstrcatA
lstrcpyA
CloseHandle

user32

DialogBoxParamA
EndDialog
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
MessageBoxA
SendMessageA
SetDlgItemInt
SetDlgItemTextA
SetWindowPos

ws2_32

WSACleanup
WSAStartup
closesocket
connect
gethostbyaddr
gethostbyname
htons
inet_addr
inet_ntoa
recv
send
socket

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/RAT/k.rc
Src/RAT/makefile1
Src/RAT/makefile2
Src/RAT/r.bat
Src/RAT/s.asm
Src/RAT/s.exe
.exe windows:4 windows x86 arch:x86

6aa4bc9d5d69f490266e61f58e3898dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
ExitProcess
GetModuleHandleA
TerminateThread
lstrcatA
lstrcmpiA
lstrcpyA

user32

DialogBoxParamA
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
SendMessageA
SetDlgItemInt
SetDlgItemTextA
SetWindowPos
EndDialog

ws2_32

closesocket
gethostbyname
gethostname
htons
inet_ntoa
bind
recv
send
socket
WSAStartup
WSACleanup
listen
accept

shell32

ShellExecuteA

winmm

mciSendStringA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/RAT/s.rc
Src/RAT/stale.h
Src/RAT/wspolne.inc
Src/Rety/Rety.asm
Src/Rety/Rety.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Src/Rety/d.bat
Src/Rety/makefile
Src/Rety/r.bat
Src/Start/Start.asm
Src/Start/Start.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 11B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/Start/d.bat
Src/Start/dump.txt
Src/Start/makefile
Src/Start/r.bat
Src/SzDialog/SzDialog.asm
Src/SzDialog/SzDialog.exe
.exe windows:4 windows x86 arch:x86

1a62aba95ddcd41eef20f21153009d93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

DialogBoxParamA
EndDialog

Sections

.text
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/SzDialog/SzDialog.rc
Src/SzDialog/d.bat
Src/SzDialog/makefile
Src/SzDialog/r.bat
Src/TransMenu/TransMenu.asm
Src/TransMenu/TransMenu.exe
.exe windows:4 windows x86 arch:x86

e402bad90f1e5b6a4843b3b5e3f7656e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
lstrcmpiA
ExitProcess

user32

AppendMenuA
CallNextHookEx
CallWindowProcA
CreateMenu
CreateWindowExA
DefWindowProcA
DispatchMessageA
DrawMenuBar
GetClassNameA
GetClientRect
GetMessageA
GetPropA
GetWindowLongA
GetWindowThreadProcessId
LoadCursorA
PostQuitMessage
RegisterClassExA
RemovePropA
SetMenu
SetPropA
SetWindowLongA
SetWindowTextA
SetWindowsHookExA
ShowWindow
TranslateMessage
UnhookWindowsHookEx

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Src/TransMenu/d.bat
Src/TransMenu/makefile
Src/TransMenu/r.bat
Src/UpTime/UpTime.asm
Src/UpTime/UpTime.exe
.exe windows:4 windows x86 arch:x86

ba2fbfae750d42bb436da4ad47bea707

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
ExitProcess

user32

EndDialog
SetDlgItemInt
SetTimer
DialogBoxParamA
SendMessageA
KillTimer

advapi32

RegCloseKey
RegQueryValueExA

Sections

.text
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 378B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/UpTime/UpTime.rc
Src/UpTime/d.bat
Src/UpTime/makefile
Src/UpTime/r.bat
Src/Wyjatek/Wyjatek.asm
Src/Wyjatek/Wyjatek.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 19B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Src/Wyjatek/d.bat
Src/Wyjatek/makefile
Src/Wyjatek/r.bat
Src/ZakWer/ZakWer.asm
Src/ZakWer/ZakWer.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Src/ZakWer/ZakWer.rc
Src/ZakWer/d.bat
Src/ZakWer/makefile
Src/ZakWer/r.bat
makefile.mak
makro.inc
resource.h
klientscr7lc.png
.png
serverscr9zp.png
.png

Sharing

General

Malware Config

Signatures

Files

5c4d602843f54570889588b32f7af650

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 92KB - Virtual size: 90KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

0b5579f42ddfd81ae977d24bcd4aaefc

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 512B - Virtual size: 140B

.rdata Size: 512B - Virtual size: 222B

.data Size: - Virtual size: 4B

.rsrc Size: 512B - Virtual size: 264B

Headers

File Characteristics

Sections

.text Size: 512B - Virtual size: 1B

7753dc66c2957ad1ea94ea555e00c9eb

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 1024B - Virtual size: 828B

.rdata Size: 512B - Virtual size: 498B

.data Size: 512B - Virtual size: 116B

4905ccd06184856b4f4f806d1a8cb623

Headers

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 1024B - Virtual size: 514B

.rdata Size: 512B - Virtual size: 446B

.data Size: 512B - Virtual size: 116B

.rsrc Size: 512B - Virtual size: 296B

f23f9b9112e20fb401c031d7d68835af

Headers

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 512B - Virtual size: 382B

.rdata Size: 512B - Virtual size: 364B

.data Size: 512B - Virtual size: 68B

.rsrc Size: 512B - Virtual size: 304B

d2f920207b1792da26fcb2251504c950

Headers

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 420B

.data Size: 512B - Virtual size: 408B

.rsrc Size: 512B - Virtual size: 272B

d2f920207b1792da26fcb2251504c950

Headers

File Characteristics

Imports

.text
Size: 92KB - Virtual size: 90KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 512B - Virtual size: 140B

.rdata
Size: 512B - Virtual size: 222B

.data
Size: - Virtual size: 4B

.rsrc
Size: 512B - Virtual size: 264B

.text
Size: 512B - Virtual size: 1B

.text
Size: 1024B - Virtual size: 828B

.rdata
Size: 512B - Virtual size: 498B

.data
Size: 512B - Virtual size: 116B

.text
Size: 1024B - Virtual size: 514B

.rdata
Size: 512B - Virtual size: 446B

.data
Size: 512B - Virtual size: 116B

.rsrc
Size: 512B - Virtual size: 296B

.text
Size: 512B - Virtual size: 382B

.rdata
Size: 512B - Virtual size: 364B

.data
Size: 512B - Virtual size: 68B

.rsrc
Size: 512B - Virtual size: 304B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 420B

.data
Size: 512B - Virtual size: 408B

.rsrc
Size: 512B - Virtual size: 272B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 420B

.data
Size: 512B - Virtual size: 392B

.rsrc
Size: 16KB - Virtual size: 15KB

.text
Size: 512B - Virtual size: 12B

.rdata
Size: 512B - Virtual size: 86B

.text
Size: 512B - Virtual size: 100B

.rdata
Size: 512B - Virtual size: 173B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 512B - Virtual size: 48B

.text
Size: 512B - Virtual size: 100B

.rdata
Size: 512B - Virtual size: 173B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 512B - Virtual size: 48B

.text
Size: 512B - Virtual size: 1B

.data
Size: - Virtual size: 9KB

.text
Size: 512B - Virtual size: 1B

.data
Size: 10KB - Virtual size: 9KB

.text
Size: 512B - Virtual size: 338B

.rdata
Size: 512B - Virtual size: 412B

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 264B