Manalyze report for bf0e2d02b2f215557ecdaf65d1a3638b

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2025-Mar-17 17:09:22
TLS Callbacks	2 callback(s) detected.
Debug artifacts	Embedded COFF debugging symbols

Plugin Output

Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains another PE executable: This program cannot be run in DOS mode.` `Contains domain names: https://tinyurl.com tinyurl.com`
Suspicious	The PE is possibly packed.	`Unusual section name found: /4` `Unusual section name found: .xdata` `Unusual section name found: /14` `Unusual section name found: /29` `Unusual section name found: /41` `Unusual section name found: /55` `Unusual section name found: /67` `Unusual section name found: /80` `Unusual section name found: /91` `Unusual section name found: /107` `Unusual section name found: /123`
Suspicious	The PE contains functions most legitimate programs don't use.	`[!] The program may be hiding some of its imports: GetProcAddress LoadLibraryA` `Memory manipulation functions often used by packers: VirtualAlloc VirtualProtect`
Suspicious	The file contains overlay data.	`40196 bytes of data starting at offset 0xeb200.`
Malicious	VirusTotal score: 23/71 (Scanned on 2025-04-12 12:44:49)	`ALYac: Generic.Shellcode.Loader.Marte.X.03DEFAD3` `APEX: Malicious` `AVG: Win32:Agent-BEHY [Drp]` `AhnLab-V3: Trojan/Win.CobaltStrike.R697181` `Antiy-AVL: Trojan/Win64.Rozena` `Arcabit: Generic.Shellcode.Loader.Marte.X.03DEFAD3` `Avast: Win32:Agent-BEHY [Drp]` `BitDefender: Generic.Shellcode.Loader.Marte.X.03DEFAD3` `CTX: exe.unknown.loader` `CrowdStrike: win/malicious_confidence_60% (D)` `ESET-NOD32: a variant of Win64/GenKryptik.HHTE` `Elastic: malicious (high confidence)` `Emsisoft: Generic.Shellcode.Loader.Marte.X.03DEFAD3 (B)` `GData: Generic.Shellcode.Loader.Marte.X.03DEFAD3` `Google: Detected` `Ikarus: Trojan.Agent` `McAfeeD: ti!DEF57CC78D31` `MicroWorld-eScan: Generic.Shellcode.Loader.Marte.X.03DEFAD3` `Sangfor: Trojan.Win32.Save.a` `SentinelOne: Static AI - Suspicious PE` `Symantec: ML.Attribute.HighConfidence` `TrendMicro-HouseCall: Trojan.Win32.VSX.PE04C9V` `VIPRE: Generic.Shellcode.Loader.Marte.X.03DEFAD3`

Hashes

MD5	`bf0e2d02b2f215557ecdaf65d1a3638b`
SHA1	`a36cc94622b573146b102578be1c0c2431d456f9`
SHA256	`def57cc78d3199855d7889c0e0f11546b341be6e40170968660f22884ea1bb15`
SHA3	`1aeafc5913c61359cab0f21397c863658d82cf4d3bca8d1326374ec753c587ee`
SSDeep	`12288:ReqfltXPOyBJPd5OyRZsZblT9xvyWJPSAYnXr6:0i/OyBRCyRZsZblT9xqSYnb6`
Imports Hash	`36f5266e62d6414718cddbee8d5c6fac`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`19`
TimeDateStamp	2025-Mar-17 17:09:22
PointerToSymbolTable	`0xeb200`
NumberOfSymbols	`1832`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE` `IMAGE_FILE_LINE_NUMS_STRIPPED`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`2.0`
SizeOfCode	`0x1c00`
SizeOfInitializedData	`0xd3c00`
SizeOfUninitializedData	`0x200`
AddressOfEntryPoint	`0x00000000000013F0 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`5.2`
Win32VersionValue	`0`
SizeOfImage	`0xf8000`
SizeOfHeaders	`0x600`
Checksum	`0x102ad6`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT`
SizeofStackReserve	`0x200000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`2cb4df67768c35811fad8b6d758774cf`
SHA1	`ae52dd2654953279178a09f8b38846bbe470dbb2`
SHA256	`398ec3efb507795cc4a8643746615bed9f368a8d03d649852c310118c8b067a7`
SHA3	`422f4ed33fdce5d1037c03c6cf9aa8e1d851ee69b83dd84a83239ea26779d982`
VirtualSize	`0x1c00`
VirtualAddress	`0x1000`
SizeOfRawData	`0x1c00`
PointerToRawData	`0x600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.10123`

.data

MD5	`e57a56ef42d3eac87cc09c927452ed41`
SHA1	`e66d0967ca81223ddc417b0c93e970a29dfd265b`
SHA256	`31fcecdf53674b9ed227bb8e4e7cc39378410706c545b656b6ed02bacd2fd74e`
SHA3	`502e2635b5f91e36fab28f3605c49870a23aafa32f96c2cf7619c06481c2ae19`
VirtualSize	`0xd1730`
VirtualAddress	`0x3000`
SizeOfRawData	`0xd1800`
PointerToRawData	`0x2200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`5.81341`

.rdata

MD5	`837b89a705eea32de8631531c4ce651d`
SHA1	`53270622f0ceecd8da33c6260e8e9d9f7ac9a5b8`
SHA256	`882d476f8ec0066341d0f45fbd052e293326bb6c50366972b0d1ae40801c0e43`
SHA3	`81c1b88b8dfb030e22a75be62eeb366134cde16db759f1ecd95461d1c3a69641`
VirtualSize	`0xac8`
VirtualAddress	`0xd5000`
SizeOfRawData	`0xc00`
PointerToRawData	`0xd3a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.06548`

/4

MD5	`bf619eac0cdf3f68d496ea9344137e8b`
SHA1	`5c3eb80066420002bc3dcc7ca4ab6efad7ed4ae5`
SHA256	`076a27c79e5ace2a3d47f9dd2e83e4ff6ea8872b3c2218f66c92b89b55f36560`
SHA3	`622de1e1568ddef36c4b89b706b05201c13481c3575d0fc804ff8224787fcb59`
VirtualSize	`0x4`
VirtualAddress	`0xd6000`
SizeOfRawData	`0x200`
PointerToRawData	`0xd4600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0`

.pdata

MD5	`ad2424aeded84ce2645412b3c0205237`
SHA1	`067910dc11df0b6d729e474960cd0debfbb80ded`
SHA256	`23bc74d9d9deeefd0bf6ba70e06fe97e845c91f3e0e445fadd33bce45762dc9c`
SHA3	`4603bc36c48429766078634323a4e1c95940aa1bc2f638634cf72b9c40805b6f`
VirtualSize	`0x27c`
VirtualAddress	`0xd7000`
SizeOfRawData	`0x400`
PointerToRawData	`0xd4800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`2.96411`

.xdata

MD5	`e0acfefaf60aba488d1a9862a5cbd121`
SHA1	`69f328e89807719d65e277e46a7d75dca2ac8519`
SHA256	`c200ba19ac62449c832db116e358fe7318b75ef0c05edea568148087ff286d29`
SHA3	`e355d765bdba566ac0d00fd0795bc21da1a4c40b5d310dd87f95d6a2c66ab174`
VirtualSize	`0x1fc`
VirtualAddress	`0xd8000`
SizeOfRawData	`0x200`
PointerToRawData	`0xd4c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.84363`

.bss

MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
SHA3	`a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a`
VirtualSize	`0x1e0`
VirtualAddress	`0xd9000`
SizeOfRawData	`0`
PointerToRawData	`0`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_UNINITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`

.idata

MD5	`0c5084630821c24be5be67f79c90a40d`
SHA1	`6da77b512bcb2b76a8afc90db32ce9d8499aea36`
SHA256	`9b8a966a725b963d656a08d520fc2cbb3e75785570e0941d9309527a250f7e40`
SHA3	`4f1bb1e0dce63305e649c5e185cb8e66010a59c7892728fbc11f6e6161413423`
VirtualSize	`0xa40`
VirtualAddress	`0xda000`
SizeOfRawData	`0xc00`
PointerToRawData	`0xd4e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.89608`

.tls

MD5	`bf619eac0cdf3f68d496ea9344137e8b`
SHA1	`5c3eb80066420002bc3dcc7ca4ab6efad7ed4ae5`
SHA256	`076a27c79e5ace2a3d47f9dd2e83e4ff6ea8872b3c2218f66c92b89b55f36560`
SHA3	`622de1e1568ddef36c4b89b706b05201c13481c3575d0fc804ff8224787fcb59`
VirtualSize	`0x10`
VirtualAddress	`0xdb000`
SizeOfRawData	`0x200`
PointerToRawData	`0xd5a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0`

.reloc

MD5	`cac14052770e17d04fcfd50c6ecb3887`
SHA1	`c7d9eb771fadbf2e2185082f3c71f6ff694d448d`
SHA256	`6a0ce0de9ae4e49405a11691f1c560415c826fab64125c6279288824ac2e988c`
SHA3	`3ab94779309581b5910209305f76f7fa95654e18f3aa52408f354a1bfc9db268`
VirtualSize	`0x84`
VirtualAddress	`0xdc000`
SizeOfRawData	`0x200`
PointerToRawData	`0xd5c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`1.75369`

/14

MD5	`65870257bab5bf55f05e62ad3019cb34`
SHA1	`80c38010d0ca32940ce2668e8bcd514de5400df8`
SHA256	`71372d5aca1ddaec26f89ba3a986833181c362ec97ebf1e4656a14979dba3f72`
SHA3	`550131b14752dfe471fdb6b096b6a9b15dab0b84f9390c0ad46abc3b846c2168`
VirtualSize	`0x480`
VirtualAddress	`0xdd000`
SizeOfRawData	`0x600`
PointerToRawData	`0xd5e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`1.32197`

/29

MD5	`bcb197d0ac8954e6378e0977f2957f4b`
SHA1	`39749b131b77cd138fa54e6ef5c93043deb6dd6b`
SHA256	`4b85e0eb3c50519bec1e1fba2f04a63e33f2a912312d2b4b7c3bb861d053cf9d`
SHA3	`9c54c1adc223d4055e5515e7294b445b83e7aaeffcf52193d07e615f277803ea`
VirtualSize	`0xc261`
VirtualAddress	`0xde000`
SizeOfRawData	`0xc400`
PointerToRawData	`0xd6400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`5.90535`

/41

MD5	`0c17a7f865f3c4a9f2014cec45dc3271`
SHA1	`5b6ef6682c8f5c5be0f088910d335f49079c9abb`
SHA256	`5d1cf2c24d02267c3f02fb4e5ac16e1904bc069177e5f2ccd9636a3aff39cc9f`
SHA3	`cf8392b95288d9632eb4ca9b79de51d6f130f2a88888020bc84cc86c47edf2f8`
VirtualSize	`0x2170`
VirtualAddress	`0xeb000`
SizeOfRawData	`0x2200`
PointerToRawData	`0xe2800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`4.79451`

/55

MD5	`bbcf2a1f293d9af9e79abd16539608f2`
SHA1	`3f1f0b57ec4f97da2d4252a8c3473cae92e95bde`
SHA256	`a475f0fcae9a3471cac1693922d60d81ee3f1821ce51fbfbb5505f966d21ae71`
SHA3	`5cf15e67567cc7b6a315782ea93b9bad2bc061fdb83bba3124c04d70e7c7179b`
VirtualSize	`0x1ed0`
VirtualAddress	`0xee000`
SizeOfRawData	`0x2000`
PointerToRawData	`0xe4a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`4.88044`

/67

MD5	`a2f71889b91992dcd73a949e0d4c547d`
SHA1	`0e45e3563c0028948537c8dfcf47167681848340`
SHA256	`35d51c9295a7254c9db5745b04e233e1aac1a35b0b2b447da84958efb135a834`
SHA3	`9e5890ee83c28c6459aedfe67086289b389a1591969a197ce227f6b8df9587fd`
VirtualSize	`0x998`
VirtualAddress	`0xf0000`
SizeOfRawData	`0xa00`
PointerToRawData	`0xe6a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`4.04145`

/80

MD5	`2904e82b4d077601d8fd942cf7fe1956`
SHA1	`b3e6a846002f8d38fea445282be1a568a9469280`
SHA256	`48cc824fb6150e3ab4c4d8f2935395823c9b565078fc8b9b0817d22716d2a6ee`
SHA3	`9f310c58cf9f6a29c4f34cebb7bc003d1599ad785c5a0305c3aaf597ee5d25f1`
VirtualSize	`0x36b`
VirtualAddress	`0xf1000`
SizeOfRawData	`0x400`
PointerToRawData	`0xe7400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`4.76152`

/91

MD5	`4b61c5a4295e21f7939f6e688ed7ee15`
SHA1	`be7bc338e6209ff3edad472f0d9367eec771f56d`
SHA256	`71b74a35a7d1e551d720314e1810abb63df563857dc7d9bcc1210f093a3a4d34`
SHA3	`f0d9dc4bcb8be6e8f0a08d798fbd105cbd56020c4be13af8cfb44cb0067df85a`
VirtualSize	`0x229e`
VirtualAddress	`0xf2000`
SizeOfRawData	`0x2400`
PointerToRawData	`0xe7800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`4.6556`

/107

MD5	`c8e8a95bdc779e620d3e8c6da9430658`
SHA1	`161eebaa95ec2cb58ab540cf3cf53ea84cc4530d`
SHA256	`644325e3b0f5d606c1bf17297506119bf2999415914b3bd992380bb2cb2c8df6`
SHA3	`95ee65c0f762d53b72d4eae3183c3cefa3eb617824c673e7198e4d19a4247d02`
VirtualSize	`0x13fc`
VirtualAddress	`0xf5000`
SizeOfRawData	`0x1400`
PointerToRawData	`0xe9c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`5.07972`

/123

MD5	`a009753c265146998d9df0f793fa87c8`
SHA1	`cc45516304295cc1ae906c9a141f5624b7621c9b`
SHA256	`1a66ed737df91332887ac3aaf33ba51debed30badd5f42cb952d461c8a8bcf46`
SHA3	`ed54e0ca13a9de6a112df3e5ad4398d45e0cae214da023ebd6cf059026a843d3`
VirtualSize	`0x195`
VirtualAddress	`0xf7000`
SizeOfRawData	`0x200`
PointerToRawData	`0xeb000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`4.12272`

Imports

KERNEL32.dll	`DeleteCriticalSection` `EnterCriticalSection` `FreeLibrary` `GetLastError` `GetModuleHandleA` `GetProcAddress` `InitializeCriticalSection` `LeaveCriticalSection` `LoadLibraryA` `SetUnhandledExceptionFilter` `Sleep` `TlsGetValue` `VirtualAlloc` `VirtualProtect` `VirtualQuery`
api-ms-win-crt-environment-l1-1-0.dll	`__p__environ` `__p__wenviron`
api-ms-win-crt-heap-l1-1-0.dll	`_set_new_mode` `calloc` `free` `malloc`
api-ms-win-crt-math-l1-1-0.dll	`__setusermatherr`
api-ms-win-crt-private-l1-1-0.dll	`__C_specific_handler` `memcpy`
api-ms-win-crt-runtime-l1-1-0.dll	`_set_app_type` `__p___argc` `__p___argv` `__p___wargv` `_cexit` `_configure_narrow_argv` `_configure_wide_argv` `_crt_at_quick_exit` `_crt_atexit` `_exit` `_initialize_narrow_environment` `_initialize_wide_environment` `_initterm` `_set_invalid_parameter_handler` `abort` `exit` `signal`
api-ms-win-crt-stdio-l1-1-0.dll	`__acrt_iob_func` `__p__commode` `__p__fmode` `__stdio_common_vfprintf` `__stdio_common_vfwprintf` `fwrite` `puts`
api-ms-win-crt-string-l1-1-0.dll	`strlen` `strncmp`
api-ms-win-crt-time-l1-1-0.dll	`__daylight` `__timezone` `__tzname` `_tzset`

Delayed Imports

Version Info

TLS Callbacks

StartAddressOfRawData	`0x1400db000`
EndAddressOfRawData	`0x1400db008`
AddressOfIndex	`0x1400d90dc`
AddressOfCallbacks	`0x1400d5aa0`
SizeOfZeroFill	`0`
Characteristics	`IMAGE_SCN_TYPE_REG`
Callbacks	`0x00000001400017A0` `0x0000000140001770`

Load Configuration

RICH Header

Errors

[*] Warning: Tried to read outside the COFF string table to get the name of section /4!
[*] Warning: Tried to read outside the COFF string table to get the name of section /14!
[*] Warning: Tried to read outside the COFF string table to get the name of section /29!
[*] Warning: Tried to read outside the COFF string table to get the name of section /41!
[*] Warning: Tried to read outside the COFF string table to get the name of section /55!
[*] Warning: Tried to read outside the COFF string table to get the name of section /67!
[*] Warning: Tried to read outside the COFF string table to get the name of section /80!
[*] Warning: Tried to read outside the COFF string table to get the name of section /91!
[*] Warning: Tried to read outside the COFF string table to get the name of section /107!
[*] Warning: Tried to read outside the COFF string table to get the name of section /123!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF symbol's section number is bigger than the number of sections!
[*] Warning: COFF String Table's reported size is bigger than the remaining bytes!
[*] Warning: Section .bss has a size of 0!