Static | ZeroBOX

Name	Virtual Address	Virtual Size	Size of Raw Data	Entropy
.text	0x00002000	0x000838b4	0x00083a00	7.94255928023
.rsrc	0x00086000	0x000297ca	0x00029800	3.6054656338
.reloc	0x000b0000	0x0000000c	0x00000200	0.101910425663

Name	Offset	Size	Language	Sub-language	File type
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_ICON	0x000aee10	0x00000468	LANG_KONKANI	SUBLANG_NEUTRAL	GLS_BINARY_LSB_FIRST
RT_GROUP_ICON	0x000af278	0x00000102	LANG_KONKANI	SUBLANG_NEUTRAL	data
RT_VERSION	0x000af37c	0x00000264	LANG_KONKANI	SUBLANG_NEUTRAL	data
RT_MANIFEST	0x000af5e0	0x000001ea	LANG_KONKANI	SUBLANG_NEUTRAL	XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators

!This program cannot be run in DOS mode.

`.rsrc

@.reloc

@VHHA#

[XXnZ>

[YZ`oz

#Kf"&'V

lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet

PADPADP

2S4F)Y9P

kL<X1p

8J%U1X

q0T=\8J%U1X

2Q#L<X1

V"K*N<C3W.o

V2[:^,C3

K-D%A3\,H!`

I-D%A3\,

8Y=O\Y<U

}<X1P4F)Y=T

w6R9X<

W3Z;m

x9]4U1C,\8Q

l,H!@E

N<5E!H

\=Y+D4wY

P4]<1C

T$c;:^

U4P"M=Y0q

Y8H:f8

U%y)(L

A%L-I;>N

^>?[2S7E

I M)@!E7

M)@!E7X(L%~

0Q5G(X<U

v^:R3W%I9]4,0

g"F/N*X{

&T-]1X

k"F/N*X7G#Jr

F'%W(X<U

(I-_0@#J

B&O.J8^

;Z6D+[?V"

d%A(I?

t'C"C'U:JJ

2M,@2]-I

y0T=\8J

vV2[:^,

A1M$e

H,=\8J%U-

X*=M)@

z1U8Y=O P,

H,E$@2

Y8T&I9]4B

;F6J#b

>Z3R6D

:J.G6h

%#G.OK

9],M)[4D3

x1U<]9K]

V+[7^{

^,C3W>

5L<P9x

&&B+J>

K!S4D I

4M=Q8y

p)M$E!S

[:^,C3kN

$2@'W3Z

..J#B~

q(L%D R

#<]1C,\8Q

!R6W6R O?-

R6_>Z(

G&B0_/K"c

@ 98\62>:

Q&'C+%

<]:#00

G/54P:6

'=<X2.

7G$()<

qU,-I!

`:jW2S

0mv^:S2V$K;_6w

v^:S2V$K;_6w

&B!?B/@

d<\8JE4P9

G)H,_->Z3r

p1U<]9K$T0Y

p1UA D6Y)M$=0

S7_?\/A2W?~

I(L>Q!i

u4P9X<N!Q5\

&T4D I

3R/]2B

S!G7S:

v^:R3W%f

[:^,C3

e$@)H,^1A

A%L-I;T$

i(L%D R=M)@

V.%J:^N

+W4^{)

W4^?[@O

Edk#L]

M,H:U%A(i

_)F6R;z

A D6Y)

=<X A%W8H,E

V7S!N>

I C'N/K9V&C+j

~?[2S7E+\8Q

N*BoUe`

O+B#G5

]/@0R;Z>S

Z(F6F/m

T5I;T$@)`

D I(L>Q!E,

a%W8H#J

B&O.J8W'

r3W>_;I&V

k*N'F"P?O

o&G#Q)Y=T

`!E,M)[4D

/N%V9I-D

4]<<N!Q

Y=T5Q#

Q5\=Y+D4

<N!Q1X1a

v**N'F"P?O+Bb

!I(L%D

[:^,C3W>

-;R[o

B#G5V&

3R6D+[

R O?[23W>_

v^:S2V$#S7^

~D6$T

L>Q!E,A%L-

k*N'6R L<T=w

N*C"F4[+O&>

58Xh$M

)Y=T=Y0Q

oF/8\

R6_>X*E5%L

K;S:{s

8J%U1X

R65T0B

~E7#S

F"K*N<

W35T0B+[?V

K*N<S#-D

_>Z(G7

o.J#B&T

oD-9]

N'%A(I-_

~D6'W

oF/8\

D-+O&G#Q

M?P D-#G

M)@!E7

~C1(X

Q5\=Y+

T=;_6W3A

~E7&V

D4P9*N

C"F4$T

x9]4U)[4D

_>Z('W

R6_>Y+

?[2S7E$T0Y

Y8\.)Y=T

Z;_-B28Q

@!E7X(

M,H:-]9P

Q#L<X1.J#B

W6R E5Q83W

#Q?P5]

}?U=]9K$T0Y

G#J+O=L<U

p1U<]9K$T0Y

v8]4U1C,\4]

r4Q9Y=O P

*+O&G#Q>N*C

c}A5[,

TxP$L=Y

%V3[2[

(pdt6S

,I<T<H

\-J$ev

6Z+PQlu

&DLjs3Xw

,I!A=R

u5R<u5

w7TUy

X=U5I;T$

QxBN0y

j~[A4\

,_1B"K

._<V/j}

R2]=Z=K

.J%E"P

[@3]EM

#~!F5r[

h|)P#MR/

}g+[5F#

=m"N?p

k+P:sC

DM+Z6G

GZ=Z)^

E_2C(B

V3[;w2

O,F'[x

H>G7S:

.E%A(iS

x,E$@2

:6R O?

/R4F)Y

C3A.^:

<R"FG2

x^)Y=T

H1/K:,

7J/G';I&Vk}

-'G#B&T

J'X<U4

U1X:)+T

FrK1Y9\

s 8\5tV

o#2-I

*/J#B_

d)#J+OT

$u6S;Y=O

F(K"C`

@"GLA1U<

8Z?dQ!E,

N+Z6>Z3r

h=[*F5Q8yV:3g

cJ-J9G

9V&B,84m

-_<V\8Q0

G_/K"z7^?[@M=Y0

{ iL<X1

4_|8Y=O

\O<]9K]

lD^$KIq

B>> E-

<V8]'H8\{

@1B'N$5t

c#H";_-Bk

MC P4]b

],E$@x

A&P2N<S#

N1V%JO aZ

E#R>N?K"

%L)A!E

t!#G5Zc

?Q P4]

45S;[T

X5Q5G(

<K9V&B

K;_6w[N/K9n1

8["F/nPi

]Q94P"

A)I.]k

E-M*p[

L)\4@$K

==Z4vK

V-]9PW

9u/3X2

d&@)H,

a ;$N0

2c$A)F"P?

n?#R>

g*>W6Rf

,Icbfb

U,3$F#

w7T5T0B

ku1Z<Y,

">_;I&

'N+C#?M"R

.ZV&8]5

9?s1C(B

5:U%A(

6V#L<Xj

|0=1V%

;o#?S8Rp

4P1U'H

V6F"K

bT3C'N

I$^:S2

P8A.^:

i)e<4Q$

( J,I;

^nM%WP

4P9x4q

n N>Z3

#Z,9W(

k;5U6W3A

"z&GH?

9ZK:<V8

3X+E5B

6w,&P2

fm57<~

A&I9]4

j+!A&U

8G#J#v

O+B#Gn

+IE<5F#K

n0R;Z>

$]7'I:

n(1Y9

(-J9W?Y

G$E$@2

^7n<9W(

@$Mt,^1A=

01Q6E*

<-M*Y4

B^2\>[)[ \

3V<-G$N

o.b-6S"

6G$N'Z

.J#B>m

kB?C#H

9$F#R>

V3q*M?P

3C?{(M%

vFLC"G/

G(Y>X.C

!E8X)M%

wV2[:

uUT+A)I

?W7T%J:^

},H#R>

!F0R65

o E-mT

i@A#C(

ID]<X*~

{!:E"L

1m<O@%

c$?X2t

?s?{ J

2N/K9V

u)V8I.

&5\=Y+

kZ<U4P

|0f(N(

e<W?`

YP([6G

v*M.L?

] {P-I

P?O+BKO$E!k

f O?[2

ti 2B/`

<mD$O/

u)@0B'

t(-F8]

_N-N)I

|i@+F)N

QMy<Z4

P:m"H"

fc:C1R7

bZ@%];SK

K<Y1p)5l

N+B8Q;D?]5

f'X&_y

/L&HtD

)^SA*l}

6>M#TH

)0R7FAF

F#K+g|

3op+]:

,@3].J8n"

O"D!T;`

X@4\-I5i%

s'8b'f

Si(Ucw

o_NF1E+

*r>g(M]

Ph)Vf|

FN>R#GC

#bF2B.

wN;Re\+

dqV(M%d

J_@%X7\-\

^IXL'gx

/_1B>D

np7F3\

Yl YK1Dd

fo P)uc#

E8W<M<O?X:

Z@*L(o

C{!FK1YQ

!x{'H-

&V:K/[

^DIS9Q

4R<^RG

]>[*EJ#b+j

fc:O?`

N>R#GC

THa(Z?

jb(u!G/

{2t#N?

GO7{<Yi

L@g$B1

`\8L$U1m!]$e

u_<UI"h

c]E:V'C?s/

0R>M$]aO

zc0C(B

I,K#C?

QMBF$Wq

vm0T1D+p

{f?R]>[

IZ-J$e

PLo2X+}

|xT)G8\J

1S8K$i

h~N*a5

K:NMA/

XI@K$F

0lIK=Z

G;h1W&

:^;J%j

E"K?P:

v,`KS9L

eu_<m

o&b:W(

m&jJXa

i3ZT2\

n{'[W

S:T6R5OW

H?TZ5u

+s#v9^p

^=U5Q8LT

,P5H'l

u_<UI"h/

-(O'Gk5

?sh8^-{

<Q?P4r(d

iq~?[2

1T3[;_B"jl6y

R#M>rR

U-G'D6n

vkBAY:_

R8}@&PN

\mD{F)N-

:.r3%v

RK%L-I

;Y=O e

">Z3R6

l>:f?D

QPLo:L)}

|Q%K_6o

sx9]4y

^C?~Z@3

$I&V2[

F&B0_D

mZ@*\y

b1YYn1V|

W&O.J8

g[(G7SO

/6F"K}

_dHOKe&C

yjF)N

~Z5u5W

gV1U'H

G[(I-_

A=l~^.B

iL*Ysx

,^;v2^

N.J8W<T

lI;`~o~

!fkZ5u

:.O+Y6

`8tn{!I

C0_/K7r

~{-%%'

NW-D%A

c:oX;`

E^:S2

N.J8W<T

A]*K/]

X"F/n}

]/K9V&

M<X1p)<

98Q0T&

V$K;_

uKl5t_=U

OR)M?P

&{0T=\

ZZ@myw

Kn.J#B;E

.I;T$U8

1U<}=7&(

6V2@h0

F$W\'c

iDs3vx

qJ0T=|

yTz2vk

]1_S23S

(\8Q0T

.7X(L%

%@2]-^3

`1ut(=

IT/F'CF%

GDLfy:_

k;H)M?

[U0@$M

@U*N<S

~2b^*\

N*C"[%

q#G.O+

<0Q5G(

iL,H:U:Z

!&'CKJ

y7g[%U

2S7EN!

Y+O=R"

E4P9x1T

/8W'C*

<W%J:s

HU0Y8\C(

>:^,C3

M2]-I

=W3Z;_

F"C'U:

#;IGW

+B0_/K

O0_/K"

<N+f"&+

n=rZ1I

-#M>[*k

o!E5Q8

X5J.\3

4V3BEh

.S,^1A

<V8]GJ

YA$K;_|M

qS/^2C'

D15Q#L

@%M-aL

%D&C2^

sZ/O,_0

/[@*l g

\9Y=T5

X\0Z<Y+

<Y1q-h

r4Q9p

(L?Q"F

/S<^;I

T4I'X<

%@%X8`

X9[@3\

[F%X88l

^7w^7W4G)

%.P:|Q

9G;=.L&

}=Z4V3B._g3q

H,E$@2]-I a

^_5T6i

A$Vg:]4

r8P1L<S

#k)M4v

}BR5\;

5j:]4{?U4@Q=M

2};^,SB%L

fNY5E!H

t1U<]8J$T0Yp

L(ZE5Q

z7S:[>L

4]<T&I9\5t

N*C"F4

%A3X(L%c

]/@0S:r

'B&T;K/F

o.J#B&T

aU#L<X1p

U+M? O+BS3Z;_-B2

0M)[4D I

U1W6N<P ;R

O=R"F/J.C"F4

A%W8H

^,+[>W

D-Z>V7

3A.^:S

E$@2]-I `

_-Z(L%2

]/?O'N

y8\5T0B-]9P

-]yPQ5\=Z(G8\5t

^:T6R P!F/n

G#J+O=R"F/n

j,I A&U:J/G

y8\5T0B-]9P

R6_?[)F7T=}

P4^@%W8H,E

l-I A%W8H,E

E7X(L%d

w6R;[@3].K#c

#G5Z*N(j

e$A)I.]3D!H

d&C+K0B-]9P

~@$M,H:U%A)i

N*C"F5[,I!a

T1Y9^-C4Q8y

N<S#G.o

u4P9j R=M)@

d%A(I-_0@$M

d%A(I-_0@%M

f(M%E"Q?P5][@*O+

UD%@3d

N*B$H:T%I `

H:U%@)g

M)@!E7X(L%d

N+C"G6Z+P:|

1!4K@C

}r2??zh#

OMA&Vr

x{Uv]H

zl8JGw

},iR|\~s

av\o% <

2JW[qrRg

ryxl<?

{!QW[#Ew

\LQ)\o

2;_xZ8

/zz]?1

le8d}3xd

k;pQeq

\m/Y'M>

>AL1)J

c@3-=wO

["~V\]&7

(v0uj!

#)>06&P

QE1$ys

-Q~WU&

EGlo[_

o/aN>s

:N(2CT

y&,(z}

YDkYbo$>

/_zm:l

dpq?}c

E5wQLWS

8E|[(A

!xa=OY

*6@@:=

N&B'+/

ZHvYPd=U)

NYr-+

x;H^^<?k

{N4g;77

t3dh"e7

Z(6i|K8sC

[C+2]Y

!@)\zm

i-uGm^eS

>b(zD+

+XG[(L/

eo]mH]^

8]2>KK

="(bE"

<a`aSh

m$+cxH

G4MtfOw

IFaUf&

; :h]c

5=%w,k=H`

.z/;}#

K1Z^J

6fVVIr

\IBLiJ

$a=R !

HAD{(W

lKJ3Xu

{xduz;

\NStO#

=lxrSF

f-3/FO"

_!+9tA

fNGMCe

4,7S4o

8]r0nU+c,

99GA'8

zOH_$j7

&z2b;j

R?9Qj

U>l!sQ

\i]Q(56

y"Oih;P

c|;~~/

}{{)h\

{jKsv

m<#uD9

EMt{SY

6eVVfW

YGk!c6-

6^YVB`l

tUvUWu

$M#J2XC

S=(hu>u

z94p2

n@ghXH

':6)mS

iBFwQD]

SK7VOm

b6*a3_

<u31S

o[};Hm

:'PsIB0&

M1Z%6@

QAyRcym

xzm#$X

5<s8As

57FW>0

mD7Lp8

]>P*FhbW

BtIK-'I

9zms*4P

\b104,

]Kwv_

p=+q+U

xr`{!LT

1;&<np

;RyT4j

uk^v;a

&fISHO

XbB_9Z

VN+@+P

~,!0i]

vT!&ZAyt>G

W-QhpZn

f@e)-T

c+fbXy

PM>nA9

Tnp5Rkb._

.:kww"

US:E2b

_y>Dx#LT

dJv7S]&;

nIfm'=

/ 'gX01

KKHqJ,

5cLz /

1opn81

.z94EQRiw

Wx6t'4tV

S+,\e7C

F[U/gM

b5aqfv

0oL}H;-

g^c[H8w\1

pxY;$X

zA0]:

Dx/Srr

`_W&8'}U!1

E:s^)}E0

Dpd)Z+a S\ w

Xy,:CnT

dJS\C7P

O6c'(

i>T`{-

hzvP^0u(

zu#>AN

!?Od)h

2:zT]$WF

{8;&eY

!>DU+

YT^luB

W}e>kd

"Ul~NV

vQ6{%~X

MZF|qJx

xwMgdl

2]GCtR

vm6,nV

"YiG?y

6U2x+

`U1gOq

Ae3(/A

}Te4;"IR

]]"Qe4=V

{eXt(N

^= C2q

vreH:F

bfl7]&ocR

+NT)N]

Jh[,Qi

Z$SUMw.

4xR|Aj

`x$p8p-

f<^PP*

f85?>@A

978O\4[

|4O_qH

{jz4#V

7jk1$G

8Ud81Ya

]"{}_\

Bs>vy1

Eag\3

<(D4hl

fcNXP3

lh)4Z5

e^+h)h

.Hdp_pA

OFK!$'9

U_~oR%xxO

)A1{V]#v

tFX@6=

B,s4uP

Wp?ls6

?<zp)jY

qy%?=4

0/+6=!0x

$oLq7l

<d5p_|

5 !IWS

1-_2a!Aj;

iuD*)T

4T4}Ry

TP';QP

jm67ABE

q\IoOS

v<!.o|Z

HIq[~E

$C^dl

)3TO.`

\r~)7a

Ubhrd]

~v8?;EYEi

6UHf2"

,RZ'3Yn

$5Z>x@

p1o\CD

kxU:=@

0Zf2:x&~

clQ'S|

Jz}^<V

`4!fS!

Fp#@`P

\ph0!/

CH<CU#

cmAg~f

w<lb].

=Ct'W>

)f.=c7

MO;pf\J

2wW7op

6CeQR&:6

DqTv&-b

!x^v<.

];ay2o0

(+*`fD

i7lNH{

dgvwMC

4OwrU

5ETX,Fc

T{H\'FRwA

|Na@D"

ooav@g

/r]X$?

/QD&4pT

T$}+uUnO'

~]YK0v

.~8-g?

\/0#5+^v

>n|w,'28y

,RXXbbP*

UJkCfdh

&F7G4b

ws4_z."}

n%xOo0

956](#

x|c^M#

"MZR=N

&2fiD,-Y

=(FY^XG

OY,t]^

*vPVdG

0P1)dq

3=meKP;o4

o'qqR*

VMvXjm

+2*ce[

F#hxnb

~>zqI{

SKb9P]

J@so1@*nT

#!l/?T_W

M)#jio

[MK" $

g23Mz

SVOpG"

W}<2!+QS

%s}}>v

,R}\P|

tilxa,

[=]_Vh

:u\C.J

N'=v;V

+4I1+V

Us89Na

,d0U6T

$ou+S+

aS6'@[

bnza4;

Km+0c{B

o+`E~H'{zH

LCBh[n

9PKiC,|

n5lyj\

y?^4=Z

~0!7Spg}

L1#foT

R.p5y]b

Nt?wdv

$=Qsb&

oLn4QQ

-*%mO3

cN>l:,>

f=?024

BL Q=%

D4_@A\

I{L)Z3A

] #n)sQ-t

OsI'!8yy

B&C]3b

#]# <$

EGO^*6

I?#o9G.

d_w'w4

J*c7][1+

_9zWSs

~(^8}/

6'wK,

8$(EX}

LjFbx

&BF7H-

(d8s&F*

8"<?EH

[\[2^p

[(5P6D/z

enT`vs,

:yEb;

eaL>B<

h^CVuY

$>}$Vl

U^93-w

m~}N#T

C2M#0@C.

hYIX('

<d%go8

ZshwEdq

+wW> C

fn=S\[o

-duMVO

+?bW'6

<^|9f

,wZ(GE

&0:pr)

B>}@JO@.A

Zq|Eo;

jgGRR/

mFTZx{v

@tI,b

H(cc4

tF4=@-

4%>gM1E

T!@S\&

.fy4`9M

*qvt:B

hbrei6

v%fsoA

/.+-+7

\{j_ux!l

z9X}pb

hlyD>5

GlHd\T

#i0\?g

))gB{R

T#@"+F|

sOzHD%

XEyGJ7

$"G?`+

Jt%;^`

7&J7E18{

`<_\6

`cK6l7

c 81>:

}YTcnz

9mUVwX

BEn(u.K

>!sSp4

m~VLdUr

i:71k{bG

"]uHeG

!/.[im

qY8^{\D

o3M_%SM]

=><%zL

gZ/q(Pu?

Sk\B~;"

(>A}m)

4Fan6D

~Nty>M

^-7b^$

:hH&7`

t4\hP`"

pu,_=5

_KWk!9j

Bj(~5!

uGMwQ?CN

{:|;tm

oRx~*s

\0o2q(

qSk0gP_

DB0':^

KSq|sG

)$tUw6

.^]=_(

YBq?k'QX

1{6cVeI

v+"].p

Z-3&.

WDLM5x9

66h^=H

]N+Xpf,

&}'Rt'

m0'7`w

aU]'W$

*"EG%"

]yCYY\

D!(h1KJF.

SyI_4@

]B_Dma.

btci5cUv

0C0!0Bd

3)8b+d

?x'"0>

|kak ?

s.Kb:q\F

)nx+QIb@:$kZ3

\3%I-J,

%q'wF

]O{,/;g

+-.p{;

~$f'J2'

:U^ f_\

~odbJ|

~Uvs8P

o-+8qI

!jq5jo

]d#:1t

jeBS#pt

^)<'kf

"amRYv

H]@QV}-

aI!aEB

sHY0M=4

rI6S=#v4

5E6Oj0J

lh>1q>

[3h!A1

elj0%<

Oi]"^dIS

r)smq4

kT_A{:

krvhE>

~BkFP"

@}K0$

vj]|'yo

Gj)~.g

"pMpF5T

D"<0lDl

R!fe!5

z1/pWA

8wB)$+)d

%4D)"3

nT!@u-

ZO5F~H%

5QD j

Oy3Fd"w

8xb3HP

7OAM^O

_q7-+d^

?>}X;b

y#8}?-,

=Y6'nY

!Y4@d{

bAp?x:

37h\.C

/\Gf?<.

/K$$"

E/oQuc

?m@yIL

x,)u4d

Tk!{T?

e,!SDX

C7RwlJ

J:.0nF

;`^MYg

fZde?[

YgLLf2

h[5 ?]_

g:cV{N

v}_AnCz

-A.@dlv:

{'t A`|P

J-7vB:>

'R/d;+

>F*?b{

G~"+<RHJ

xC1+

gUOXwBW

#a"oCn

)?\Q}`

HU@(\!

"q'Q17VF(

:}`CbW

_[Wz|I

CAWB4Q4BX

Q\hB6X

vD0GPy

CW=#C8

y4gOufUz

<LojM3`

vAOjOh\j9*

X&tS22

h2V,_DA

W-o>^Qf;

j[Q5as3

2Gf|A]

'`'%h

Fn/6$:

.CxV0a

[N3X$?

o>0h>|

5EN"u.cV

+JS_l9

,rxmz&

Ya8\>:

LR1v`ihC%;

gB(B;v

zqv_\|

tos?SJ

8-[$~g1

VWkN^>

ZdES&L

Kuc?n

=^Y:@

J(A@e$

_WOsOD

]|ig:|

/@cm`}

eGp9sa&

e8IO* <

p+e=u_{}

[9H&

4EmZI)

KD=N\tU1

H|`sa&

{::HXfD"

5l#F:F

-Y0CkY

v=x6P#

GSiBf3n[

=Q3X7G

42@qB'

ZMo^_I

wAN]m6

Bs0(GB=

'z:|,O

U+#Wc*

! ]>!o^$

uAByl]

^8^lwc

!l]V_&|Z

Nia[$J

>y`*S.

JW6~4`

euci3{a

*@d0gy

/y'kz

T>@,0X

t$N)5

mYj<jL

x$K{2=

t<}WZ_X

&?>)@,

U/ i|;

`Q]Y7QS

92,:"|

rm:fKb

$PXJT

B?d.j{

TH3Ta20

kk9Yb(

F+tea'P

Xg\P6"

_:USyez

lpH5g=

QpeqNSK

vtUf7KT

1[,&HVi

r4R2:"

@5YwR1Pu

rH;K9.u

R"c:"f

`;%3z3

Vp;~4u

Igs|4z

|1)mdiV

/x;$7EG

wS6UC[

6u;7;h=

>'Fpe4

+onFc

czJa60

U1X9]/@0T=|

v4.0.30319

#Strings

#gdfgfdg#

#gdfg#

#fsd.dll#

#fsdfsd.dll#

#fsdf.dll#

#fsdfsdf.dll#

#fsdfdsf.dll#

#gdfg.dll#

#ghfh.dll#

IEnumerable`1

<Initialize>b__89_12

Microsoft.Win32

ToUInt32

ToInt32

PrintAsI2

Func`2

<>s__3

Stind_I4

ToInt16

SHA256

Digit7

get_UTF8

Get_SAM1159

<FindConstructors>d__279

FILE_FLAG_OVERLAPPED

LOCALE_SABBREVCTRYNAME

FILE_MAP_WRITE

INVALID_FILE_SIZE

NullableHelper_HACK

GetDateOfDSN

System.IO

CheckNReturnSO

MUI_ALL_LANGUAGES

MULTI_BYTE_VALUE_CLASS

CRYPT_MACHINE_KEYSET

Get_Delta

mscorlib

GetTokenFromTypeSpec

System.Collections.Generic

CreationTimeUtc

GetProcessById

lpNumberOfBytesRead

hThread

get_CurrentThread

thread

get_IsAttached

SafeHandleMinusOneIsInvalid

<ModuleRefTable>k__BackingField

set_IsBackground

set_Method

DefinePInvokeMethod

GetMethod

NetGuard

fsdfsdfsd

Replace

SymbolNamespace

DeepCopyStackTrace

m_stackTrace

LoadResource

FindResource

CreateResource

SizeofResource

FindRdasdsesource

CryptoStreamMode

Xenocode.Client.Attributes.AssemblyAttributes.ProcessedByXenocode

RegexTree

Get_Age

EndInvoke

BeginInvoke

set_InterfaceImplTable

GetEnvironmentVariable

Enumerable

IDisposable

set_Visible

get_Handle

m_fieldHandle

GetModuleHandle

RuntimeTypeHandle

CloseHandle

GetTypeFromHandle

Console

DefineDynamicModule

set_FormBorderStyle

FindTypeBuilderWithName

AssemblyName

GetDirectoryName

get_LocalDateTime

WriteLine

Combine

DefineType

CreateType

ValueType

flAllocationType

get_ReturnType

get_ParameterType

GetType

IsFnPtrElementType

System.Core

M_CurrentUICulture

MethodBase

ModuleWriterOptionsBase

WebResponse

GetResponse

Dispose

Truncate

Create

CreateDelegate

MulticastDelegate

set_WindowState

FormWindowState

STAThreadAttribute

CompilerGeneratedAttribute

UnverifiableCodeAttribute

UnsafeValueTypeAttribute

PureAttribute

BabelAttribute

SuppressIldasmAttribute

ExtensionAttribute

AssemblyInfoAttribute

YanoAttribute

DotNetPatcherPackerAttribute

BabelObfuscatorAttribute

CryptoObfuscator.ProtectedWithCryptoObfuscatorAttribute

DotNetPatcherObfuscatorAttribute

DotfuscatorAttribute

CompilationRelaxationsAttribute

SmartAssembly.Attributes.PoweredByAttribute

RuntimeCompatibilityAttribute

SuppressUnmanagedCodeSecurityAttribute

GetValue

RegistryHive

get_IsAlive

Adiadropdi.exe

get_Size

FullTableSize

dwSize

get_MaxSize

DefaultLabelArraySize

Resize

SizeOf

TrySZIndexOf

IsFieldDef

ffffff

gfdffffffg

System.Threading

Encoding

IsLogging

Ceiling

FromBase64String

OutputDebugString

ToString

GetString

ContinueParsing

gfhhfhfhfhfhfhfhfhfhfhfh

get_ExecutablePath

MayHavePath

GetFolderPath

ObfuscatedByGoliath

get_Length

Adiadropdi

AsyncCallback

callback

GetEnumerable_NoLock

FlushFinalBlock

GetLocal

Marshal

MetadataTokenInternal

AttlistDecl

advapi32.dll

kernel32.dll

Control

CryptoStream

MemoryStream

System

SymmetricAlgorithm

HashAlgorithm

AggressiveWsTrim

ICryptoTransform

Get_Boolean

DayOfWeekToken

publicKeyToken

lpNumberOfBytesWritten

AppDomain

get_CurrentDomain

StartColumn

IPermission

CheckValueCreatePermission

Application

get_Location

Get_Implementation

NineRays.Obfuscator.Evaluation

TextSection

System.Reflection

IsGenericTypeDefinition

CallingConvention

TypeLoadException

RuntimeWrappedException

ContractException

MakeSecurityException

MonthDayPattern

PartialWriteTo

ConvertTo

MethodInfo

PeInfo

FileInfo

FileSystemInfo

ParameterInfo

ProcessStartInfo

DirectoryInfo

System.Linq

set_ShowInTaskbar

imageCor20Header

DESCryptoServiceProvider

SetErrorMode_VistaAndOlder

MethodBuilder

ModuleBuilder

TypeBuilder

AssemblyBuilder

SpecialFolder

ISymUnmanagedBinder

lpBuffer

ResourceManager

Debugger

CreateProcessAsUser

BitConverter

CharLeftOver

Set_AssemblyResolver

System.Collections.Generic.IEnumerable<dnlib.DotNet.EventDef>.GetEnumerator

SZArrayEnumerator

.cctor

dotNetProtector

CreateDecryptor

IntPtr

System.Diagnostics

System.Runtime.InteropServices

System.Runtime.CompilerServices

System.Resources

Adiadropdi.resources

EnableVisualStyles

SaDayNames

HkeyNames

EmptyTypes

set_Attributes

MethodAttributes

FileAttributes

TypeAttributes

MethodImplAttributes

GetBytes

EnumMemberRefs

GetMethodImplementationFlags

SetImplementationFlags

LdapSyntaxFlags

Strings

Equals

Streams

GenericParams

System.Windows.Forms

CallingConventions

Forwardchars

CreateExceptionHandlers

GetParameters

MonoVerDirs

AssemblyBuilderAccess

hProcess

GetCurrentProcess

lpBaseAddress

lpAddress

NativeDigits

Concat

GetObject

ManagementObject

object

Select

flProtect

System.Net

CharSet

AddInstructionTarget

GetDirectoryEntryOffset

op_Explicit

System.Reflection.Emit

ZeroInit

KillOnExit

State_Fault

SetCompatibleTextRenderingDefault

IAsyncResult

result

System.Management

Environment

YearMonthAdjustment

CheckRemoteDebuggerPresent

IsDebuggerPresent

ReferenceTypeConstraint

ParameterizedThreadStart

M_start

Convert

Export

FailFast

WebRequest

InitializeModuleList

AllowEmptyHost

set_Timeout

SuspendLayout

ResumeLayout

System.Text

context

RegistryView

set_CreateNoWindow

AllocateStringForNameIndex

IsSuffix

ToArray

OpenSubKey

OpenBaseKey

RegistryKey

System.Security.Cryptography

DefineDynamicAssembly

GetExecutingAssembly

BlockCopy

CreateDirectory

CreateEntry

op_Equality

op_Inequality

System.Security

SuppressUnmanagedCodeSecurity

IsNullOrEmpty

198 Protector V2

System.Security.Permissions.SecurityPermissionAttribute, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

SkipVerification

WrapNonExceptionThrows

_CorExeMain

mscoree.dll

llllllll`

llllo`

lllllo

lllllllll

llllllll`

lllllll`

VQIIII

YC!!!!!!!!

1JS]+)

GGNSSY

^8&"""

!&&&&"

[J;88884

`dQg^

|6`$7M

m`2>MOl

ZG_34Ih`

\t9>mO\

O;d[cU

-dd@Vf

D `$C

:j_um`

gW@g

~{TV7p

uV/~zf/

_uH>p-^

opvcRWf

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>

</requestedPrivileges>

</security>

</trustInfo>

</assembly>

Adiadropdi

GetEnvironmentVariable

_ENABLE_PROFILING

_PROFILER

-126055658

125922941

730605438

730691701

-1036202546

1036176232

1687072080

1687103895

System.AppContext, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

-1439792771

1439819468

System.Data.SqlClient.SqlColumnEncryptionCngProvider, System.Data, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

System.Security.Cryptography.AesCng, System.Core, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

System.Web.Caching.CacheInsertOptions, System.Web, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

1087794967

1087806617

-29126481

29161181

-163753029

163729485

managed

g7RX1l2D/uSG1x+SjfQ3X7ozN+BRBQ1tCoxmjC9Cn8FmeRp7O7HKcmqRWtcF0OKm

Adiadropdi

http://google.com

native

n3Z7o6HGy3yvORhezPfIKq4SvA1JC1LTLAeZpUK/4rB6FvqsXV67rytdpRsPW2A/ncuGpRbhBvg=

cgbr\cgbr.exe'" /f

jEkpTL+5bqI=

cgbr\cgbr.exe"

SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\

Release

1602568047

1602592121

2044152350

2044086052

2029510157

2029479983

87654321

1236221417

1236239203

cmd.exe

hgfdsshgfh

hfghfgh

ffdsfdff.Name = 'ffhhg'

-1606755180

1606680765

722458857

722400666

1867093081

1867048199

-311217397

311242465

-36667843

36650668

somerandomfile

O0d6b8wwCnBoilQ6e55BttWss7Iu9tUI

O0d6b8wwCnDuS1d2hGTBXJVstAZpcwkK

DynamicDllInvokeType

cX4+12dJmXY=

1473726593

1473757308

-475563499

475583429

600298498

600291094

-2094532396

2094687796

1338561351

1338613599

1918846770

1918855710

-925784818

925839622

1840109939

1840022396

995880106

995794637

-435914

455082

105326295

105263439

-461565221

461434507

-74061863

73936887

-3554005

3653365

799779589

799766765

555775813

555763887

1458910059

1458914787

-2128018018

2127978910

-1764316797

1764312957

-954401602

954369165

-1412870153

1412927279

-942504664

942422885

-2017330408

2017383660

-1838067652

1838065180

-677075917

676994259

-602404043

602349149

KSr0BwapPpxM6L9vXeyE6g==

Z6JI2bJOfVzJ6+u+HC2VZhDC6MVI+b2A

KjGY4htBYAddjZDjy/Q9OsOuxHIlZfwP

T50hREeU1UuFC64Q8sbfvue+Vf4/gq52

CtFRMvGk96UgojkzLFlt+g==

Antivirus	Signature
Bkav	Clean
Lionic	Trojan.Win32.Generic.lXxV
Elastic	malicious (high confidence)
Cynet	Malicious (score: 99)
CMC	Clean
CAT-QuickHeal	Clean
McAfee	RDN/Generic.dx
Cylance	Unsafe
VIPRE	Clean
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 00581e601 )
BitDefender	Trojan.GenericKD.37556340
K7GW	Trojan ( 00581e601 )
Cybereason	malicious.55b8bf
BitDefenderTheta	Gen:NN.ZemsilF.34142.Rm0@aCVjP!kG
Cyren	W32/MSIL_Agent.BCR.gen!Eldorado
ESET-NOD32	a variant of MSIL/Kryptik.ACRR
Baidu	Clean
APEX	Malicious
Paloalto	generic.ml
ClamAV	Clean
Kaspersky	HEUR:Trojan.MSIL.Inject.gen
Alibaba	Trojan:MSIL/Inject.08388d07
NANO-Antivirus	Clean
ViRobot	Clean
MicroWorld-eScan	Trojan.GenericKD.37556340
Rising	Clean
Ad-Aware	Trojan.GenericKD.37556340
Emsisoft	Trojan.GenericKD.37556340 (B)
Comodo	Clean
F-Secure	Clean
DrWeb	Clean
Zillya	Clean
TrendMicro	Clean
McAfee-GW-Edition	BehavesLike.Win32.Generic.jc
FireEye	Generic.mg.c156f5367443c436
Sophos	ML/PE-A
SentinelOne	Static AI - Malicious PE
GData	Trojan.GenericKD.37556340
Jiangmin	Trojan.MSIL.agxqk
Webroot	Clean
Avira	TR/Kryptik.aeoeh
Antiy-AVL	Clean
Kingsoft	Win32.Troj.Undef.(kcloud)
Gridinsoft	Clean
Arcabit	Trojan.Generic.D23D1074
SUPERAntiSpyware	Clean
ZoneAlarm	Clean
Microsoft	Trojan:MSIL/AgentTesla.SM!MTB
TACHYON	Clean
AhnLab-V3	Trojan/Win.Generic.C4626062
Acronis	Clean
VBA32	TScope.Trojan.MSIL
ALYac	Trojan.GenericKD.37556340
MAX	malware (ai score=87)
Malwarebytes	Malware.AI.4234569416
Panda	Trj/GdSda.A
Zoner	Clean
TrendMicro-HouseCall	Clean
Tencent	Msil.Trojan.Kryptik.Svqs
Yandex	Clean
Ikarus	Trojan.MSIL.Crypt
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Kryptik.ACRR!tr
AVG	Win32:PWSX-gen [Trj]
Avast	Win32:PWSX-gen [Trj]
CrowdStrike	win/malicious_confidence_100% (W)

Static Analysis

PE Compile Time

PE Imphash

Sections

Resources

Imports