Static | ZeroBOX

PE Compile Time

2020-06-06 00:59:49

PE Imphash

f34d5f2d4577ed6d9ceec516c1f5a744

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00002000 0x0007c764 0x0007c800 6.16350871797
.rsrc 0x00080000 0x00000a93 0x00000c00 4.65190470946
.reloc 0x00082000 0x0000000c 0x00000200 0.101910425663

Resources

Name Offset Size Language Sub-language File type
RT_VERSION 0x000800a0 0x0000031c LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MANIFEST 0x000803bc 0x000006d7 LANG_NEUTRAL SUBLANG_NEUTRAL XML 1.0 document, UTF-8 Unicode (with BOM) text

Imports

Library mscoree.dll:
0x402000 _CorExeMain

!This program cannot be run in DOS mode.
`.rsrc
@.reloc
%r:!
% r@!
%!rF!
%"rL!
%#rR!
%$rX!
%%rl!
%&rr!
%'rx!
%(r~!
%Br$"
%Cr*"
%Dr0"
%Er6"
%FrR"
%GrZ"
%Hr`"
%Irf"
%Jrl"
%Krr"
%Lrx"
%Mr~"
%hr #
%ir&#
%jr,#
%kr2#
%lr8#
%mr>#
%nrD#
%orJ#
%prP#
%qrV#
%rr\#
%srb#
%trh#
%urn#
%vrt#
%wrz#
n8b`*
j_#b`U
j_*b`U
j_1b`U
j_8b`U
n8b`*
?_b`U
?_b`U
ca*&
f.@+K
I|0dB?
I|0d;
i YoL
i YoL
lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
=Client, Version=1.4.0.0, Culture=neutral, PublicKeyToken=null
PGma.System.MouseKeyHook, Version=5.6.130.0, Culture=neutral, PublicKeyToken=null
Oprotobuf-net, Version=2.4.0.0, Culture=neutral, PublicKeyToken=257b51d87d2e4d67
DQuasar.Common, Version=1.4.0.0, Culture=neutral, PublicKeyToken=null
v4.0.30319
#Strings
,GPa!w!
#<#m#{#
+=,7-d-
-(.[.e.j.
4/4U4f4j4
626U6t6/7h7r7
;:;L;d;
>!?>?R?~?
A8ALAUAsA
C5CFCKCUC
D'DGDjD
D;EcEwE~E
E5FKFWFyF
H,INI^I
L'M3MPMoM
V/VFVqV
W2X9X{X
Y)Z;ZRZ
\^\Q]z^
b*bFbMbbbrb
dAdMdadld
e'fEfTfkf~fEg]g
h=iIi_iiisi
j)j4jJj`jrj
s5tVtetytH
$@&G&z,
-5.=.N.b.y.
:<@H@K@
MEOJO)Q
R?RHRTR\R
`R`&a8ata
p#pBpup}p
q!sLsUsts
__StaticArrayInitTypeSize=10
<>9__1_10
<OnSequence>b__1_10
<>s__10
<>9__10_0
<Execute>b__10_0
<>9__0_0
<OnCombination>b__0_0
<ContainsModifierKeys>b__0_0
<>c__DisplayClass0_0
<Run>b__11_0
<>c__DisplayClass11_0
<>9__1_0
<OnSequence>b__1_0
<.ctor>b__1_0
<.cctor>b__1_0
<HasIllegalCharacters>b__1_0
<>c__DisplayClass1_0
<>c__DisplayClass12_0
<>9__22_0
<DisableScreensaver>b__22_0
<>c__DisplayClass22_0
<>9__3_0
<Execute>b__3_0
<.ctor>b__3_0
<GetPacketTypes>b__3_0
<>c__DisplayClass3_0
Ldc_I4_0
<>9__4_0
<WinSCPDecrypt>b__4_0
<>c__DisplayClass4_0
<>c__DisplayClass15_0
<>9__5_0
<AddDefaultValue>b__5_0
<>9__16_0
<FromString>b__16_0
<>c__DisplayClass16_0
<>c__DisplayClass6_0
<>9__7_0
<FromString>b__7_0
<>c__DisplayClass7_0
<>c__DisplayClass68_0
<>9__0
<GetReverseProxyByConnectionId>b__0
<Execute>b__0
<DetectKeyHolding>b__0
<DoesURLMatchWithHash>b__0
<HookGlobal>b__0
<Uninstall>b__0
<HookApp>b__0
<AddTypeToSerializer>b__0
<GetKeyValues>b__0
<Process>b__0
Ldloc_0
Stloc_0
Ldarg_0
get_Scan0
<ch>5__11
<current>5__11
CALG_SHA1
Conv_Ovf_I1
Ldelem_I1
Ldc_I4_M1
Conv_Ovf_U1
Ldelem_U1
<>9__0_1
<OnCombination>b__0_1
<>9__1_1
<OnSequence>b__1_1
<.ctor>b__1_1
<>c__DisplayClass1_1
<>9__3_1
<Execute>b__3_1
Ldc_I4_1
<>9__15_1
<GetKeyValues>b__15_1
<wParam>5__1
<>8__1
<GetPacketTypes>b__1
<GetExtendedValues>d__1
Ldloc_1
Stloc_1
Ldarg_1
Finish_Wait_1
<GetExtendedValues>d__0`1
Nullable`1
IComparable`1
IEnumerable`1
IOrderedEnumerable`1
IEquatable`1
SequenceBase`1
MessageProcessorBase`1
Predicate`1
MeasureState`1
Queue`1
Stack`1
Action`1
ICollection`1
KeyedByTypeCollection`1
EventHandler`1
IComparer`1
IEqualityComparer`1
IEnumerator`1
DeserializeItemsIterator`1
IProgress`1
ArraySegment`1
IList`1
IProtoInput`1
IProtoOutput`1
IMeasuredProtoOutput`1
SecretId1
lpFileTime1
get_Item1
<>7__wrap1
CS$<>8__locals1
<>m__Finally1
__StaticArrayInitTypeSize=32
Fixed32
kernel32
Microsoft.Win32
DiscriminatedUnion32
user32
ReadUInt32
WriteUInt32
ToUInt32
ReadInt32
WriteInt32
ConvertFromInt32
DirectReadLittleEndianInt32
DirectReadBigEndianInt32
ConvertToInt32
DirectReadVarintInt32
Conv_Ovf_I2
Ldelem_I2
Conv_Ovf_U2
Ldelem_U2
<>9__0_2
<OnCombination>b__0_2
<>9__1_2
<OnSequence>b__1_2
Ldc_I4_2
<currentChunk>5__2
<lParam>5__2
<extn>5__2
Ldloc_2
Stloc_2
Ldarg_2
Finish_Wait_2
Func`2
Tuple`2
IGrouping`2
KeyValuePair`2
IDictionary`2
ConcurrentDictionary`2
SecretId2
lpFileTime2
X509Certificate2
get_Item2
Proto2
<>7__wrap2
<>9__1_3
<OnSequence>b__1_3
Ldc_I4_3
<stream>5__3
<flags>5__3
<keyboardHookStruct>5__3
<OnCombination>b__3
Ldloc_3
Stloc_3
Ldarg_3
Func`3
MapDecorator`3
SecretId3
Proto3
<GetAllGenericArguments>d__104
Fixed64
blockEnd64
WriteBase64
ReadContentAsBase64
value64
dataRemaining64
DiscriminatedUnion64
position64
ReadUInt64
WriteUInt64
ToUInt64
ReadInt64
WriteInt64
ToInt64
MouseData_x64
Ldc_I4
Conv_Ovf_I4
Ldelem_I4
Conv_I4
Ldc_R4
Ldelem_R4
Conv_Ovf_U4
Ldelem_U4
Conv_U4
<>9__1_4
<OnSequence>b__1_4
Ldc_I4_4
<virtualKeyCode>5__4
<arg>5__4
<wasKeyDown>5__4
<reader>5__4
SecretId4
<>7__wrap4
<GetKeyValues>d__15
CALG_MD5
<>9__1_5
<OnSequence>b__1_5
Ldc_I4_5
<isKeyReleased>5__5
<scanCode>5__5
SecretId5
ReadUInt16
WriteUInt16
ToUInt16
ReadInt16
WriteInt16
HMACSHA256
MouseData_x86
Ldc_I4_6
<virtualKeyCode>5__6
<fuState>5__6
<OnSequence>b__6
SecretId6
get_OSSupportsIPv6
Ldc_I4_7
<scanCode>5__7
<ch>5__7
<OnSequence>b__7
SecretId7
Base128
DiscriminatedUnion128
get_UTF8
Ldc_I8
Ldelem_I8
Conv_I8
Ldc_R8
Ldelem_R8
Conv_U8
Ldc_I4_8
<chars>5__8
<>9__8
<OnSequence>b__8
<FromRawDataApp>d__8
7D78CB380BF5EFB7B851409CA6A875F77DECF09D19B9149DA17A3EBF674BC0F9
<>9__1_9
<OnSequence>b__1_9
<FromRawDataGlobal>d__9
<GetEnumerator>d__9
<>s__9
<Module>
<b9266ac8-f873-4b83-a097-e307e97cf58e><PrivateImplementationDetails>
1DB2A1F9902B35F8F880EF1692CE9947A193D5A698D8F568BDA721658ED4C58B
Delete_TCB
CreateDC
DeleteDC
MAPVK_VK_TO_VSC
STATURLFLAG_ISCACHED
STATURL_QUERYFLAG_ISCACHED
get_LCID
HP_ALGID
MapNameToOID
ALG_ID
PlatformID
WH_KEYBOARD
URL_ESCAPE_UNSAFE
ADDURL_ADDTOHISTORYANDCACHE
ADDURL_ADDTOCACHE
STATURL_QUERYFLAG_NOTITLE
FILETIME
SYSTEMTIME
KEEP_ALIVE_TIME
URL_UNESCAPE
WH_MOUSE
WM_MOUSEMOVE
HP_HASHSIZE
MAX_MESSAGE_SIZE
POOL_SIZE
HEADER_SIZE
BUFFER_SIZE
TO_EOF
ADDURL_FLAG
SM_CXDRAG
SM_CYDRAG
BUFFER_LENGTH
wParamH
get_ASCII
Last_ACK
VK_NUMLOCK
WM_LBUTTONDBLCLK
WM_MBUTTONDBLCLK
WM_RBUTTONDBLCLK
WM_XBUTTONDBLCLK
MAPVK_VSC_TO_VK
VK_CAPITAL
HP_HASHVAL
KEEP_ALIVE_INTERVAL
WM_MOUSEWHEEL
WM_MOUSEHWHEEL
STATURLFLAG_ISTOPLEVEL
STATURL_QUERYFLAG_TOPLEVEL
VK_SCROLL
WH_KEYBOARD_LL
WH_MOUSE_LL
URL_PLUGGABLE_PROTOCOL
VK_LCONTROL
VK_RCONTROL
VK_CONTROL
STATURL_QUERYFLAG_NOURL
lpSTATURL
shlwapi_URL
wstrURL
wParamL
VK_LWIN
VK_RWIN
WM_LBUTTONDOWN
WM_MBUTTONDOWN
WM_RBUTTONDOWN
WM_XBUTTONDOWN
WM_SYSKEYDOWN
WM_KEYDOWN
LASTINPUTINFO
System.IO
WM_LBUTTONUP
WM_MBUTTONUP
WM_RBUTTONUP
WM_XBUTTONUP
WM_SYSKEYUP
WM_KEYUP
MAPVK_VK_TO_CHAR
STATURLFLAGS
STATURL_QUERYFLAGS
Ldc_I4_S
Ldloca_S
Ldarga_S
Ldloc_S
Stloc_S
Brfalse_S
Brtrue_S
Leave_S
Starg_S
VK_PACKET
VK_LSHIFT
VK_RSHIFT
VK_SHIFT
get_Win32NT
URL_ESCAPE_PERCENT
PROTO_ELEMENT
VK_INSERT
KEYBDINPUT
HARDWAREINPUT
MOUSEINPUT
VK_LMENU
VK_RMENU
VK_MENU
get_IV
set_IV
GenerateIV
MAPVK_VSC_TO_VK_EX
URL_DONT_SIMPLIFY
URL_ESCAPE_SPACES_ONLY
value__
Ldloca
scanArea
WriteSchema
GetSchema
Ldelema
get_Data
set_Data
pbData
ProtectedData
MouseData
mouseData
CryptHashData
CallbackData
SECItemData
AppendExtensionData
BitmapData
AddErrorData
System.Runtime.Serialization.ISerializable.GetObjectData
lpInitData
keyData
ReverseProxyData
<>3__data
ProtoBuf.Meta
get_Delta
System.Web
mscorlib
attrib
EmptyBlob
set_Verb
Int32Msb
Int64Msb
ReleaseHdc
GetHdc
get_IsNestedPublic
AllPublic
get_NonPublic
nonPublic
get_IsPublic
isPublic
System.Collections.Generic
NonGeneric
allowBasic
get_IsStatic
isStatic
DownloadFileAsync
CancelAsync
_globalHookProc
_appHookProc
EnumDesktopWindowsProc
hdcSrc
get_LastAccessTimeUtc
set_LastAccessTimeUtc
get_Id
set_Id
get_ManagedThreadId
get_CurrentManagedThreadId
<>l__initialThreadId
GetCurrentThreadId
dwThreadId
HardwareId
hookId
get_ConnectionId
set_ConnectionId
connectionId
GetWindowThreadProcessId
processId
SecretId
get_NextId
set_NextId
GetProcessById
lastIsDead
ProtoBuf.Serializers.IProtoSerializer.Read
EmitBasicRead
EndRead
get_CanRead
OpenRead
BeginRead
firstCharRead
bytesRead
ProtoBuf.Serializers.IProtoSerializer.EmitRead
add_ClientRead
remove_ClientRead
ExitThread
get_CurrentThread
OnLoad
Payload
payload
get_RequireAdd
DoStartupItemAdd
castListForAdd
ResolveListAdd
FindWithoutAdd
forced
EmitCallbackIfNeeded
add_LockContended
remove_LockContended
SHA256Managed
get_TimePasswordChanged
set_TimePasswordChanged
add_ProgressChanged
remove_ProgressChanged
pceltFetched
Established
add_MouseDragFinished
remove_MouseDragFinished
OnDragFinished
ProcessDragFinished
SetSpecified
getSpecified
setSpecified
OPTIONS_WritePacked
get_WritePacked
writePacked
OPTIONS_IsPacked
get_IsPacked
set_IsPacked
get_Clicked
m_PreviousClicked
Interlocked
get_IsSealed
get_Enabled
set_Enabled
m_enabled
addEvenIfAutoDisabled
GetRecycled
get_Handled
set_Handled
IsToggled
compiled
get_Cancelled
get_WheelScrolled
CheckFullyConsumed
Constrained
IsDefined
TagIsPinned
untyped
IsPrepared
IsInstallationRequired
OPTIONS_IsRequired
get_IsRequired
set_IsRequired
required
measured
get_TimesUsed
set_TimesUsed
get_TimeLastUsed
set_TimeLastUsed
Closed
get_IsDisposed
set_IsDisposed
add_Elapsed
LastUpdated
get_TimeCreated
set_TimeCreated
get_HotKeysActivated
get_Connected
set_Connected
get_IsConnected
set_IsConnected
connected
expected
add_DownloadFileCompleted
remove_DownloadFileCompleted
LastVisited
get_HasExited
add_MouseDragStarted
remove_MouseDragStarted
OnDragStarted
ProcessDragStarted
CreateNestedListsNotSupported
get_IsCancellationRequested
Syn_Recieved
HasMoved
reserved
typeFixed
allowFixed
pcchCanonicalized
pszCanonicalized
Synchronized
get_Pid
set_Pid
owningPid
MibTcptableOwnerPid
MibTcprowOwnerPid
row_id
get_IsInvalid
SafeHandleZeroOrMinusOneIsInvalid
get_Guid
set_Guid
ReadGuid
WriteGuid
get_DismissedBreachAlertsByLoginGuid
set_DismissedBreachAlertsByLoginGuid
NewGuid
AddField
ClearPackedField
SetPackedField
expectedField
get_PasswordField
set_PasswordField
get_UsernameField
set_UsernameField
DefineField
<X>k__BackingField
<Y>k__BackingField
<Data>k__BackingField
<Id>k__BackingField
<ConnectionId>k__BackingField
<NextId>k__BackingField
<TimePasswordChanged>k__BackingField
<Handled>k__BackingField
<TimesUsed>k__BackingField
<TimeLastUsed>k__BackingField
<TimeCreated>k__BackingField
<IsConnected>k__BackingField
<Pid>k__BackingField
<Guid>k__BackingField
<DismissedBreachAlertsByLoginGuid>k__BackingField
<PasswordField>k__BackingField
<UsernameField>k__BackingField
<Command>k__BackingField
<Kind>k__BackingField
<EncryptedPassword>k__BackingField
<ScanCode>k__BackingField
<CountryCode>k__BackingField
<Image>k__BackingField
<Message>k__BackingField
<Handle>k__BackingField
<Name>k__BackingField
<PcName>k__BackingField
<KnownTypeName>k__BackingField
<ValueName>k__BackingField
<OldValueName>k__BackingField
<NewValueName>k__BackingField
<MemberName>k__BackingField
<HostName>k__BackingField
<KeyName>k__BackingField
<OldKeyName>k__BackingField
<RootKeyName>k__BackingField
<NewKeyName>k__BackingField
<Username>k__BackingField
<EncryptedUsername>k__BackingField
<Hostname>k__BackingField
<Time>k__BackingField
<Type>k__BackingField
<MetaType>k__BackingField
<EncType>k__BackingField
<PathType>k__BackingField
<AccountType>k__BackingField
<Procedure>k__BackingField
<Signature>k__BackingField
<IsUpdate>k__BackingField
<Surrogate>k__BackingField
<Value>k__BackingField
<Size>k__BackingField
<FileSize>k__BackingField
<Tag>k__BackingField
<ErrorMsg>k__BackingField
<Match>k__BackingField
<Path>k__BackingField
<FilePath>k__BackingField
<RemotePath>k__BackingField
<ParentPath>k__BackingField
<NewPath>k__BackingField
<KeyPath>k__BackingField
<Chunk>k__BackingField
<Url>k__BackingField
<DownloadUrl>k__BackingField
<FormSubmitUrl>k__BackingField
<LParam>k__BackingField
<WParam>k__BackingField
<StartupItem>k__BackingField
<OperatingSystem>k__BackingField
<HttpRealm>k__BackingField
<Hidden>k__BackingField
<SetLastDirectorySeen>k__BackingField
<Icon>k__BackingField
<Version>k__BackingField
<Action>k__BackingField
<AppendToCollection>k__BackingField
<Caption>k__BackingField
<Description>k__BackingField
<Resolution>k__BackingField
<Reason>k__BackingField
<Button>k__BackingField
<IsMouseDown>k__BackingField
<IsMouseButtonDown>k__BackingField
<KeyDown>k__BackingField
<IsKeyDown>k__BackingField
<IsMouseButtonUp>k__BackingField
<IsKeyUp>k__BackingField
<DisableMap>k__BackingField
<Timestamp>k__BackingField
<IsNonChar>k__BackingField
<Number>k__BackingField
<IsError>k__BackingField
<Discriminator>k__BackingField
<Monitor>k__BackingField
<ApplyDefaultBehaviour>k__BackingField
<ImplicitFields>k__BackingField
<PotentiallyVulnerablePasswords>k__BackingField
<Matches>k__BackingField
<Processes>k__BackingField
<Drives>k__BackingField
<Items>k__BackingField
<StartupItems>k__BackingField
<Logins>k__BackingField
<Connections>k__BackingField
<SystemInfos>k__BackingField
<RemoteAddress>k__BackingField
<LocalAddress>k__BackingField
<RecoveredAccounts>k__BackingField
<HotKeys>k__BackingField
<DataFormat>k__BackingField
<ValueFormat>k__BackingField
<KeyFormat>k__BackingField
<Target>k__BackingField
<DataMemberOffset>k__BackingField
<Result>k__BackingField
<Port>k__BackingField
<RemotePort>k__BackingField
<LocalPort>k__BackingField
<Output>k__BackingField
<Text>k__BackingField
<CreateNew>k__BackingField
<ImageIndex>k__BackingField
<MonitorIndex>k__BackingField
<DisplayIndex>k__BackingField
<Key>k__BackingField
<IsExtendedKey>k__BackingField
<EncryptionKey>k__BackingField
<TriggerKey>k__BackingField
<RootKey>k__BackingField
<LogsDirectory>k__BackingField
<Country>k__BackingField
<Quality>k__BackingField
AppendExtensionField
SkipField
isField
GetField
ProtoBinaryField
record_header_field
Ldsfld
Stsfld
add_OnHotKeysDownHold
remove_OnHotKeysDownHold
GetXDragThreshold
GetYDragThreshold
m_xDragThreshold
m_yDragThreshold
TrimEnd
ReadToEnd
DoProcessEnd
demand
get_Command
set_Command
command
ProtoBuf.IExtension.EndAppend
ProtoBuf.IExtension.BeginAppend
get_Kind
set_Kind
includeKind
OPTIONS_IncludeDateTimeKind
get_IncludeDateTimeKind
set_IncludeDateTimeKind
SerializeDateTimeKind
GetValueKind
RegistryValueKind
valueKind
WriteDateTimeWithKind
UriKind
FieldTimeSpanKind
get_Second
get_Millisecond
set_IsBackground
set_Method
DynamicMethod
MakeGenericMethod
GetStaticMethod
GetDedicatedMethod
EmitDedicatedMethod
GetInstanceMethod
DefineMethod
ResolveMethod
GetWriterMethod
get_IncludeSerializerMethod
set_IncludeSerializerMethod
GetGetMethod
GetSetMethod
method
GetActiveKeyboard
HookGlobalKeyboard
HookAppKeyboard
get_Chord
_chord
get_Password
set_Password
get_EncryptedPassword
set_EncryptedPassword
Subscribe
subscribe
NetworkInterface
get_IsInterface
CompileInPlace
Replace
DemandSpace
get_Namespace
RootNamespace
get_StackTrace
get_OwnerStackTrace
ownerStackTrace
lpszDevice
LocalMachineRunOnce
CurrentUserRunOnce
add_OnHotKeysDownOnce
remove_OnHotKeysDownOnce
get_CanHaveInheritance
hasInheritance
ProtoBuf.Serializers.IProtoTypeSerializer.CreateInstance
ProtoBuf.Serializers.IProtoTypeSerializer.CanCreateInstance
ProtoBuf.Serializers.IProtoTypeSerializer.EmitCreateInstance
ThrowCannotCreateInstance
CreateListInstance
<>3__instance
IndexOfReference
WeakReference
OPTIONS_AsReference
get_AsReference
set_AsReference
asReference
_reference
OnSequence
sequence
CancellationTokenSource
source
Coalesce
GlobalEventFacade
AppEventFacade
DefineMethodOverride
ProtoTypeCode
GetTypeCode
typeCode
System.Collections.Generic.IEqualityComparer<System.Object>.GetHashCode
IOControlCode
get_ScanCode
lastScanCode
uScanCode
wScanCode
scanCode
OpCode
get_ExitCode
get_KeyCode
lastVirtualKeyCode
virtualKeyCode
get_CountryCode
set_CountryCode
set_Mode
FileMode
PaddingMode
ImageLockMode
CryptoStreamMode
SetUnhandledExceptionMode
CipherMode
implicitMode
XmlNode
get_Unicode
get_BigEndianUnicode
HtmlEncode
opcode
DeleteSubKeyTree
DeleteSubKeyTreeSafe
RenameValueSafe
DeleteValueSafe
GetValueSafe
SetValueSafe
OpenWritableSubKeySafe
RenameSubKeySafe
CreateSubKeySafe
OpenReadonlySubKeySafe
get_OEMCodePage
get_CodePage
get_Image
set_Image
FromImage
DrawImage
storage
IMessage
get_Message
set_Message
statusMessage
PostMessage
message
AddRange
addRange
CompareExchange
m_MouseListenerCache
m_KeyListenerCache
NetObjectCache
get_NetCache
netCache
ResetKeyCache
EndInvoke
BeginInvoke
FieldTimeSpanScale
FieldDecimalSignScale
GetExtendedTcpTable
pTcpTable
jumpTable
available
Nullable
IComparable
IEnumerable
ienumerable
IDisposable
KnownTypes_Hashtable
IExtensionResettable
IdentifyImmutable
ISerializable
IXmlSerializable
set_Visible
InternalsVisible
IsWindowVisible
IExtensible
isExtensible
iextensible
ReadDouble
WriteDouble
ToDouble
NextDouble
Recycle
GCHandle
get_Handle
set_Handle
RuntimeFieldHandle
SafeHandle
RuntimeTypeHandle
HookProcedureHandle
ReleaseHandle
GetTypeFromHandle
get_WaitHandle
handle
Rectangle
ReadSingle
WriteSingle
DeleteFile
TraceCompile
OPTIONS_AutoCompile
get_AutoCompile
set_AutoCompile
EnableAutoCompile
IsVolatile
IsInRole
WindowsBuiltInRole
OPTIONS_AutoTuple
get_IsAutoTuple
pocsTitle
get_MainWindowTitle
set_MainWindowTitle
AssemblyTitle
DefineDynamicModule
hModule
get_MainModule
ProcessModule
module
set_WindowStyle
ProcessWindowStyle
PrefixStyle
get_Name
set_Name
get_PcName
set_PcName
procName
get_AssemblyQualifiedName
get_FormattedName
set_FormattedName
formattedName
GetFieldName
oldName
methodName
get_StandardName
MainboardName
traceName
QueryFullProcessImageName
TableName
set_FileName
GetMainModuleFileName
lpFileName
GetFileName
get_MachineName
get_TypeName
set_TypeName
GetSchemaTypeName
FieldTypeName
callbackTypeName
get_KnownTypeName
knownTypeName
typeName
baseName
get_ValueName
set_ValueName
get_OldValueName
set_OldValueName
get_NewValueName
set_NewValueName
valueName
lpExeName
inferByTagName
get_TargetFrameworkName
set_TargetFrameworkName
targetFrameworkName
get_FullName
fullName
OPTIONS_InferTagFromName
get_InferTagFromName
set_InferTagFromName
get_DomainName
get_TwoLetterISORegionName
get_ApplicationName
startupName
get_MemberName
set_MemberName
memberName
get_UserName
browserName
get_ProcessName
set_ProcessName
verifyObjectName
SetName
get_DaylightName
get_HostName
set_HostName
CpuName
GpuName
newName
inferTagByName
GetProcessesByName
get_DisplayName
set_DisplayName
get_TargetFrameworkDisplayName
set_TargetFrameworkDisplayName
targetFrameworkDisplayName
GetDisplayName
get_KeyName
set_KeyName
get_OldKeyName
set_OldKeyName
get_RootKeyName
set_RootKeyName
rootKeyName
get_NewKeyName
set_NewKeyName
keyName
get_AssemblyName
assemblyName
GetDirectoryName
IsSame
astable_name
item_name
DoPathRename
filename
get_Username
set_Username
get_EncryptedUsername
set_EncryptedUsername
get_Hostname
set_Hostname
get_Time
m_PreviousClickedTime
CompareFileTime
SystemTimeToFileTime
lpFileTime
ReadDateTime
WriteDateTime
ToDateTime
keepAliveTime
IsDaylightSavingTime
get_SupportsDaylightSavingTime
m_SystemDoubleClickTime
GetDoubleClickTime
ToLocalTime
FileTimeToSystemTime
lpSystemTime
dwTime
get_AddressPreferredLifetime
filetime
datetime
keepalivetime
ClientRuntime
clientRuntime
WaitOne
AppendLine
TraceWriteLine
DebugWriteLine
NewLine
Combine
DeepClone
get_Timezone
set_Timezone
DataProtectionScope
get_Type
set_Type
get_MetaType
metaType
AddSubType
IsValidSubType
subType
OPTIONS_DynamicType
get_DynamicType
set_DynamicType
dynamicType
MakeGenericType
get_IsGenericType
CanSerializeBasicType
get_EncType
set_EncType
ReadType
declaredType
associatedType
get_ReflectedType
ProtoBuf.Serializers.IProtoSerializer.ExpectedType
ProtoBuf.Serializers.IProtoSerializer.get_ExpectedType
ThrowUnexpectedType
get_DerivedType
derivedType
get_FieldType
get_NetworkInterfaceType
ComInterfaceType
get_NodeType
XmlNodeType
ChangeType
ienumerableType
GCHandleType
FileType
get_MimeType
mimeType
DefineType
get_WireType
packedWireType
GetDateTimeWireType
valueWireType
GetWireType
defaultWireType
GetIntWireType
keyWireType
wireType
get_BaseType
GetBaseType
SetBaseType
baseType
CreateType
surrogateType
concreteType
WriteType
get_AttributeType
get_IsValueType
valueType
ReceiveType
get_DriveType
effectiveType
SerializeType
DeserializeType
get_DeclaringType
declaringType
GetUnderlyingType
get_PathType
set_PathType
CallbackType
callbackType
get_LocalType
SecurityProtocolType
SECItemType
get_ItemType
GetListItemType
itemType
enumType
get_ReturnType
get_KnownType
ResolveKnownType
knownType
uMapType
knownTypesLookupType
StartupType
parentListOrType
get_MemberType
GetMemberType
memberType
helperType
get_ParameterType
forType
get_BehaviorType
ienumeratorType
CanSerializeContractType
get_ConstructType
set_ConstructType
constructType
GetType
targetType
SocketType
InbuiltType
get_DefaultType
defaultType
GetElementType
elementType
get_ParentType
parentType
get_ContentType
set_ContentType
ToContentType
get_AccountType
set_AccountType
isRootType
GetRootType
listType
inputType
dwProvType
arrayType
IsValidMapKeyType
keyType
TrySerializeAuxiliaryType
TryDeserializeAuxiliaryType
dictionaryType
get_EntryType
set_EntryType
get_PropertyType
<>3__type
item_type
ThrowUnexpectedSubtype
System.Collections.IComparer.Compare
EnumToWire
System.Core
SerializeCore
DeserializeCore
WriteHeaderCore
Semaphore
GetIgnore
ignore
get_Procedure
HookProcedure
procedure
Measure
Ensure
get_Signature
set_Signature
CreateInvalidCallbackSignature
PtrToStructure
get_InstalledUICulture
get_CurrentUICulture
get_InvariantCulture
MethodBase
ProtoDecoratorBase
ApplicationSettingsBase
Rebase
Release
BranchIfFalse
Brfalse
HttpWebResponse
DoShellExecuteResponse
GetChangeRegistryValueResponse
GetRenameRegistryValueResponse
GetCreateRegistryValueResponse
GetDeleteRegistryValueResponse
GetSystemInfoResponse
GetDesktopResponse
GetPasswordsResponse
GetProcessesResponse
GetDrivesResponse
GetStartupItemsResponse
GetConnectionsResponse
GetMonitorsResponse
DoProcessResponse
GetRegistryKeysResponse
ReverseProxyConnectResponse
GetResponse
GetRenameRegistryKeyResponse
GetCreateRegistryKeyResponse
GetDeleteRegistryKeyResponse
GetKeyloggerLogsDirectoryResponse
GetDirectoryResponse
System.IDisposable.Dispose
TryParse
Reverse
HookGlobalMouse
HookAppMouse
MatchPredicate
predicate
X509Certificate
serverCertificate
certificate
System.ServiceModel.Description.IOperationBehavior.Validate
System.ServiceModel.Description.IEndpointBehavior.Validate
get_IsUpdate
set_IsUpdate
isUpdate
noAutoCreate
autoCreate
TryCreate
CreateDelegate
MulticastDelegate
hotKeyDelegate
get_Surrogate
set_Surrogate
SetSurrogate
surrogate
get_State
set_State
SetSuspendState
TryGetCharFromKeyboardState
GetKeyboardState
DebuggerBrowsableState
EditorBrowsableState
GetNativeState
ConnectionState
get_UserState
userState
PowerState
add_ClientState
remove_ClientState
fuState
lpbKeyState
lpKeyState
GetKeyState
lastKeyState
<>1__state
m_hotkeystate
RemoveLastWithMutate
DoAskElevate
DoPathDelete
FileTransferComplete
ProtoBuf.Serializers.IProtoSerializer.Write
EmitBasicWrite
get_CanWrite
OpenWrite
ProtoBuf.Serializers.IProtoSerializer.EmitWrite
add_ClientWrite
remove_ClientWrite
DoVisitWebsite
ThreadStaticAttribute
STAThreadAttribute
EmbeddedAttribute
CompilerGeneratedAttribute
normalizedAttribute
GuidAttribute
GeneratedCodeAttribute
UnverifiableCodeAttribute
DebuggerNonUserCodeAttribute
ProtoIncludeAttribute
AttributeUsageAttribute
DebuggableAttribute
DebuggerBrowsableAttribute
EditorBrowsableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
IteratorStateMachineAttribute
InterfaceTypeAttribute
ProtoPartialIgnoreAttribute
ProtoIgnoreAttribute
ObsoleteAttribute
DefaultValueAttribute
AssemblyTrademarkAttribute
TargetFrameworkAttribute
ConditionalAttribute
SetCustomAttribute
ProtoEnumAttribute
DebuggerHiddenAttribute
ExtensionAttribute
AssemblyFileVersionAttribute
AssemblyConfigurationAttribute
ProtoBeforeSerializationAttribute
ProtoAfterSerializationAttribute
ProtoBeforeDeserializationAttribute
ProtoAfterDeserializationAttribute
AssemblyDescriptionAttribute
InternalsVisibleToAttribute
ProtoMapAttribute
IgnoreDataMemberAttribute
ProtoPartialMemberAttribute
ProtoMemberAttribute
DefaultMemberAttribute
UnmanagedFunctionPointerAttribute
ProtoConverterAttribute
ProtoBehaviorAttribute
FlagsAttribute
CompilationRelaxationsAttribute
DataContractAttribute
ProtoContractAttribute
ImmutableObjectAttribute
AssemblyProductAttribute
GetAttribute
AssemblyCopyrightAttribute
ParamArrayAttribute
IsReadOnlyAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
attribute
set_UseShellExecute
DoShellExecute
CanExecute
get_Minute
ReadSByte
WriteSByte
ReadByte
WriteByte
Dequeue
Enqueue
TValue
get_Value
set_Value
HasSubValue
LoadValue
AddValue
ziggedValue
TypedValue
ProtoBuf.Serializers.IProtoSerializer.RequiresOldValue
ProtoBuf.Serializers.IProtoSerializer.get_RequiresOldValue
AppendValue
AppendExtendValue
DiscardValue
WireValue
wireValue
StoreValue
DeleteValue
readOptionsWriteValue
writeValue
GetLocalWithValue
fromValue
WriteEnumValue
hasConflictingEnumValue
GetRawEnumValue
enumValue
FieldTimeSpanValue
MinValue
minValue
get_HasValue
get_AsReferenceHasValue
set_AsReferenceHasValue
OPTIONS_InferTagFromNameHasValue
get_InferTagFromNameHasValue
OPTIONS_EnumPassthruHasValue
get_EnumPassthruHasValue
hasValue
ContainsValue
ProtoBuf.Serializers.IProtoSerializer.ReturnsValue
ProtoBuf.Serializers.IProtoSerializer.get_ReturnsValue
TryGetValue
SetValue
get_DefaultValue
set_DefaultValue
ParseDefaultValue
EmitBranchIfDefaultValue
defaultValue
GetRawConstantValue
get_InputValue
inputValue
RawValue
MaxValue
maxValue
LoadArrayValue
CopyValue
copyValue
DoChangeRegistryValue
DoRenameRegistryValue
DoCreateRegistryValue
DoDeleteRegistryValue
continue
BranchIfTrue
Brtrue
RegistryHive
EndReceive
BeginReceive
Archive
TcpKeepAlive
get_IsAlive
m_KeyboardStateNative
keyboardStateNative
trimNegative
Active
add_MouseMove
remove_MouseMove
OnMove
ProcessMove
DoStartupItemRemove
TryRemove
Freeze
get_Size
set_Size
cbSize
FixedSize
imageSize
get_FileSize
set_FileSize
maxLogFileSize
set_BlockSize
minSize
dwSecretInfoSize
dwSecretSize
lpdwSize
MaxByteArraySize
set_KeySize
UrlCanonicalize
ProtoBuf.IProtoOutput<System.IO.Stream>.Serialize
get_BeforeSerialize
set_BeforeSerialize
beforeSerialize
CanSerialize
get_AfterSerialize
set_AfterSerialize
afterSerialize
ProtoBuf.IProtoInput<System.ArraySegment<System.Byte>>.Deserialize
ProtoBuf.IProtoInput<System.Byte[]>.Deserialize
ProtoBuf.IProtoInput<System.IO.Stream>.Deserialize
PrepareDeserialize
get_BeforeDeserialize
set_BeforeDeserialize
beforeDeserialize
WriteSerializeDeserialize
get_AfterDeserialize
set_AfterDeserialize
afterDeserialize
deserialize
Normalize
SuppressFinalize
TryFlushOrResize
SizeOf
get_ItemOf
IsSubclassOf
LastIndexOf
Ldelem_Ref
Stelem_Ref
LoadNullRef
KnownTypes_ArrayCutoff
cchBuff
pwszBuff
GetSurrogateOrBaseOrSelf
GetSurrogateOrSelf
ProtoBuf
get_Tag
set_Tag
<>3__allowDefinedTag
ListItemTag
get_ImplicitFirstTag
set_ImplicitFirstTag
implicitFirstTag
ZigZag
HasFlag
SetFlag
ProcessDrag
<>3__tag
CryptoConfig
System.Threading
set_Padding
OPTIONS_Pending
get_Pending
set_Pending
UTF8Encoding
sourceEncoding
set_StandardErrorEncoding
GetEncoding
set_StandardOutputEncoding
encoding
System.Drawing.Imaging
m_IsDragging
OPTIONS_IgnoreListHandling
get_IgnoreListHandling
set_IgnoreListHandling
Ceiling
incoming
Listening
System.Runtime.Versioning
m_remapping
FromBase64String
ToBase64String
UnescapeDataString
DirectReadString
WriteString
WriteAttributeString
IndexOfString
IsWellFormedUriString
get_OriginalString
UrlString
FromString
GetCustomToString
lpString
GetString
ToFriendlyString
XmlDictionaryString
Substring
Closing
_closing
disposing
createIfMissing
get_IsTerminating
StopDoubleClickWaiting
StartDoubleClickWaiting
existing
add_DynamicTypeFormatting
remove_DynamicTypeFormatting
TryReadUInt32VariantWithoutMoving
TryReadUInt64VariantWithoutMoving
System.Drawing
get_ErrorMsg
set_ErrorMsg
errorMsg
Branch
TimestampEpoch
search
get_Match
set_Match
IsMatch
Switch
FieldGuidHigh
FieldDecimalHigh
get_MaxItemsInObjectGraph
set_MaxItemsInObjectGraph
CryptCreateHash
ComputeHash
ComputeStringHash
phHash
urlHash
VerifyHash
CryptDestroyHash
finish
CheckRecursionStackAndPush
get_Path
set_Path
get_ExecutablePath
executablePath
get_FilePath
set_FilePath
currentFilePath
newFilePath
filePath
get_RemotePath
set_RemotePath
subkeyFullPath
GetTempPath
GetFolderPath
get_ParentPath
set_ParentPath
parentPath
get_OutputPath
set_OutputPath
outputPath
get_NewPath
set_NewPath
get_KeyPath
set_KeyPath
keyPath
pszPath
get_Width
set_Width
nWidth
get_Length
set_Length
LoadLength
isFixedLength
get_ChordLength
messageLength
ProtoBuf.IExtension.GetLength
dwLength
length
EndsWith
endsWith
StartsWith
get_Month
get_Depth
RecursionCheckDepth
ToAscii
OPTIONS_PrivateOnApi
Gma.System.MouseKeyHook.WinApi
Initobj
Newobj
CanPack
ProtoBuf.Serializers.IProtoTypeSerializer.Callback
AsyncCallback
EmitInvokeCallback
SanityCheckCallback
includeLocalCallback
RemoteCertificateValidationCallback
CheckForCallback
WaitCallback
ProtoBuf.Serializers.IProtoTypeSerializer.EmitCallback
SendOrPostCallback
callback
PopRecursionStack
recursionStack
callbck
recursionCheck
SanityCheck
add_MouseDoubleClick
remove_MouseDoubleClick
OnDoubleClick
IsDoubleClick
add_MouseClick
remove_MouseClick
OnClick
SyncLock
TakeLock
ReleaseLock
flushLock
WaitOnLock
UsingBlock
get_CheckBlock
set_CheckBlock
FlushFinalBlock
EndExceptionBlock
BeginExceptionBlock
BeginFinallyBlock
CheckDepthFlushlock
get_CanSeek
DayOfWeek
GetArrayRank
get_Chunk
set_Chunk
FileTransferChunk
idHook
Gma.System.MouseKeyHook
keyVal
AllocHGlobal
FreeHGlobal
FromRawDataGlobal
HookGlobal
get_Local
DeclareLocal
InitLocal
Marshal
get_NonTrivial
ReadDecimal
WriteDecimal
CompareOrdinal
AllowInternal
allowInternal
System.Security.Principal
WindowsPrincipal
get_IsLiteral
FromRawDataUniversal
SequenceEqual
BranchIfEqual
op_GreaterThanOrEqual
actual
set_Interval
keepAliveInterval
flushInterval
keepaliveinterval
CodeLabel
get_VolumeLabel
DefineLabel
MarkLabel
nextLabel
FileTransferCancel
get_Model
set_Model
ProtoBuf.ServiceModel
System.ServiceModel
WriteBasicTypeModel
RuntimeTypeModel
System.Collections.ObjectModel
OPTIONS_IsDefaultModel
System.ComponentModel
<>3__model
add_MouseWheel
remove_MouseWheel
OnWheel
ProcessWheel
add_ClientFail
remove_ClientFail
ReadNullCheckedTail
WriteNullCheckedTail
valueTail
fromTail
toTail
rootTail
keyTail
ExtensibleUtil
TcpTableBasicAll
TcpTableOwnerPidAll
FindAll
TcpTableOwnerModuleAll
EmitCall
DoClientUninstall
gdi32.dll
advapi32.dll
Kernel32.dll
kernel32.dll
shell32.dll
user32.dll
iphlpapi.dll
shlwapi.dll
msvcrt.dll
IsNameOrValueNull
EmitCreateIfNull
zeroIfNull
OPTIONS_SupportNull
get_SupportNull
set_SupportNull
supportNull
Ldnull
System.Xml
set_SecurityProtocol
ThreadPool
FlushPool
GetFromPool
ReleaseToPool
ReleaseBufferToPool
BufferPool
IOControl
WriteDateTimeImpl
WriteTimeSpanImpl
MetaTypeFinderImpl
BasicTypeFinderImpl
ApplyDefaultBehaviourImpl
WriteGetKeyImpl
get_Url
set_Url
get_DownloadUrl
set_DownloadUrl
AddUrl
DeleteUrl
pocsUrl
get_FormSubmitUrl
set_FormSubmitUrl
QueryUrl
pszUrl
_staturl
FileStream
get_BaseStream
GetResponseStream
NetworkStream
SslStream
CopyRawFromStream
inStream
CryptoStream
targetStream
outStream
MemoryStream
stream
get_LParam
get_WParam
get_Param
CryptGetHashParam
lParam
uParam
lpvParam
dwParam
AllocCoTaskMem
get_IsNestedFamORAssem
TSECItem
get_Item
set_Item
EndSubItem
StartSubItem
EmitReadAndAddItem
QueueUserWorkItem
get_StartupItem
set_StartupItem
asListItem
get_OperatingSystem
set_OperatingSystem
get_Is64BitOperatingSystem
SymmetricAlgorithm
AsymmetricAlgorithm
HashAlgorithm
get_HttpRealm
set_HttpRealm
Random
IsAssignableFrom
CanExecuteFrom
valueFrom
UseShortForm
ICryptoTransform
get_Platform
ParseEnum
WireToEnum
get_IsEnum
isEnum
root_num
row_num
ppenum
Conv_Ovf_I4_Un
ReadBoolean
GetFieldBoolean
WriteBoolean
Fixed32BigEndian
ReadTimeSpan
WriteTimeSpan
timeSpan
pdwDataLen
dwOutBufLen
SECItemLen
get_Hidden
set_Hidden
get_SetLastDirectorySeen
set_SetLastDirectorySeen
Screen
Protogen
get_Token
opaqueToken
SubItemToken
CancellationToken
PublicKeyToken
Ldtoken
get_LeaveInnerStreamOpen
leaveInnerStreamOpen
OPTIONS_Frozen
ThrowIfFrozen
throwIfFrozen
frozen
X509Chain
m_keyChain
AppDomain
get_CurrentDomain
Constrain
EpochOrigin
SeekOrigin
get_Icon
set_Icon
ExtractAssociatedIcon
ToolTipIcon
MessageBoxIcon
NotifyIcon
InputUnion
IExtension
fileExtension
BufferExtension
ProtoBehaviorExtension
GetExtension
GetFileNameWithoutExtension
extension
ILVersion
get_OSVersion
get_Version
set_Version
get_MetaDataVersion
set_MetaDataVersion
metaDataVersion
get_MetadataVersion
metadataVersion
AssemblyFileVersion
get_ImageRuntimeVersion
set_ImageRuntimeVersion
imageRuntimeVersion
AssemblyInformationalVersion
ilVersion
ipVersion
AssemblyVersion
GetConversion
Compression
ClientIdentification
get_Application
set_Application
application
System.Security.Authentication
get_Location
System.Net.NetworkInformation
UnicastIPAddressInformation
GatewayIPAddressInformation
OnCombination
destination
DispatchOperation
dispatchOperation
ClientOperation
clientOperation
operation
ReadDuration
WriteDuration
System.ServiceModel.Configuration
System.Configuration
AssemblyConfiguration
Gma.System.MouseKeyHook.Implementation
System.Globalization
System.Runtime.Serialization
System.Xml.Serialization
get_Action
set_Action
MouseAction
DoShutdownAction
ProcessAction
uAction
op_Subtraction
System.Reflection
ICollection
X509CertificateCollection
UnicastIPAddressInformationCollection
GatewayIPAddressInformationCollection
OperationDescriptionCollection
get_AppendToCollection
BindingParameterCollection
Antivirus Signature
Bkav Clean
Lionic Clean
Elastic malicious (high confidence)
Cynet Malicious (score: 100)
FireEye Generic.mg.6e88324fa975a177
CAT-QuickHeal Trojan.MsilFC.S15413537
McAfee GenericRXKZ-ZO!6E88324FA975
Cylance Clean
VIPRE Trojan.Win32.Generic!BT
Sangfor Suspicious.Win32.Save.a
K7AntiVirus Trojan ( 0056b6611 )
BitDefender IL:Trojan.MSILZilla.2050
K7GW Trojan ( 005690671 )
Cybereason malicious.fa975a
Baidu Clean
Cyren W32/MSIL_Mintluks.A.gen!Eldorado
ESET-NOD32 a variant of MSIL/Agent.BPH
APEX Malicious
Paloalto Clean
ClamAV Win.Packed.Passwordstealera-9792228-0
Kaspersky HEUR:Trojan.MSIL.Quasar.gen
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
MicroWorld-eScan IL:Trojan.MSILZilla.2050
Tencent Clean
Ad-Aware IL:Trojan.MSILZilla.2050
Sophos ML/PE-A + Mal/Quasar-A
Comodo Clean
F-Secure Clean
DrWeb Trojan.MulDrop13.10660
Zillya Clean
TrendMicro TSPY_TINCLEX.SM1
McAfee-GW-Edition BehavesLike.Win32.Generic.hh
CMC Clean
Emsisoft Trojan.Agent (A)
Ikarus Backdoor.Win32.Xiclog
GData MSIL.Backdoor.Quasar.B
Jiangmin Trojan.MSIL.oyqd
Webroot W32.Trojan.Quasar
Avira HEUR/AGEN.1135947
MAX malware (ai score=84)
Antiy-AVL Trojan/Generic.ASMalwS.309647D
Kingsoft Clean
Gridinsoft Spy.Win32.Keylogger.dd!n
Arcabit IL:Trojan.MSILZilla.D802
SUPERAntiSpyware Backdoor.Quasar/Variant
ZoneAlarm Clean
Microsoft Backdoor:MSIL/Quasar.GG!MTB
AhnLab-V3 Backdoor/Win32.QuasarRAT.R341693
Acronis Clean
BitDefenderTheta Gen:NN.ZemsilF.34170.Fm0@aiOKEBf
ALYac IL:Trojan.MSILZilla.2050
TACHYON Clean
VBA32 TScope.Trojan.MSIL
Malwarebytes Generic.Worm.Autorun.DDS
Panda Clean
Zoner Clean
TrendMicro-HouseCall TSPY_TINCLEX.SM1
Rising Clean
Yandex Trojan.Agent!G7aa6DAG9do
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.73405263.susgen
Fortinet MSIL/Agent.BPH!tr
AVG MSIL:Quasar-A [Rat]
Avast MSIL:Quasar-A [Rat]
CrowdStrike win/malicious_confidence_80% (D)
No IRMA results available.