97f36207c47b8fbbf6995bb50eafd6df

PE Detect: PeReader OK (file layout)

Authenticode present at 0x14FA00 size 18872 bytes

Nwils

Nwils

System.Void Nwils.Collections.OperationalDictionary::FilterDictionary()

Nwils

ModuleDef

Windows

v4.0.30319

512

<null>

Nwils

1.0.580.23610

<null>

False

<null>

.NETFramework,Version=v4.6

0

System.Void Nwils.Collections.OperationalDictionary::FilterDictionary()

96

ldc.i4 1 stloc V_0 br IL_000E: ldloc V_0 ldloc V_0 switch dnlib.DotNet.Emit.Instruction[] br IL_009B: ldc.i4 -74124478 newobj System.Void Nwils.Collections.OperationalDictionary/ViewerMember::.ctor() stloc.s V_3 ldc.i4 0 ldsfld <Module>{de80400d-e5c9-4316-862e-48e756a57849} <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_cd55f25fe32d413bbb8d1f45ff702ebf ldfld System.Int32 <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_a67bf790c6a54b75b440996b82a2c8bb brtrue IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) pop <null> ldc.i4 0 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ldsfld System.Func`1<System.Byte[]> Nwils.Collections.OperationalDictionary/ExternalExecutor::executorUser dup <null> brtrue IL_00C8: newobj System.Void Nwils.Collectors.EventReceiver::.ctor(System.Func`1<System.Byte[]>) pop <null> ldc.i4 3 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ldc.i4 -74124637 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) stloc.s V_2 ldc.i4 2 ldsfld <Module>{de80400d-e5c9-4316-862e-48e756a57849} <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_cd55f25fe32d413bbb8d1f45ff702ebf ldfld System.Int32 <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_2767a7f8c48c4f94aa76345f6e49fb1a brtrue IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) pop <null> ldc.i4 2 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ldc.i4 -74124478 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) stloc.s V_1 ldc.i4 4 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ret <null> ldsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::commandMap ldftn System.Byte[] Nwils.Collections.OperationalDictionary/ExternalExecutor::ExecutePassiveStream() newobj System.Void System.Func`1<System.Byte[]>::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Func`1<System.Byte[]> Nwils.Collections.OperationalDictionary/ExternalExecutor::executorUser newobj System.Void Nwils.Collectors.EventReceiver::.ctor(System.Func`1<System.Byte[]>) ldloc.s V_3 ldloc.s V_1 ldloc.s V_2 newobj System.Void Nwils.Handling.ConfigurableHandler::.ctor(System.String,System.String) stfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::m_ProviderVerifier ldloc.s V_3 newobj System.Void Nwils.Handling.ObserverProfiler::.ctor() stfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_BufferInspector ldloc.s V_3 ldc.i4 -74124620 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) ldc.i4 -74124576 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) newobj System.Void Nwils.Collectors.ErrorDic::.ctor(System.String,System.String) stfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_ControllableMember dup <null> ldloc.s V_3 ldftn System.Void Nwils.Collections.OperationalDictionary/ViewerMember::AccessReadableCompressor(System.IO.MemoryStream) newobj System.Void System.Action`1<System.IO.MemoryStream>::.ctor(System.Object,System.IntPtr) callvirt System.Void Nwils.Collectors.EventReceiver::AcceptOperationalReceiver(System.Action`1<System.IO.MemoryStream>) ldloc.s V_3 ldfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::m_ProviderVerifier ldloc.s V_3 ldftn System.Void Nwils.Collections.OperationalDictionary/ViewerMember::InvokeSegmentedAnalyzer(System.IO.MemoryStream) newobj System.Void System.Action`1<System.IO.MemoryStream>::.ctor(System.Object,System.IntPtr) callvirt System.Void Nwils.Handling.ConfigurableHandler::ProcessGroupedHandler(System.Action`1<System.IO.MemoryStream>) ldloc.s V_3 ldfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_BufferInspector ldloc.s V_3 ldftn System.Void Nwils.Collections.OperationalDictionary/ViewerMember::AccessRandomGateway(System.Reflection.Assembly) newobj System.Void System.Action`1<System.Reflection.Assembly>::.ctor(System.Object,System.IntPtr) callvirt System.Void Nwils.Handling.ObserverProfiler::AddConnectedObserver(System.Action`1<System.Reflection.Assembly>) ldloc.s V_3 ldfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_ControllableMember ldsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::_PortableStruct dup <null> brfalse IL_0165: pop br IL_017C: callvirt System.Void Nwils.Collectors.ErrorDic::CloseReceiver(System.Action) pop <null> ldsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::commandMap ldftn System.Void Nwils.Collections.OperationalDictionary/ExternalExecutor::InsertExecutor() newobj System.Void System.Action::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::_PortableStruct callvirt System.Void Nwils.Collectors.ErrorDic::CloseReceiver(System.Action) callvirt System.Void Nwils.Collectors.EventReceiver::CollectLogicalReceiver() ldc.i4 5 ldsfld <Module>{de80400d-e5c9-4316-862e-48e756a57849} <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_cd55f25fe32d413bbb8d1f45ff702ebf ldfld System.Int32 <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_760432c6031f43818fda09b184cdce10 brtrue IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) pop <null> ldc.i4 0 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1)

Nwils

Nwils

System.Void Nwils.Collections.OperationalDictionary::FilterDictionary()

Nwils

ModuleDef

Windows

v4.0.30319

512

<null>

Nwils

1.0.580.23610

<null>

False

<null>

.NETFramework,Version=v4.6

0

System.Void Nwils.Collections.OperationalDictionary::FilterDictionary()

96

ldc.i4 1 stloc V_0 br IL_000E: ldloc V_0 ldloc V_0 switch dnlib.DotNet.Emit.Instruction[] br IL_009B: ldc.i4 -74124478 newobj System.Void Nwils.Collections.OperationalDictionary/ViewerMember::.ctor() stloc.s V_3 ldc.i4 0 ldsfld <Module>{de80400d-e5c9-4316-862e-48e756a57849} <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_cd55f25fe32d413bbb8d1f45ff702ebf ldfld System.Int32 <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_a67bf790c6a54b75b440996b82a2c8bb brtrue IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) pop <null> ldc.i4 0 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ldsfld System.Func`1<System.Byte[]> Nwils.Collections.OperationalDictionary/ExternalExecutor::executorUser dup <null> brtrue IL_00C8: newobj System.Void Nwils.Collectors.EventReceiver::.ctor(System.Func`1<System.Byte[]>) pop <null> ldc.i4 3 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ldc.i4 -74124637 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) stloc.s V_2 ldc.i4 2 ldsfld <Module>{de80400d-e5c9-4316-862e-48e756a57849} <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_cd55f25fe32d413bbb8d1f45ff702ebf ldfld System.Int32 <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_2767a7f8c48c4f94aa76345f6e49fb1a brtrue IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) pop <null> ldc.i4 2 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ldc.i4 -74124478 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) stloc.s V_1 ldc.i4 4 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) ret <null> ldsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::commandMap ldftn System.Byte[] Nwils.Collections.OperationalDictionary/ExternalExecutor::ExecutePassiveStream() newobj System.Void System.Func`1<System.Byte[]>::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Func`1<System.Byte[]> Nwils.Collections.OperationalDictionary/ExternalExecutor::executorUser newobj System.Void Nwils.Collectors.EventReceiver::.ctor(System.Func`1<System.Byte[]>) ldloc.s V_3 ldloc.s V_1 ldloc.s V_2 newobj System.Void Nwils.Handling.ConfigurableHandler::.ctor(System.String,System.String) stfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::m_ProviderVerifier ldloc.s V_3 newobj System.Void Nwils.Handling.ObserverProfiler::.ctor() stfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_BufferInspector ldloc.s V_3 ldc.i4 -74124620 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) ldc.i4 -74124576 call System.String Nwils.Execution.GenericExecutor::AttachExecutor(System.Int32) newobj System.Void Nwils.Collectors.ErrorDic::.ctor(System.String,System.String) stfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_ControllableMember dup <null> ldloc.s V_3 ldftn System.Void Nwils.Collections.OperationalDictionary/ViewerMember::AccessReadableCompressor(System.IO.MemoryStream) newobj System.Void System.Action`1<System.IO.MemoryStream>::.ctor(System.Object,System.IntPtr) callvirt System.Void Nwils.Collectors.EventReceiver::AcceptOperationalReceiver(System.Action`1<System.IO.MemoryStream>) ldloc.s V_3 ldfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::m_ProviderVerifier ldloc.s V_3 ldftn System.Void Nwils.Collections.OperationalDictionary/ViewerMember::InvokeSegmentedAnalyzer(System.IO.MemoryStream) newobj System.Void System.Action`1<System.IO.MemoryStream>::.ctor(System.Object,System.IntPtr) callvirt System.Void Nwils.Handling.ConfigurableHandler::ProcessGroupedHandler(System.Action`1<System.IO.MemoryStream>) ldloc.s V_3 ldfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_BufferInspector ldloc.s V_3 ldftn System.Void Nwils.Collections.OperationalDictionary/ViewerMember::AccessRandomGateway(System.Reflection.Assembly) newobj System.Void System.Action`1<System.Reflection.Assembly>::.ctor(System.Object,System.IntPtr) callvirt System.Void Nwils.Handling.ObserverProfiler::AddConnectedObserver(System.Action`1<System.Reflection.Assembly>) ldloc.s V_3 ldfld System.Object Nwils.Collections.OperationalDictionary/ViewerMember::_ControllableMember ldsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::_PortableStruct dup <null> brfalse IL_0165: pop br IL_017C: callvirt System.Void Nwils.Collectors.ErrorDic::CloseReceiver(System.Action) pop <null> ldsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::commandMap ldftn System.Void Nwils.Collections.OperationalDictionary/ExternalExecutor::InsertExecutor() newobj System.Void System.Action::.ctor(System.Object,System.IntPtr) dup <null> stsfld System.Object Nwils.Collections.OperationalDictionary/ExternalExecutor::_PortableStruct callvirt System.Void Nwils.Collectors.ErrorDic::CloseReceiver(System.Action) callvirt System.Void Nwils.Collectors.EventReceiver::CollectLogicalReceiver() ldc.i4 5 ldsfld <Module>{de80400d-e5c9-4316-862e-48e756a57849} <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_cd55f25fe32d413bbb8d1f45ff702ebf ldfld System.Int32 <Module>{de80400d-e5c9-4316-862e-48e756a57849}::m_760432c6031f43818fda09b184cdce10 brtrue IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1) pop <null> ldc.i4 0 br IL_0012: switch(IL_009B,IL_0034,IL_005A,IL_00B2,IL_0070,IL_00B1)