Extracted

• gamesense+vacbypass.zip

  .zip

  Password: 123

• gamesense.exe

  .exe windows:4 windows x86 arch:x86

  Password: 123

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  PDB Paths

  C:\Users\1\Desktop\all\s\games\krytigame\obj\Release\nursultan.pdb

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 272KB - Virtual size: 272KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• loader+vacbypass.exe

  .exe windows:4 windows x86 arch:x86

  Password: 123

  c29ab370ed500debe05d495f2d8c12c2

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetTempPathA

  GetModuleFileNameA

  GetStdHandle

  SetConsoleMode

  GetConsoleMode

  Sleep

  SetConsoleTextAttribute

  GetTickCount

  SetConsoleCursorInfo

  SetConsoleCursorPosition

  GetVolumeInformationA

  ReadConsoleInputA

  WriteConsoleA

  LCMapStringW

  LCMapStringA

  SetEnvironmentVariableA

  CompareStringW

  ExitProcess

  TerminateProcess

  GetCurrentProcess

  GetCommandLineA

  GetVersion

  SetHandleCount

  GetFileType

  GetStartupInfoA

  GetLastError

  ReadFile

  SetFilePointer

  HeapFree

  CloseHandle

  GetFileAttributesA

  GetProcAddress

  GetModuleHandleA

  WriteFile

  UnhandledExceptionFilter

  FreeEnvironmentStringsA

  FreeEnvironmentStringsW

  WideCharToMultiByte

  GetEnvironmentStrings

  GetEnvironmentStringsW

  HeapDestroy

  HeapCreate

  VirtualFree

  RtlUnwind

  HeapAlloc

  SetStdHandle

  FlushFileBuffers

  VirtualAlloc

  HeapReAlloc

  CreateFileA

  GetExitCodeProcess

  WaitForSingleObject

  CreateProcessA

  MultiByteToWideChar

  GetStringTypeA

  GetStringTypeW

  GetCPInfo

  GetACP

  GetOEMCP

  LoadLibraryA

  SetEndOfFile

  CompareStringA

  user32

  FindWindowA

  GetDesktopWindow

  GetWindowRect

  SetWindowPos

  winmm

  timeGetTime

  Sections

  .text

  Size: 60KB - Virtual size: 59KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 8KB - Virtual size: 11.0MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 4KB - Virtual size: 16B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ