General

Malware Config

Signatures

Files

• Verse_crack_from_feds_and_nex.rar

  .rar

  Password: cracked

• Verse crack from feds and nex/Injector.exe

  .exe windows:6 windows x64 arch:x64

  Password: cracked

  14c50bc42b703c5d594911d72a859ed2

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  kernel32

  VirtualAllocEx

  CreateRemoteThread

  SetConsoleTitleA

  GetCurrentProcess

  OpenProcess

  GetProcAddress

  CreateProcessA

  FindClose

  CloseHandle

  LoadLibraryA

  Sleep

  WriteProcessMemory

  GetLocaleInfoEx

  FormatMessageA

  LocalFree

  FindFirstFileExW

  FindNextFileW

  AreFileApisANSI

  GetLastError

  GetModuleHandleW

  MultiByteToWideChar

  WideCharToMultiByte

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  TerminateProcess

  IsProcessorFeaturePresent

  IsDebuggerPresent

  InitializeSListHead

  GetSystemTimeAsFileTime

  GetCurrentThreadId

  GetCurrentProcessId

  QueryPerformanceCounter

  advapi32

  LookupPrivilegeValueA

  OpenProcessToken

  AdjustTokenPrivileges

  msvcp140

  ?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

  ?uncaught_exception@std@@YA_NXZ

  ?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A

  ?_Xlength_error@std@@YAXPEBD@Z

  ?_Syserror_map@std@@YAPEBDH@Z

  ?_Winerror_map@std@@YAHH@Z

  ?_Xout_of_range@std@@YAXPEBD@Z

  ?good@ios_base@std@@QEBA_NXZ

  ?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ

  ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

  ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ

  ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z

  ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ

  ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z

  vcruntime140_1

  __CxxFrameHandler4

  vcruntime140

  memcpy

  __std_terminate

  memmove

  __std_exception_destroy

  __std_exception_copy

  __C_specific_handler

  _CxxThrowException

  __current_exception

  __current_exception_context

  memset

  memcmp

  api-ms-win-crt-runtime-l1-1-0

  _register_thread_local_exe_atexit_callback

  _c_exit

  _cexit

  __p___argc

  exit

  _exit

  _initterm_e

  _initterm

  _initialize_narrow_environment

  _configure_narrow_argv

  _initialize_onexit_table

  _set_app_type

  _seh_filter_exe

  _register_onexit_function

  _crt_atexit

  terminate

  __p___argv

  _invalid_parameter_noinfo_noreturn

  _get_initial_narrow_environment

  api-ms-win-crt-heap-l1-1-0

  _set_new_mode

  _callnewh

  free

  malloc

  api-ms-win-crt-stdio-l1-1-0

  __p__commode

  _set_fmode

  _getcwd

  api-ms-win-crt-locale-l1-1-0

  _configthreadlocale

  ___lc_codepage_func

  api-ms-win-crt-math-l1-1-0

  __setusermatherr

  Sections

  .text

  Size: 22KB - Virtual size: 21KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 11KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1024B - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 488B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 172B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/Monitor Spoof/CRU.exe

  .exe windows:4 windows x86 arch:x86

  Password: cracked

  cafc89e1b0a9b2c5b10389d6d19936ce

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  setupapi

  SetupDiDestroyDeviceInfoList

  SetupDiEnumDeviceInfo

  SetupDiGetClassDevsA

  advapi32

  RegCloseKey

  RegCreateKeyExA

  RegDeleteKeyA

  RegDeleteValueA

  RegEnumKeyExA

  RegFlushKey

  RegOpenKeyExA

  RegQueryValueExA

  RegSetValueExA

  kernel32

  CloseHandle

  CompareStringA

  CreateEventA

  CreateFileA

  CreateThread

  DeleteCriticalSection

  DeleteFileA

  EnterCriticalSection

  EnumCalendarInfoA

  ExitProcess

  FindClose

  FindFirstFileA

  FindResourceA

  FormatMessageA

  FreeLibrary

  FreeResource

  GetACP

  GetCPInfo

  GetCommandLineA

  GetCurrentProcessId

  GetCurrentThreadId

  GetDateFormatA

  GetDiskFreeSpaceA

  GetEnvironmentStrings

  GetFileAttributesA

  GetFileType

  GetFullPathNameA

  GetLastError

  GetLocalTime

  GetLocaleInfoA

  GetModuleFileNameA

  GetModuleHandleA

  GetOEMCP

  GetProcAddress

  GetProcessHeap

  GetStartupInfoA

  GetStdHandle

  GetStringTypeA

  GetStringTypeW

  GetSystemDefaultLangID

  GetThreadLocale

  GetTickCount

  GetUserDefaultLCID

  GetVersion

  GetVersionExA

  GlobalAddAtomA

  GlobalDeleteAtom

  GlobalFindAtomA

  HeapAlloc

  HeapFree

  InitializeCriticalSection

  InterlockedDecrement

  InterlockedExchange

  InterlockedIncrement

  IsValidLocale

  LCMapStringA

  LeaveCriticalSection

  LoadLibraryA

  LoadLibraryExA

  LoadResource

  LockResource

  MulDiv

  MultiByteToWideChar

  RaiseException

  ReadFile

  ResetEvent

  RtlUnwind

  SetConsoleCtrlHandler

  SetEndOfFile

  SetErrorMode

  SetEvent

  SetFilePointer

  SetHandleCount

  SetLastError

  SetThreadLocale

  SizeofResource

  Sleep

  TlsAlloc

  TlsFree

  TlsGetValue

  TlsSetValue

  UnhandledExceptionFilter

  VirtualAlloc

  VirtualFree

  VirtualQuery

  WaitForSingleObject

  WideCharToMultiByte

  WriteFile

  lstrcpyA

  lstrcpynA

  lstrlenA

  version

  GetFileVersionInfoA

  GetFileVersionInfoSizeA

  VerQueryValueA

  comctl32

  ImageList_Add

  ImageList_BeginDrag

  ImageList_Destroy

  ImageList_DragEnter

  ImageList_DragLeave

  ImageList_DragMove

  ImageList_DragShowNolock

  ImageList_Draw

  ImageList_DrawEx

  ImageList_EndDrag

  ImageList_GetBkColor

  ImageList_GetDragImage

  ImageList_GetIconSize

  ImageList_GetImageCount

  ImageList_Read

  ImageList_Remove

  ImageList_Replace

  ImageList_SetBkColor

  ImageList_SetIconSize

  ImageList_Write

  _TrackMouseEvent

  ImageList_Create

  comdlg32

  GetOpenFileNameA

  GetSaveFileNameA

  gdi32

  BitBlt

  CreateBitmap

  CreateBrushIndirect

  CreateCompatibleBitmap

  CreateCompatibleDC

  CreateDIBSection

  CreateDIBitmap

  CreateFontIndirectA

  CreateHalftonePalette

  CreatePalette

  CreatePenIndirect

  CreateSolidBrush

  DeleteDC

  DeleteObject

  Ellipse

  ExcludeClipRect

  ExtTextOutA

  GetBitmapBits

  GetBrushOrgEx

  GetClipBox

  GetCurrentPositionEx

  GetDCOrgEx

  GetDIBColorTable

  GetDIBits

  GetDeviceCaps

  GetObjectA

  GetPaletteEntries

  GetPixel

  GetRgnBox

  GetStockObject

  GetSystemPaletteEntries

  GetTextExtentPoint32A

  GetTextMetricsA

  GetWindowOrgEx

  IntersectClipRect

  LineTo

  MaskBlt

  MoveToEx

  PatBlt

  RealizePalette

  RectVisible

  Rectangle

  RestoreDC

  RoundRect

  SaveDC

  SelectClipRgn

  SelectObject

  SelectPalette

  SetBkColor

  SetBkMode

  SetBrushOrgEx

  SetDIBColorTable

  SetPixel

  SetROP2

  SetStretchBltMode

  SetTextColor

  SetViewportOrgEx

  SetWindowOrgEx

  StretchBlt

  UnrealizeObject

  user32

  ActivateKeyboardLayout

  AdjustWindowRectEx

  BeginPaint

  CallNextHookEx

  CallWindowProcA

  CharLowerA

  CharNextA

  CharToOemA

  CheckDlgButton

  CheckMenuItem

  ClientToScreen

  CreateIcon

  CreateMenu

  CreatePopupMenu

  CreateWindowExA

  DefFrameProcA

  DefMDIChildProcA

  DefWindowProcA

  DeleteMenu

  DestroyCursor

  DestroyIcon

  DestroyMenu

  DestroyWindow

  DispatchMessageA

  DispatchMessageW

  DrawEdge

  DrawFocusRect

  DrawFrameControl

  DrawIcon

  DrawIconEx

  DrawMenuBar

  DrawTextA

  EnableMenuItem

  EnableScrollBar

  EnableWindow

  EndPaint

  EnumChildWindows

  EnumThreadWindows

  EnumWindows

  EqualRect

  FillRect

  FindWindowA

  FrameRect

  GetActiveWindow

  GetCapture

  GetClassInfoA

  GetClassLongA

  GetClientRect

  GetCursor

  GetCursorPos

  GetDC

  GetDCEx

  GetDesktopWindow

  GetFocus

  GetForegroundWindow

  GetIconInfo

  GetKeyNameTextA

  GetKeyState

  GetKeyboardLayout

  GetKeyboardLayoutList

  GetKeyboardLayoutNameA

  GetKeyboardState

  GetKeyboardType

  GetLastActivePopup

  GetMenu

  GetMenuItemCount

  GetMenuItemID

  GetMenuItemInfoA

  GetMenuState

  GetMenuStringA

  GetMessagePos

  GetParent

  GetPropA

  GetScrollInfo

  GetScrollPos

  GetScrollRange

  GetSubMenu

  GetSysColor

  GetSysColorBrush

  GetSystemMenu

  GetTopWindow

  GetWindow

  GetWindowDC

  GetWindowLongA

  GetWindowLongW

  GetWindowPlacement

  GetWindowRect

  GetWindowTextA

  GetWindowThreadProcessId

  InflateRect

  InsertMenuA

  InsertMenuItemA

  IntersectRect

  InvalidateRect

  IsChild

  IsDialogMessageA

  IsDialogMessageW

  IsDlgButtonChecked

  IsIconic

  IsRectEmpty

  IsWindow

  IsWindowEnabled

  IsWindowUnicode

  IsWindowVisible

  IsZoomed

  KillTimer

  LoadBitmapA

  LoadCursorA

  LoadIconA

  LoadKeyboardLayoutA

  LoadStringA

  MapVirtualKeyA

  MapWindowPoints

  MessageBoxA

  OemToCharA

  OffsetRect

  PeekMessageA

  PeekMessageW

  PostMessageA

  PostQuitMessage

  PtInRect

  RedrawWindow

  RegisterClassA

  RegisterClipboardFormatA

  RegisterWindowMessageA

  ReleaseCapture

  ReleaseDC

  RemoveMenu

  RemovePropA

  ScreenToClient

  ScrollWindow

  SendMessageA

  SendMessageW

  SetActiveWindow

  SetCapture

  SetClassLongA

  SetCursor

  SetFocus

  SetForegroundWindow

  SetMenu

  SetMenuItemInfoA

  SetParent

  SetPropA

  SetRect

  SetScrollInfo

  SetScrollPos

  SetScrollRange

  SetTimer

  SetWindowLongA

  SetWindowLongW

  SetWindowPlacement

  SetWindowPos

  SetWindowTextA

  SetWindowsHookExA

  ShowOwnedPopups

  ShowScrollBar

  ShowWindow

  SystemParametersInfoA

  TrackPopupMenu

  TranslateMDISysAccel

  TranslateMessage

  UnhookWindowsHookEx

  UnregisterClassA

  UpdateWindow

  WaitMessage

  WindowFromPoint

  wsprintfA

  GetSystemMetrics

  oleaut32

  SafeArrayCreate

  SafeArrayGetLBound

  SafeArrayGetUBound

  SafeArrayPtrOfIndex

  SysAllocStringLen

  SysFreeString

  SysReAllocStringLen

  VariantChangeType

  VariantClear

  VariantCopy

  VariantInit

  Exports

  Exports

  @$xp$28Vistaaltfixunit@TVistaAltFix

  @Vistaaltfixunit@Finalization$qqrv

  @Vistaaltfixunit@Register$qqrv

  @Vistaaltfixunit@TVistaAltFix@

  @Vistaaltfixunit@TVistaAltFix@$bctr$qqrp18Classes@TComponent

  @Vistaaltfixunit@TVistaAltFix@$bdtr$qqrv

  @Vistaaltfixunit@TVistaAltFix@VistaWithTheme$qqrv

  @Vistaaltfixunit@initialization$qqrv

  _AddCEADataForm

  _AddDIDDataForm

  _AudioFormatForm

  _AudioFormatListForm

  _ColorimetryForm

  _CommonForm

  _DIDDetailedResolutionListForm

  _DetailedResolutionForm

  _DisplayForm

  _ExtensionBlockForm

  _FreeSyncRangeForm

  _HDMI2SupportForm

  _HDMIResolutionForm

  _HDMISupportForm

  _HDRStaticMetadataForm

  _PropertiesForm

  _SpeakerSetupForm

  _StandardResolutionForm

  _TVResolutionForm

  _TVResolutionListForm

  _TiledDisplayTopologyForm

  _VideoCapabilityForm

  __GetExceptDLLinfo

  ___CPPdebugHook

  Sections

  .text

  Size: 784KB - Virtual size: 788KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 164KB - Virtual size: 196KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .tls

  Size: 512B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 512B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .idata

  Size: 9KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .edata

  Size: 1KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 290KB - Virtual size: 290KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: - Virtual size: 48KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/Monitor Spoof/reset-all.exe

  .exe windows:5 windows x86 arch:x86

  Password: cracked

  32f33abb2edf5d9be4310f0050d459d0

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  MessageBoxW

  advapi32

  RegSetValueExW

  RegQueryValueExW

  RegDeleteValueW

  RegDeleteTreeW

  RegEnumValueW

  RegOpenKeyExW

  RegEnumKeyExW

  RegCloseKey

  kernel32

  TlsFree

  FlushFileBuffers

  GetLastError

  HeapFree

  HeapAlloc

  GetCommandLineW

  HeapSetInformation

  GetStartupInfoW

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  HeapCreate

  GetProcAddress

  GetModuleHandleW

  ExitProcess

  DecodePointer

  WriteFile

  GetStdHandle

  GetModuleFileNameW

  EncodePointer

  GetCPInfo

  InterlockedIncrement

  InterlockedDecrement

  GetACP

  GetOEMCP

  IsValidCodePage

  TlsAlloc

  TlsGetValue

  TlsSetValue

  SetLastError

  GetCurrentThreadId

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  SetHandleCount

  InitializeCriticalSectionAndSpinCount

  GetFileType

  DeleteCriticalSection

  QueryPerformanceCounter

  GetTickCount

  GetCurrentProcessId

  GetSystemTimeAsFileTime

  LeaveCriticalSection

  EnterCriticalSection

  LoadLibraryW

  WideCharToMultiByte

  LCMapStringW

  MultiByteToWideChar

  GetStringTypeW

  Sleep

  SetFilePointer

  GetConsoleCP

  GetConsoleMode

  RtlUnwind

  HeapSize

  IsProcessorFeaturePresent

  HeapReAlloc

  SetStdHandle

  WriteConsoleW

  CreateFileW

  CloseHandle

  Sections

  .text

  Size: 32KB - Virtual size: 31KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 10KB - Virtual size: 10KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 1024B - Virtual size: 944B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 3KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/Monitor Spoof/restart.exe

  .exe windows:5 windows x86 arch:x86

  Password: cracked

  cf4f510acda53bad738cb1d4e01b1c70

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  HeapSize

  IsProcessorFeaturePresent

  HeapReAlloc

  RtlUnwind

  CompareStringW

  GetConsoleMode

  GetConsoleCP

  SetFilePointer

  LoadLibraryW

  SetStdHandle

  GetStringTypeW

  WideCharToMultiByte

  WriteConsoleW

  CreateFileW

  IsWow64Process

  GetModuleFileNameW

  Sleep

  CreateProcessW

  CloseHandle

  CreateToolhelp32Snapshot

  Process32NextW

  Process32FirstW

  GetStartupInfoW

  TerminateProcess

  OpenProcess

  GetCurrentProcess

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  GetTickCount

  QueryPerformanceCounter

  GetFileType

  SetHandleCount

  GetLastError

  HeapFree

  HeapAlloc

  SetEnvironmentVariableW

  GetCurrentDirectoryW

  SetCurrentDirectoryW

  GetCommandLineW

  HeapSetInformation

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  GetCPInfo

  InterlockedIncrement

  InterlockedDecrement

  GetACP

  GetOEMCP

  IsValidCodePage

  EncodePointer

  TlsAlloc

  TlsGetValue

  TlsSetValue

  DecodePointer

  TlsFree

  GetModuleHandleW

  SetLastError

  GetCurrentThreadId

  GetProcAddress

  HeapCreate

  ExitProcess

  WriteFile

  GetStdHandle

  MultiByteToWideChar

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  InitializeCriticalSectionAndSpinCount

  DeleteCriticalSection

  LeaveCriticalSection

  EnterCriticalSection

  LCMapStringW

  FlushFileBuffers

  user32

  SetWindowPlacement

  GetWindowRect

  EnumWindows

  GetWindowPlacement

  SetWindowPos

  ShowWindow

  IsWindowVisible

  SetForegroundWindow

  DialogBoxParamW

  OpenInputDesktop

  FindWindowW

  GetClientRect

  CloseDesktop

  EndDialog

  FindWindowExW

  MessageBoxW

  UnregisterHotKey

  RegisterHotKey

  GetWindowThreadProcessId

  GetShellWindow

  PostMessageW

  advapi32

  RegCloseKey

  RegEnumKeyExW

  RegOpenKeyExW

  RegEnumValueW

  RegRenameKey

  RegDeleteTreeW

  RegDeleteValueW

  RegQueryValueExW

  RegCreateKeyExW

  AdjustTokenPrivileges

  DuplicateTokenEx

  LookupPrivilegeValueW

  CreateProcessWithTokenW

  OpenProcessToken

  RegSetValueExW

  setupapi

  SetupDiSetClassInstallParamsW

  SetupDiGetClassDevsW

  SetupDiEnumDeviceInfo

  SetupDiDestroyDeviceInfoList

  SetupDiCallClassInstaller

  Sections

  .text

  Size: 39KB - Virtual size: 38KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 12KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 479KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 5KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/Monitor Spoof/restart64.exe

  .exe windows:5 windows x64 arch:x64

  Password: cracked

  2a69fe822ced9bf301916c1307e497a9

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  kernel32

  HeapSize

  HeapReAlloc

  CompareStringW

  GetConsoleMode

  GetConsoleCP

  SetFilePointer

  LoadLibraryW

  SetStdHandle

  GetStringTypeW

  WideCharToMultiByte

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  GetTickCount

  WriteConsoleW

  CreateFileW

  IsWow64Process

  GetModuleFileNameW

  Sleep

  CreateProcessW

  CloseHandle

  CreateToolhelp32Snapshot

  Process32NextW

  Process32FirstW

  GetStartupInfoW

  TerminateProcess

  OpenProcess

  GetCurrentProcess

  QueryPerformanceCounter

  GetFileType

  SetHandleCount

  LCMapStringW

  EnterCriticalSection

  GetLastError

  HeapFree

  HeapAlloc

  SetEnvironmentVariableW

  GetCurrentDirectoryW

  SetCurrentDirectoryW

  GetCommandLineW

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  RtlVirtualUnwind

  RtlLookupFunctionEntry

  RtlCaptureContext

  GetCPInfo

  GetACP

  GetOEMCP

  IsValidCodePage

  EncodePointer

  FlsGetValue

  FlsSetValue

  FlsFree

  SetLastError

  GetCurrentThreadId

  FlsAlloc

  DecodePointer

  HeapSetInformation

  GetVersion

  HeapCreate

  GetProcAddress

  GetModuleHandleW

  ExitProcess

  WriteFile

  GetStdHandle

  MultiByteToWideChar

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  RtlUnwindEx

  InitializeCriticalSectionAndSpinCount

  DeleteCriticalSection

  LeaveCriticalSection

  FlushFileBuffers

  user32

  SetWindowPlacement

  GetWindowRect

  EnumWindows

  GetWindowPlacement

  SetWindowPos

  ShowWindow

  IsWindowVisible

  SetForegroundWindow

  DialogBoxParamW

  OpenInputDesktop

  FindWindowW

  GetClientRect

  CloseDesktop

  EndDialog

  FindWindowExW

  MessageBoxW

  UnregisterHotKey

  RegisterHotKey

  GetWindowThreadProcessId

  GetShellWindow

  PostMessageW

  advapi32

  RegCloseKey

  RegEnumKeyExW

  RegOpenKeyExW

  RegEnumValueW

  RegRenameKey

  RegDeleteTreeW

  RegDeleteValueW

  RegQueryValueExW

  RegCreateKeyExW

  AdjustTokenPrivileges

  DuplicateTokenEx

  LookupPrivilegeValueW

  CreateProcessWithTokenW

  OpenProcessToken

  RegSetValueExW

  setupapi

  SetupDiSetClassInstallParamsW

  SetupDiGetClassDevsW

  SetupDiEnumDeviceInfo

  SetupDiDestroyDeviceInfoList

  SetupDiCallClassInstaller

  Sections

  .text

  Size: 44KB - Virtual size: 43KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 16KB - Virtual size: 15KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 5KB - Virtual size: 521KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/Serialcheckers/Backup serialchecker/OPEN ME FOR INFORMATION.txt
• Verse crack from feds and nex/Serialcheckers/Backup serialchecker/Serialchecker.bat
• Verse crack from feds and nex/Serialcheckers/HOW TO USE (OPEN ME!!).txt
• Verse crack from feds and nex/Serialcheckers/Mac-checker.exe

  .exe windows:6 windows x64 arch:x64

  Password: cracked

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Sections

  Size: 41KB - Virtual size: 84KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  Size: 9KB - Virtual size: 27KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  Size: 512B - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  Size: 2KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  Size: 512B - Virtual size: 260B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

  .idata

  Size: 1024B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .themida

  Size: - Virtual size: 7.2MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .boot

  Size: 4.3MB - Virtual size: 4.3MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/Serialcheckers/Serialchecker.exe

  .exe windows:5 windows x64 arch:x64

  Password: cracked

  1af6c885af093afc55142c2f1761dbe8

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_GUARD_CF

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  user32

  CreateWindowExW

  MessageBoxW

  MessageBoxA

  SystemParametersInfoW

  DestroyIcon

  SetWindowLongPtrW

  GetWindowLongPtrW

  GetClientRect

  InvalidateRect

  ReleaseDC

  GetDC

  DrawTextW

  GetDialogBaseUnits

  EndDialog

  DialogBoxIndirectParamW

  MoveWindow

  SendMessageW

  comctl32

  ord380

  kernel32

  IsValidCodePage

  GetStringTypeW

  GetFileAttributesExW

  HeapReAlloc

  FlushFileBuffers

  GetCurrentDirectoryW

  GetACP

  GetOEMCP

  GetModuleHandleW

  MulDiv

  GetLastError

  SetDllDirectoryW

  GetModuleFileNameW

  CreateSymbolicLinkW

  GetProcAddress

  GetCommandLineW

  GetEnvironmentVariableW

  GetCPInfo

  ExpandEnvironmentStringsW

  CreateDirectoryW

  GetTempPathW

  WaitForSingleObject

  Sleep

  GetExitCodeProcess

  CreateProcessW

  GetStartupInfoW

  FreeLibrary

  LoadLibraryExW

  SetConsoleCtrlHandler

  FindClose

  FindFirstFileExW

  CloseHandle

  GetCurrentProcess

  LocalFree

  FormatMessageW

  MultiByteToWideChar

  WideCharToMultiByte

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  GetProcessHeap

  GetTimeZoneInformation

  HeapSize

  WriteConsoleW

  SetEndOfFile

  SetEnvironmentVariableW

  RtlUnwindEx

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  TerminateProcess

  IsProcessorFeaturePresent

  QueryPerformanceCounter

  GetCurrentProcessId

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  InitializeSListHead

  IsDebuggerPresent

  SetLastError

  EnterCriticalSection

  LeaveCriticalSection

  DeleteCriticalSection

  InitializeCriticalSectionAndSpinCount

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  EncodePointer

  RaiseException

  RtlPcToFileHeader

  GetCommandLineA

  CreateFileW

  GetDriveTypeW

  GetFileInformationByHandle

  GetFileType

  PeekNamedPipe

  SystemTimeToTzSpecificLocalTime

  FileTimeToSystemTime

  GetFullPathNameW

  RemoveDirectoryW

  FindNextFileW

  SetStdHandle

  DeleteFileW

  ReadFile

  GetStdHandle

  WriteFile

  ExitProcess

  GetModuleHandleExW

  HeapFree

  GetConsoleMode

  ReadConsoleW

  SetFilePointerEx

  GetConsoleOutputCP

  GetFileSizeEx

  HeapAlloc

  FlsAlloc

  FlsGetValue

  FlsSetValue

  FlsFree

  CompareStringW

  LCMapStringW

  advapi32

  OpenProcessToken

  GetTokenInformation

  ConvertStringSecurityDescriptorToSecurityDescriptorW

  ConvertSidToStringSidW

  gdi32

  SelectObject

  DeleteObject

  CreateFontIndirectW

  Sections

  .text

  Size: 167KB - Virtual size: 166KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 75KB - Virtual size: 74KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  _RDATA

  Size: 512B - Virtual size: 348B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 119KB - Virtual size: 118KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• Serialchecker.pyc
• Verse crack from feds and nex/Serialcheckers/Wifi & Bluetooth disabler/Disabler [Run Admin].bat
• Verse crack from feds and nex/Serialcheckers/macAddresses.json
• Verse crack from feds and nex/Serialcheckers/oldserials (keep me).json
• Verse crack from feds and nex/Verse V4.15.exe

  .exe windows:6 windows x64 arch:x64

  Password: cracked

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Sections

  Size: 717KB - Virtual size: 1.2MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  Size: 145KB - Virtual size: 335KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  Size: 908KB - Virtual size: 1.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  Size: 31KB - Virtual size: 52KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  Size: 33KB - Virtual size: 116KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  Size: 2KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

  .idata

  Size: 2KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .tls

  Size: 512B - Virtual size: 4KB

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 117KB - Virtual size: 117KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  TTS

  Size: - Virtual size: 40.0MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .boot

  Size: 28.1MB - Virtual size: 28.1MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 16B - Virtual size: 4KB

  IMAGE_SCN_MEM_READ

• Verse crack from feds and nex/rip.dll

  .dll windows:6 windows x64 arch:x64

  338477ddf18d17b552cbd727a79eb420

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_DLL

  Imports

  kernel32

  VirtualFree

  VirtualAlloc

  GetSystemInfo

  VirtualQuery

  HeapCreate

  HeapFree

  GetCurrentProcess

  Thread32Next

  Thread32First

  GetCurrentThreadId

  SuspendThread

  ResumeThread

  CreateToolhelp32Snapshot

  Sleep

  HeapReAlloc

  CloseHandle

  HeapAlloc

  GetThreadContext

  GetProcAddress

  GetCurrentProcessId

  GetModuleHandleW

  FlushInstructionCache

  SetThreadContext

  OpenThread

  GetModuleHandleA

  VirtualProtect

  TerminateProcess

  LoadLibraryA

  AcquireSRWLockExclusive

  InitializeSListHead

  GetSystemTimeAsFileTime

  QueryPerformanceCounter

  WakeAllConditionVariable

  SleepConditionVariableSRW

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsProcessorFeaturePresent

  IsDebuggerPresent

  ReleaseSRWLockExclusive

  user32

  BlockInput

  msvcp140

  _Thrd_sleep

  _Query_perf_counter

  _Thrd_detach

  _Xtime_get_ticks

  ?_Xbad_function_call@std@@YAXXZ

  ?_Throw_Cpp_error@std@@YAXH@Z

  _Query_perf_frequency

  ?_Xlength_error@std@@YAXPEBD@Z

  _Cnd_do_broadcast_at_thread_exit

  vcruntime140_1

  __CxxFrameHandler4

  vcruntime140

  __std_exception_destroy

  __std_type_info_destroy_list

  __current_exception

  memset

  memmove

  memcpy

  __std_terminate

  memcmp

  _CxxThrowException

  __std_exception_copy

  __C_specific_handler

  __current_exception_context

  api-ms-win-crt-runtime-l1-1-0

  _cexit

  _initterm

  _initterm_e

  _invalid_parameter_noinfo_noreturn

  _crt_atexit

  _beginthreadex

  _execute_onexit_table

  _register_onexit_function

  _initialize_narrow_environment

  _configure_narrow_argv

  _seh_filter_dll

  terminate

  _errno

  _initialize_onexit_table

  api-ms-win-crt-convert-l1-1-0

  strtoull

  strtod

  strtoll

  api-ms-win-crt-stdio-l1-1-0

  __stdio_common_vsprintf

  api-ms-win-crt-locale-l1-1-0

  localeconv

  api-ms-win-crt-heap-l1-1-0

  malloc

  _callnewh

  free

  api-ms-win-crt-math-l1-1-0

  _dclass

  Sections

  .text

  Size: 89KB - Virtual size: 88KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 19KB - Virtual size: 19KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 3KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 248B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 184B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ