0bc7ed8fa719c038dcdb23df2d272a93fa6ec0374fe62e1c374dd4f9d43a1148

Summary

Architecture IMAGE_FILE_MACHINE_AMD64
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date 2026-Apr-25 04:56:09
Detected languages English - United States
CompanyName Agzes
FileDescription AntiAFK-RBX • AntiAFK and Multi-Instance for Roblox
FileVersion 0.3.2.1
InternalName AntiAFK-RBX.exe
LegalCopyright © Agzes
OriginalFilename AntiAFK-RBX.exe
ProductName AntiAFK-RBX
ProductVersion 0.3.2.1

Plugin Output

Info Matching compiler(s): MASM/TASM - sig1(h)
Info Interesting strings found in the binary: Contains domain names:
  • canary.discord.com
  • discord.com
  • discordapp.com
  • github.com
  • githubusercontent.com
  • https://agzes.github.io
  • https://agzes.github.io/go/to/antiafk-rbx/notify
  • https://agzes.github.io/go/to/discord
  • https://discord.com
  • https://github.com
  • https://raw.githubusercontent.com
  • https://raw.githubusercontent.com/Agzes/AntiAFK-RBX/refs/heads/main/Announcement/announcement.json
  • https://raw.githubusercontent.com/Agzes/AntiAFK-RBX/refs/heads/main/Resources/tray-icon-off.png
  • https://raw.githubusercontent.com/Agzes/AntiAFK-RBX/refs/heads/main/version
  • https://sourceforge.net
  • ptb.discord.com
  • raw.githubusercontent.com
  • sourceforge.net
Malicious The PE contains functions mostly used by malware. [!] The program may be hiding some of its imports:
  • LoadLibraryW
  • GetProcAddress
Functions which can be used for anti-debugging purposes:
  • CreateToolhelp32Snapshot
  • FindWindowW
Code injection capabilities (PowerLoader):
  • GetWindowLongW
  • FindWindowW
Can access the registry:
  • RegDeleteKeyW
  • RegCreateKeyExW
  • RegSetValueExW
  • RegOpenKeyExW
  • RegQueryValueExW
  • RegCloseKey
Possibly launches other programs:
  • ShellExecuteW
Uses functions commonly found in keyloggers:
  • MapVirtualKeyW
  • GetAsyncKeyState
  • AttachThreadInput
  • GetForegroundWindow
Has Internet access capabilities:
  • InternetOpenW
  • InternetOpenUrlW
  • InternetCrackUrlW
  • InternetReadFile
  • InternetSetOptionW
  • InternetConnectW
  • InternetCloseHandle
Manipulates other processes:
  • Process32FirstW
  • Process32NextW
  • OpenProcess
Can take screenshots:
  • GetDC
  • FindWindowW
  • CreateCompatibleDC
  • BitBlt
Reads the contents of the clipboard:
  • GetClipboardData
Safe VirusTotal score: 0/69 (Scanned on 2026-07-03 15:34:36) All the AVs think this file is safe.

Hashes

MD5 da514aa508d4a619b832d04b666ad982
SHA1 b92f8a2e914f46a695dcca68714310e75c08fba5
SHA256 0bc7ed8fa719c038dcdb23df2d272a93fa6ec0374fe62e1c374dd4f9d43a1148
SHA3 fb4a44a3b3495187a97900cde0df1b847acf036dfe9df9d83f7001fd7164e938
SSDeep 6144:w4h065iL4afufFu475sfCGt0j2Es6H33cbMOuUa/:jh0Vun70ej2EsLAO
Imports Hash 97ed8faa234878a293ae0358f63509d4

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0x100

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_AMD64
NumberofSections 6
TimeDateStamp 2026-Apr-25 04:56:09
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xf0
Characteristics IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Image Optional Header

Magic PE32+
LinkerVersion 14.0
SizeOfCode 0x3c600
SizeOfInitializedData 0x22c00
SizeOfUninitializedData 0
AddressOfEntryPoint 0x000000000003BA38 (Section: .text)
BaseOfCode 0x1000
ImageBase 0x140000000
SectionAlignment 0x1000
FileAlignment 0x200
OperatingSystemVersion 6.0
ImageVersion 0.0
SubsystemVersion 6.0
Win32VersionValue 0
SizeOfImage 0x64000
SizeOfHeaders 0x400
Checksum 0
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 68d295df70e88b37783d21758d8a7cd2
SHA1 f5a6449a967c9aa9810a69caa6c444d8bc523e10
SHA256 ae83172cd8860107ecddf5f951b3156ab9883fa0272cfb86b08615270412e759
SHA3 0b03049acf51d19e7c2ca34b5e3b4b683e26de6bcc698dcd9223f271678d5d3d
VirtualSize 0x3c5bf
VirtualAddress 0x1000
SizeOfRawData 0x3c600
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 6.423

.rdata

MD5 e1d72313ee50e6083641b9c7df9640d1
SHA1 379ec53a4d373ec8558b7647cd6f868d867bca40
SHA256 be80b3cb02d7d43560523f1b37b817d5eaddfcbc74d326b6b4d9a23b5e6e8f2b
SHA3 3a559dbce81fb8db84bc6c407a91d775af979e22a61b47c20bee989aff6a3ffc
VirtualSize 0x186fe
VirtualAddress 0x3e000
SizeOfRawData 0x18800
PointerToRawData 0x3ca00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.72221

.data

MD5 887dbe33a291143e91098f21137d8055
SHA1 55e9cab98f7255afb00f2717bb58d20c37110283
SHA256 cb2608b18f0a933abf6d9df1676f9ce5c6c5b883225102dc721f91a47a4a09a3
SHA3 88139c1135558d92fb8692a9453420b088bc76e5774d8ddd85477667a8f57f6d
VirtualSize 0x1160
VirtualAddress 0x57000
SizeOfRawData 0xc00
PointerToRawData 0x55200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 3.34568

.pdata

MD5 1206cc54ca005a3269ae50f4a26266fa
SHA1 f23d1b5e6dfc000fe8f599520e310cd68f5ab3a2
SHA256 2542b197e263917d5d49ed4c043f8755259675896895f622522659bea467d6b4
SHA3 6d69c410ab1781e22ef966a1257a7338b261db72f02b8f77c6efbeb860e607f4
VirtualSize 0x1374
VirtualAddress 0x59000
SizeOfRawData 0x1400
PointerToRawData 0x55e00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 5.24623

.rsrc

MD5 b83d5b6de74bfa24bc30d701f2a7d138
SHA1 cef152221aaa6b5c991e36cfda647c08768349b8
SHA256 bdb3178b2eececbc95e1d2af5df16415cad930b33dbaaeeb6b148fc50c644486
SHA3 c199ac3375c74f2d8554842e4dace4d602408b827386699df3de7b94f201fdd4
VirtualSize 0x7ac8
VirtualAddress 0x5b000
SizeOfRawData 0x7c00
PointerToRawData 0x57200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 7.25686

.reloc

MD5 3195ce87b74423c9f8f26ee31f1273f6
SHA1 514203c712df014bbf675b3c2dd97eb0cef75edd
SHA256 624127d638a0b9bc55aafc2a8f937f6567535051dd6220f9faa9782cdfcac253
SHA3 dccc0c220c29f3290dbc1842998c48cfd45a78820a9ce2c34b569b22ffaf96ec
VirtualSize 0x130
VirtualAddress 0x63000
SizeOfRawData 0x200
PointerToRawData 0x5ee00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Entropy 3.7389

Imports

KERNEL32.dll GlobalLock
LocalFree
SetThreadExecutionState
GetModuleHandleW
FreeLibrary
WideCharToMultiByte
lstrcpyW
GetTickCount
GlobalUnlock
AllocConsole
MulDiv
OpenThread
WriteConsoleW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
SetUnhandledExceptionFilter
SleepConditionVariableSRW
LoadLibraryW
FreeConsole
CloseHandle
Process32FirstW
Process32NextW
AttachConsole
GetLastError
GetTickCount64
GetProcAddress
FormatMessageW
Sleep
MultiByteToWideChar
CreateToolhelp32Snapshot
OpenProcess
ResumeThread
SuspendThread
GetCurrentThreadId
GetFileAttributesW
WaitForSingleObject
Thread32First
CreateMutexW
Thread32Next
GetModuleFileNameW
TerminateProcess
lstrcpynW
GetCommandLineW
GetStdHandle
GetExitCodeProcess
USER32.dll SetForegroundWindow
UpdateWindow
PtInRect
LoadImageW
GetWindowLongW
GetWindowThreadProcessId
GetWindowTextLengthW
GetMessageW
DefWindowProcW
GetKeyState
PostMessageW
MapVirtualKeyW
MonitorFromPoint
GetWindow
GetLastInputInfo
GetWindowRect
DestroyWindow
InflateRect
GetDC
IsWindowVisible
SetWindowPos
keybd_event
MonitorFromWindow
SetWindowLongPtrW
SetWindowRgn
HideCaret
FillRect
CreateWindowExW
ScreenToClient
SendMessageW
GetSystemMetrics
CreatePopupMenu
GetWindowLongPtrW
DestroyCursor
TrackPopupMenu
SetCaretPos
ShowWindow
GetClassInfoW
IsWindow
GetAsyncKeyState
OpenClipboard
DispatchMessageW
SetTimer
RedrawWindow
IsDialogMessageW
DestroyIcon
GetMonitorInfoW
ClientToScreen
CloseClipboard
CreateCaret
RegisterClassW
TrackMouseEvent
AttachThreadInput
GetForegroundWindow
AdjustWindowRect
EnumWindows
DestroyMenu
SetLayeredWindowAttributes
SetFocus
BringWindowToTop
TranslateMessage
GetClipboardData
LoadIconW
FindWindowW
LoadCursorW
DestroyCaret
GetClassNameW
mouse_event
AnimateWindow
SetCursor
SetWindowLongW
GetClientRect
AppendMenuW
DrawTextW
DrawIconEx
ShowCaret
KillTimer
PostQuitMessage
GetDesktopWindow
SystemParametersInfoW
GetWindowTextW
EnableWindow
EndPaint
BeginPaint
InvalidateRect
IsIconic
SetCursorPos
GetCursorPos
ReleaseDC
GDI32.dll GetDeviceCaps
CreateRoundRectRgn
GetStockObject
GetPixel
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
BitBlt
DeleteDC
SetTextColor
GetTextExtentPoint32W
SetBkMode
DeleteObject
CreateSolidBrush
CreateFontW
GetObjectA
COMDLG32.dll GetSaveFileNameW
GetOpenFileNameW
ADVAPI32.dll RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
SHELL32.dll ShellExecuteW
CommandLineToArgvW
Shell_NotifyIconW
ole32.dll CoCreateInstance
CoInitializeEx
CoUninitialize
MSVCP140.dll ?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_K@Z
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?good@ios_base@std@@QEBA_NXZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
_Cnd_signal
_Query_perf_frequency
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?_Throw_Cpp_error@std@@YAXH@Z
?uncaught_exceptions@std@@YAHXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Xbad_alloc@std@@YAXXZ
?_Xinvalid_argument@std@@YAXPEBD@Z
?_Id_cnt@id@locale@std@@0HA
?_Xout_of_range@std@@YAXPEBD@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?_Xlength_error@std@@YAXPEBD@Z
_Mtx_lock
_Cnd_do_broadcast_at_thread_exit
_Thrd_id
_Query_perf_counter
_Thrd_detach
_Thrd_join
_Mtx_unlock
_Cnd_broadcast
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
dwmapi.dll DwmExtendFrameIntoClientArea
DwmSetWindowAttribute
WINMM.dll timeKillEvent
timeSetEvent
gdiplus.dll GdipDeleteBrush
GdipAlloc
GdipDeletePath
GdipSetSmoothingMode
GdipCreatePath
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipFillPath
GdipDrawLine
GdipDrawRectangle
GdipSetPixelOffsetMode
GdipFillRectangle
GdipClosePathFigure
GdipCreateFontFromDC
GdipFree
GdipCreateStringFormat
GdipDrawString
GdipCreateFromHDC
GdipAddPathLine
GdipFillEllipseI
GdipSetTextRenderingHint
GdiplusShutdown
GdipStringFormatGetGenericTypographic
GdipCloneBrush
GdipMeasureString
GdipAddPathArc
GdipDeleteGraphics
GdipDeleteStringFormat
GdipDeleteFont
GdipDeletePen
GdipCreatePen1
GdipSetStringFormatAlign
GdipDrawLineI
GdipSetStringFormatFlags
GdipCreateFontFromLogfontA
GdiplusStartup
GdipDrawPath
GdipCreateSolidFill
WININET.dll HttpQueryInfoW
InternetOpenW
InternetOpenUrlW
InternetCrackUrlW
InternetReadFile
InternetSetOptionW
InternetConnectW
InternetCloseHandle
HttpSendRequestW
HttpOpenRequestW
VCRUNTIME140_1.dll __CxxFrameHandler4
VCRUNTIME140.dll __std_terminate
__std_exception_destroy
__std_exception_copy
memcmp
_CxxThrowException
__C_specific_handler
__current_exception_context
__current_exception
memset
memmove
memcpy
api-ms-win-crt-stdio-l1-1-0.dll fclose
fflush
__p__commode
_get_stream_buffer_pointers
_fseeki64
__stdio_common_vswprintf_s
__stdio_common_vsprintf_s
fgetc
fputc
fread
fsetpos
fwrite
_set_fmode
ungetc
fgetpos
setvbuf
api-ms-win-crt-heap-l1-1-0.dll free
_set_new_mode
_callnewh
malloc
api-ms-win-crt-string-l1-1-0.dll wcscmp
strlen
wcscpy_s
towlower
_wcsicmp
isspace
iswspace
wcslen
iswcntrl
api-ms-win-crt-convert-l1-1-0.dll _wtoi
wcstoull
wcstol
_itow_s
strtol
api-ms-win-crt-runtime-l1-1-0.dll _register_thread_local_exe_atexit_callback
_set_app_type
_c_exit
_initterm
_cexit
_errno
_get_narrow_winmain_command_line
_exit
exit
_initialize_narrow_environment
_seh_filter_exe
terminate
_crt_atexit
_configure_narrow_argv
_initialize_onexit_table
_register_onexit_function
_initterm_e
_beginthreadex
api-ms-win-crt-utility-l1-1-0.dll rand
api-ms-win-crt-filesystem-l1-1-0.dll _unlock_file
_lock_file
api-ms-win-crt-math-l1-1-0.dll cos
sinf
__setusermatherr
api-ms-win-crt-locale-l1-1-0.dll _configthreadlocale

Delayed Imports

1

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x41a9
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.8708
Detected Filetype PNG graphic file
MD5 7a382a7dad9e79208be48d9f74a32252
SHA1 100eeef05d77f7a28b1bb4aeb3f3275c43fc8c04
SHA256 0cb8eccc3722c30dc288fe4ef24e7873e23ca7f426de509ae3f7ea038229e725
SHA3 e7088fef35b123409093623c39d9d6bf9fda3523c02018e802c5bd3d4985e02a

2

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.78173
MD5 95abfd153bfb0ed8fc5039100532c2ba
SHA1 bd720f799f0df0be2bbcb90fb9ca660c94a9a296
SHA256 c619d19dd7bf1bb293ee7034d26fd55f6db1ef5c7e12e4893e613fc80d6547b4
SHA3 1f86d691a384b787dc1e795cc8c51b4e4abd4fe20647b5a2b2c24f6210efbdd8

3

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 6.44835
MD5 f50b89bb15b5b984e3a3df817a8395a4
SHA1 66368570797cbdefd9b0d2b8761589bed16c8519
SHA256 f969e9c702776bbbccfb447a65a7326dfe51f00c19990e48ab4e2b122363a653
SHA3 dafa7a1c479f239c855b733f4b8abd721efdcf16a991cbf0409baae212875cba

4

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.36024
MD5 18682dbce4357c6dae363a093251c4b6
SHA1 f44c617876c9c83a4d84d35b7b01501752720799
SHA256 d2cb82658b7ab88e021b30d494d3f2c66c0f5cb45227642783c5be4b346b398c
SHA3 03f0104236829dbd9f55569d4b90b0a3811964634a14296715462ff0b9f04111

101

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.51664
Detected Filetype Icon file
MD5 66bf8b015e21aacc50305ebc6c4ed706
SHA1 ae2b72cfbddb933c2e93f685f88a2ef42b6df03e
SHA256 3d5b9c87d723eda15ff9e52cadc30d238d91089c8c555f11bdc60d6896096c57
SHA3 cfcdad30d90e51a9bd174378adc1fa083f2a3c4bc18f70fddb1ed887986e704c

102

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.94375
Detected Filetype Icon file
MD5 d3bdbb19efa0630f837601a23f30ff3d
SHA1 f9513900fbb276100e1fcb1b798616c0ae0d4bc6
SHA256 852391035320228f8de3412c040f63d082abc6cc8ab8d715d1d5a92c243cbd97
SHA3 d64b14bf272ad71e0c7853722283bb1c1c821b983a886b63a7999ba1060420b6

103

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.94375
Detected Filetype Icon file
MD5 84c3cc2a9e3bd387754b60b052e63efe
SHA1 23bc2baff4dc0afe221240187fa7c6cc478591aa
SHA256 e30dc85dc21227ef94c3452d2c60b9cc6407e146e398ca1ee54b10cdc902f003
SHA3 4a99c48084141ff7c92f1731894df05e896b627a2af841c1474f93036cc2deaa

104

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.94375
Detected Filetype Icon file
MD5 646ee6c17dad0561deeb0878852397e0
SHA1 82215d1178ef0d17d52bf88a0ea0428399b664a7
SHA256 727d822da76c2448d4d96254d3e0f79162c38fa09e1104fd40d24fc03aad4bcb
SHA3 368b010dfda2ec1b2ec377b741bd3dc6f52a085e22fc25f6b1bd67853d2c11cd

1 (#2)

Type RT_VERSION
Language English - United States
Codepage UNKNOWN
Size 0x2f0
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.46989
MD5 2b177ed52e0ede92fd8102fb34a294ca
SHA1 ca9c7b32b66b3379db8b77b011d04f92bbad73d8
SHA256 72c460d9884450a6aa963ab39f0f45165bdc0da851c2fc37cd5dcf5d85d05c50
SHA3 c5f03f779cc1745853726d386b33b03b39b0de92125f18d04de6d6093d6fb70c

1 (#3)

Type RT_MANIFEST
Language English - United States
Codepage UNKNOWN
Size 0x17d
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.91161
MD5 1e4a89b11eae0fcf8bb5fdd5ec3b6f61
SHA1 4260284ce14278c397aaf6f389c1609b0ab0ce51
SHA256 4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df
SHA3 4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353

Version Info

Signature 0xfeef04bd
StructVersion 0x10000
FileVersion 0.3.2.1
ProductVersion 0.3.2.1
FileFlags (EMPTY)
FileOs VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
FileType VFT_APP
Language English - United States
CompanyName Agzes
FileDescription AntiAFK-RBX • AntiAFK and Multi-Instance for Roblox
FileVersion (#2) 0.3.2.1
InternalName AntiAFK-RBX.exe
LegalCopyright © Agzes
OriginalFilename AntiAFK-RBX.exe
ProductName AntiAFK-RBX
ProductVersion (#2) 0.3.2.1
Resource LangID English - United States

IMAGE_DEBUG_TYPE_POGO

Characteristics 0
TimeDateStamp 2026-Apr-25 04:56:09
Version 0.0
SizeofData 800
AddressOfRawData 0x4ff9c
PointerToRawData 0x4e99c

TLS Callbacks

Load Configuration

Size 0x140
TimeDateStamp 1970-Jan-01 00:00:00
Version 0.0
GlobalFlagsClear (EMPTY)
GlobalFlagsSet (EMPTY)
CriticalSectionDefaultTimeout 0
DeCommitFreeBlockThreshold 0
DeCommitTotalFreeThreshold 0
LockPrefixTable 0
MaximumAllocationSize 0
VirtualMemoryThreshold 0
ProcessAffinityMask 0
ProcessHeapFlags (EMPTY)
CSDVersion 0
Reserved1 0
EditList 0
SecurityCookie 0x140057040

RICH Header

XOR Key 0x8f3ec288
Unmarked objects 0
Imports (VS2008 SP1 build 30729) 18
ASM objects (35403) 4
C objects (35403) 10
C++ objects (35403) 30
Imports (35403) 6
Imports (33145) 23
Total imports 430
C++ objects (LTCG) (35726) 1
Resource objects (35726) 1
151 1
Linker (35726) 1

Errors

Leave a comment

No comments yet.