Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 8ef54fc0813e6cefdddd416168e6c052 --

Hashes
MD5: 8ef54fc0813e6cefdddd416168e6c052
SHA1: 512134dafb855095564b7330d93b7e1718b246e4
SHA256: c64390be932306cb91ced5267ded12fef73bff27a56595f6851ec4c91862a4ba
SSDEEP: 384:Kd2Op0wWQhgKuqdOfUSdoMbYGf73uR1mQ1Ljcf5Ka5ZLOLDL2Zg0vDmbFz1q1LHq:xOp0wWQhgKcPoMbYq7qhj25h5dK303re
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/NETexecutableMicrosoft | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings
		!This program cannot be run in DOS mode.
`.rsrc
@.reloc
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
v2.0.50727
#Strings
<Module>
WindowsFormsApplication10.exe
Program
WindowsFormsApplication10
doSendAdmire
Settings
WindowsFormsApplication10.Properties
Resources
WebClickSound
mscorlib
System
Object
System.Windows.Forms
MulticastDelegate
System.Configuration
ApplicationSettingsBase
Password
status
Filename
Filestatus
counter
System.Collections.Generic
Dictionary`2
TrackingList
System.Threading
Thread
worker
EventArgs
Form1_Load
buttonStart_Click
checkLogin
ManualResetEvent
locker
Admire
SendAdmire
unlock
buttonPause_Click
buttonStop_Click
buttonFile_Click
Form1_Activated
Form1_Deactivate
FormClosingEventArgs
Form1_FormClosing
LinkLabelLinkClickedEventArgs
linkLabel1_LinkClicked
System.ComponentModel
IContainer
components
Dispose
InitializeComponent
Button
buttonStart
buttonStop
buttonPause
buttonFile
TextBox
textBoxLogin
textBoxPassword
textBoxID
WebBrowser
webBrowser1
labelStatus
label1
label2
label3
label4
LinkLabel
linkLabel1
label5
Invoke
IAsyncResult
AsyncCallback
BeginInvoke
EndInvoke
defaultInstance
get_Default
Default
System.Resources
ResourceManager
resourceMan
System.Globalization
CultureInfo
resourceCulture
get_ResourceManager
get_Culture
set_Culture
Culture
get_Enabled
set_Enabled
Enabled
sender
disposing
object
method
callback
result
System.Reflection
AssemblyTitleAttribute
AssemblyDescriptionAttribute
AssemblyConfigurationAttribute
AssemblyCompanyAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyTrademarkAttribute
AssemblyCultureAttribute
System.Runtime.InteropServices
ComVisibleAttribute
GuidAttribute
AssemblyVersionAttribute
AssemblyFileVersionAttribute
System.Diagnostics
DebuggableAttribute
DebuggingModes
System.Runtime.CompilerServices
CompilationRelaxationsAttribute
RuntimeCompatibilityAttribute
STAThreadAttribute
Application
EnableVisualStyles
SetCompatibleTextRenderingDefault
LinkCollection
get_Links
Control
get_Text
String
Equals
MessageBox
DialogResult
MessageBoxButtons
MessageBoxIcon
get_Count
System.Core
System.Linq
Enumerable
IEnumerable`1
ElementAt
KeyValuePair`2
get_Key
Concat
Navigate
WebBrowserDocumentCompletedEventHandler
add_DocumentCompleted
remove_DocumentCompleted
ThreadStart
WaitHandle
WaitOne
Delegate
ToString
ContainsKey
set_Text
EventWaitHandle
ThreadState
get_ThreadState
System.IO
StreamWriter
Enumerator
GetEnumerator
get_Current
TextWriter
WriteLine
MoveNext
IDisposable
op_Equality
OpenFileDialog
FileDialog
set_Filter
CommonDialog
ShowDialog
get_FileName
StreamReader
OpenText
TextReader
ReadLine
get_Link
get_LinkData
Process
SuspendLayout
System.Drawing
set_Location
set_Name
set_Size
set_TabIndex
ButtonBase
set_UseVisualStyleBackColor
EventHandler
add_Click
AnchorStyles
set_Anchor
set_MinimumSize
set_AutoSize
FontStyle
GraphicsUnit
set_Font
set_TabStop
LinkLabelLinkClickedEventHandler
add_LinkClicked
ContainerControl
set_AutoScaleDimensions
AutoScaleMode
set_AutoScaleMode
set_ClientSize
ControlCollection
get_Controls
set_MaximizeBox
set_MaximumSize
SizeGripStyle
set_SizeGripStyle
add_Load
add_Activated
ResumeLayout
PerformLayout
CompilerGeneratedAttribute
System.CodeDom.Compiler
GeneratedCodeAttribute
.cctor
SettingsBase
Synchronized
DebuggerNonUserCodeAttribute
RuntimeTypeHandle
GetTypeFromHandle
Assembly
get_Assembly
EditorBrowsableAttribute
EditorBrowsableState
Microsoft.Win32
Registry
RegistryKey
CurrentUser
OpenSubKey
GetValue
IsNullOrEmpty
op_Inequality
Environment
OperatingSystem
get_OSVersion
Version
get_Version
get_Major
get_Minor
RegistryValueKind
SetValue
WindowsFormsApplication10.Properties.Resources.resources
WindowsFormsApplication10.Form1.resources
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
9.0.0.0
3System.Resources.Tools.StronglyTypedResourceBuilder
2.0.0.0
WindowsFormsApplication10
Copyright 
 Dom 2010
$452466ac-74d2-4d79-bf31-3954cf0aaee7
1.0.0.0
WrapNonExceptionThrows
C:\Documents and Settings\KulasArt\Moje dokumenty\Visual Studio 2008\Projects\WindowsFormsApplication10\WindowsFormsApplication10\obj\Debug\WindowsFormsApplication10.pdb
_CorExeMain
mscoree.dll
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
  <assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
    <security>
      <requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
        <requestedExecutionLevel level="asInvoker" uiAccess="false"/>
      </requestedPrivileges>
    </security>
  </trustInfo>
</assembly>