Sample details: af9b7c2cf57a6030ca36d4440578cd65 --

Hashes
MD5: af9b7c2cf57a6030ca36d4440578cd65
SHA1: 23cfb169118d01613b0a59897813eefb310f8f28
SHA256: 44c48111fa9b6fd4f18f36938e897f63fd1a3594b5812f791f68f0893372ffa7
SSDEEP: 384:cd2Op0PWQhlKuqdOfUSdoMgrOvTH7BUVK3L0Zg0vDDbFz1qdLq23Uyv:nOp0PWQhlKcPoMgrir1+Kb2IjUyv
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/NETexecutableMicrosoft | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings
		!This program cannot be run in DOS mode.
`.rsrc
@.reloc
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
v2.0.50727
#Strings
<Module>
BP Admirer Bot.exe
Program
WindowsFormsApplication10
doSendAdmire
Settings
BPAdmirerBot.Properties
Resources
WebClickSound
mscorlib
System
Object
System.Windows.Forms
MulticastDelegate
System.Configuration
ApplicationSettingsBase
Password
status
Filename
Filestatus
counter
System.Collections.Generic
Dictionary`2
TrackingList
System.Threading
Thread
worker
EventArgs
Form1_Load
buttonStart_Click
checkLogin
ManualResetEvent
locker
Admire
SendAdmire
unlock
buttonPause_Click
buttonStop_Click
buttonFile_Click
Form1_Activated
Form1_Deactivate
FormClosingEventArgs
Form1_FormClosing
LinkLabelLinkClickedEventArgs
linkLabel1_LinkClicked
System.ComponentModel
IContainer
components
Dispose
InitializeComponent
Button
buttonStart
buttonStop
buttonPause
buttonFile
TextBox
textBoxLogin
textBoxPassword
textBoxID
WebBrowser
webBrowser1
labelStatus
label1
label2
label3
label4
LinkLabel
linkLabel1
label5
Invoke
IAsyncResult
AsyncCallback
BeginInvoke
EndInvoke
defaultInstance
get_Default
Default
System.Resources
ResourceManager
resourceMan
System.Globalization
CultureInfo
resourceCulture
get_ResourceManager
get_Culture
set_Culture
Culture
get_Enabled
set_Enabled
Enabled
sender
disposing
object
method
callback
result
System.Reflection
AssemblyTitleAttribute
AssemblyDescriptionAttribute
AssemblyConfigurationAttribute
AssemblyCompanyAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyTrademarkAttribute
AssemblyCultureAttribute
System.Runtime.InteropServices
ComVisibleAttribute
GuidAttribute
AssemblyVersionAttribute
AssemblyFileVersionAttribute
System.Diagnostics
DebuggableAttribute
DebuggingModes
System.Runtime.CompilerServices
CompilationRelaxationsAttribute
RuntimeCompatibilityAttribute
BP Admirer Bot
STAThreadAttribute
Application
EnableVisualStyles
SetCompatibleTextRenderingDefault
LinkCollection
get_Links
Control
get_Text
String
Equals
MessageBox
DialogResult
MessageBoxButtons
MessageBoxIcon
get_Count
System.Core
System.Linq
Enumerable
IEnumerable`1
ElementAt
KeyValuePair`2
get_Key
Concat
Navigate
WebBrowserDocumentCompletedEventHandler
add_DocumentCompleted
remove_DocumentCompleted
ThreadStart
WaitHandle
WaitOne
Delegate
ToString
ContainsKey
set_Text
EventWaitHandle
ThreadState
get_ThreadState
System.IO
StreamWriter
Enumerator
GetEnumerator
get_Current
TextWriter
WriteLine
MoveNext
IDisposable
op_Equality
OpenFileDialog
FileDialog
set_Filter
CommonDialog
ShowDialog
get_FileName
StreamReader
OpenText
TextReader
ReadLine
get_Link
get_LinkData
Process
SuspendLayout
System.Drawing
set_Location
set_Name
set_Size
set_TabIndex
ButtonBase
set_UseVisualStyleBackColor
EventHandler
add_Click
AnchorStyles
set_Anchor
set_MinimumSize
set_AutoSize
FontStyle
GraphicsUnit
set_Font
set_TabStop
LinkLabelLinkClickedEventHandler
add_LinkClicked
ContainerControl
set_AutoScaleDimensions
AutoScaleMode
set_AutoScaleMode
set_ClientSize
ControlCollection
get_Controls
set_MaximizeBox
set_MaximumSize
SizeGripStyle
set_SizeGripStyle
add_Load
add_Activated
ResumeLayout
PerformLayout
CompilerGeneratedAttribute
System.CodeDom.Compiler
GeneratedCodeAttribute
.cctor
SettingsBase
Synchronized
DebuggerNonUserCodeAttribute
ReferenceEquals
RuntimeTypeHandle
GetTypeFromHandle
Assembly
get_Assembly
EditorBrowsableAttribute
EditorBrowsableState
Microsoft.Win32
Registry
RegistryKey
CurrentUser
OpenSubKey
GetValue
IsNullOrEmpty
op_Inequality
Environment
OperatingSystem
get_OSVersion
Version
get_Version
get_Major
get_Minor
RegistryValueKind
SetValue
WindowsFormsApplication10.Form1.resources
BPAdmirerBot.Properties.Resources.resources
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
9.0.0.0
3System.Resources.Tools.StronglyTypedResourceBuilder
2.0.0.0
BP Admirer Bot
CpaAttic (Lukas & Gunshi)
Copyright 
 CpaAttic 2010
$452466ac-74d2-4d79-bf31-3954cf0aaee7
1.0.0.0
WrapNonExceptionThrows
C:\Documents and Settings\KulasArt\Moje dokumenty\Visual Studio 2008\Projects\WindowsFormsApplication10\WindowsFormsApplication10\obj\Debug\BP Admirer Bot.pdb
_CorExeMain
mscoree.dll
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
  <assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
    <security>
      <requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
        <requestedExecutionLevel level="asInvoker" uiAccess="false"/>
      </requestedPrivileges>
    </security>
  </trustInfo>
</assembly>