Sample details: e5e1902ff2ae17eb5e52a52acc162bd0 --

Hashes
MD5: e5e1902ff2ae17eb5e52a52acc162bd0
SHA1: 3bf1bccb05489388a5b9bc1d99eb22b71d50ed76
SHA256: f0b57982b1623c2cc6580cb1fffad41a7366521df81aeda87fdc72a457b96f3c
SSDEEP: 3072:EqppEMQq0A1Ndu29bGxh/crE7v1FwgFLGQcyI7y:E0pEnq0AXEYCxh/1PbLYz
Details
File Type: PE32
Added: 2018-06-22 18:37:54
Yara Hits
YRP/Borland_Cpp_DLL | YRP/Borland_Cpp_for_Win32_1999 | YRP/Borland_Cpp_DLL_additional | YRP/Borland | YRP/IsPE32 | YRP/IsConsole | YRP/borland_cpp | YRP/domain | YRP/contentis_base64 | YRP/DebuggerException__SetConsoleCtrl | YRP/win_files_operation |
Strings
		This program must be run under Win32
`.data
.rdata
P.idata
@.edata
@.rsrc
@.reloc
fb:C++HOOK
_^[YY]
YZ]_^[
t?BCIu
**BCCxh1
_^[YY]
_^[YY]
_^[YY]
A<ru	3
9+u <tt
QVhd+A
Nt/NtB
Nt/Nt?
@(_^[]
S$uEj4
K(QjPW
C,PjQW
C,Pj*W
S0Rj+W
K4Qj,W
C8Pj-W
S<Rj.W
K@Qj/W
CDPj0W
SHRj1W
KLQj2W
CPPj3W
STRj4W
KXQj5W
C\Pj6W
S`Rj7W
KdQj8W
ChPj9W
SlRj:W
KpQj;W
CtPj<W
SxRj=W
K|Qj>W
S Rj#W
K"Qj$W
C$Pj%W
S&Rj&W
K(Qj'W
H_^[Y]
e@FBC;u
QUVWRSPT
0_^[Y]
_^[YY]
Borland C++ - Copyright 1999 Inprise Corporation
Enter the Choice...  
STEGO MAGIC
Steganographic Data Encryption Tool by "Srikanth"
V.1.0. Copyright 2011. www.gohacking.com
for hiding "Binary Data" (Image, Audio/Video & EXE)
1. EMBED A FILE IN ANOTHER     2. EXTRACT AN EMBEDDED FILE     3. EXIT
Enter the Filename in Which You Want to Embed the Other File
Invalid Filename/Error Opening the Specified File
Press Any Key to Continue...  
Enter the Filename that You Want to Embed
Invalid Filename/Error Opening the Specified File
Press Any Key to Continue...  
SecretKey.txt
Your Secret Key for Decryption: %lu
Your Embeded Filename: %s
Embedding Please Wait...
Embedding of "%s" in "%s" Completed Successfully!
Your Secret Key for Decryption is 
Press Any Key to Continue...  
Enter the Filename that You Want to Decrypt
Invalid Filename/Error Opening the Specified File
Press Any Key to Continue...  
Enter a Name for the Output File that is to be Decrypted
Enter the Secret Key for Decryption
Error Creating the Output File
Press Any Key to Continue...  
Decrypting the File, Please Wait... 
File Decryption Completed Successfully!
Output File is: 
Press Any Key to Continue...  
borlndmm
hrdir_b.c: LoadLibrary != mmdll borlndmm failed
borlndmm
@Borlndmm@SysGetMem$qqri
@Borlndmm@SysFreeMem$qqrpv
@Borlndmm@SysReallocMem$qqrpvi
""##$$$%
CONIN$
CONOUT$
<notype>
id->tpName
xxtype.cpp
xxtype.cpp
xxtype.cpp
tp1->tpName
xxtype.cpp
tp2->tpName
xxtype.cpp
IS_STRUC(base->tpMask)
xxtype.cpp
IS_STRUC(derv->tpMask)
xxtype.cpp
derv->tpClass.tpcFlags & CF_HAS_BASES
xxtype.cpp
((unsigned __far *)vtablePtr)[-1] == 0
xxtype.cpp
<notype>
topTypPtr != 0 && IS_STRUC(topTypPtr->tpMask)
xxtype.cpp
tgtTypPtr != 0 && IS_STRUC(tgtTypPtr->tpMask)
xxtype.cpp
srcTypPtr == 0 || IS_STRUC(srcTypPtr->tpMask)
xxtype.cpp
__isSameTypeID(srcTypPtr, tgtTypPtr) == 0
xxtype.cpp
tgtTypPtr != 0 && __isSameTypeID(topTypPtr, tgtTypPtr) == 0
xxtype.cpp
srcTypPtr
xxtype.cpp
((unsigned __far *)vtablePtr)[-1] == 0
xxtype.cpp
xxtype.cpp
Can't adjust class address (no base class entry found)
!"Can't adjust class address (no base class entry found)"
xxtype.cpp
___CPPdebugHook
Stack Overflow!
),(((((),(((
Error 0
Invalid function number
No such file or directory
Path not found
Too many open files
Permission denied
Bad file number
Memory arena trashed
Not enough memory
Invalid memory block address
Invalid environment
Invalid format
Invalid access code
Invalid data
Bad address
No such device
Attempted to remove current directory
Not same device
No more files
Invalid argument
Arg list too big
Exec format error
Cross-device link
Too many open files
No child processes
Inappropriate I/O control operation
Executable file in use
File too large
No space left on device
Illegal seek
Read-only file system
Too many links
Broken pipe
Math argument
Result too large
File already exists
Possible deadlock
Operation not permitted
No such process
Interrupted function call
Input/output error
No such device or address
Resource temporarily unavailable
Block device required
Resource busy
Not a directory
Is a directory
Directory not empty
Unknown error
(null)
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
LC_MONETARY
LC_NUMERIC
LC_TIME
LC_COLLATE
LC_CTYPE
LC_MONETARY
LC_TIME
LC_NUMERIC
LC_COLLATE
LC_CTYPE
LC_CTYPE
LC_TIME
LC_NUMERIC
LC_MONETARY
LC_COLLATE
%H:%M:%S
%m/%d/%y
%A, %B %d, %Y
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday
January
February
August
September
October
November
December
printf : floating point formats not linked
scanf : floating point formats not linked
printf : floating point formats not linked
scanf : floating point formats not linked
Error: system code page access failure; MBCS table not initialized
Assertion failed: 
, file 
, line 
%02d/%02d/%04d %02d:%02d:%02d.%03d 
kernel32.dll
GetProcAddress
Borland32
Abnormal program termination
No space for command line argument vector
No space for command line argument
No space for copy of command line
No space for copy of command line
Out of memory in _setargv0
GetEnvironmentStrings failed
Could not allocate memory for environment block
___CPPdebugHook
(ctorMask & 0x0100) != 0 || (ctorMask & 0x0020) == 0
xx.cpp
(ctorMask & 0x0080) == 0
xx.cpp
!"what?"
xx.cpp
!"what?"
xx.cpp
(dtorMask & 0x0080) == 0
xx.cpp
!"what?"
xx.cpp
(mfnMask & 0x0080) == 0
xx.cpp
!"what?"
xx.cpp
cctrAddr
xx.cpp
dtorAddr
xx.cpp
argType
xx.cpp
__CPPexceptionList
xx.cpp
xx.cpp
xdrPtr->xdERRaddr == xl
xx.cpp
dscPtr->xdERRaddr == errPtr
xx.cpp
dscPtr->xdHtabAdr == hdtPtr
xx.cpp
dscPtr->xdArgCopy == 0
xx.cpp
(dscPtr->xdMask & TM_IS_PTR) == 0
xx.cpp
mask & TM_IS_PTR
xx.cpp
dscPtr->xdMask & TM_IS_PTR
xx.cpp
dscPtr->xdTypeID == dscPtr->xdBase
xx.cpp
hdtPtr->HDcctrAddr
xx.cpp
dscPtr->xdSize == size
xx.cpp
xdrPtr && xdrPtr == *xdrLPP
xx.cpp
bogus context in Local_unwind()
!"bogus context in Local_unwind()"
xx.cpp
bogus context in _ExceptionHandler()
!"bogus context in _ExceptionHandler()"
xx.cpp
varType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
varType->tpClass.tpcDtorAddr
xx.cpp
(errPtr->ERRcInitDtc >= varType->tpClass.tpcDtorCount) || flags
xx.cpp
varType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
dtorCnt < varCount
xx.cpp
IS_STRUC(blType->tpMask)
xx.cpp
IS_STRUC(blType->tpMask)
xx.cpp
memType
xx.cpp
memType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
varType->tpMask & TM_IS_ARRAY
xx.cpp
varType->tpArr.tpaElemType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
vdtCount
xx.cpp
etdCount <= elemCount || elemCount == 0
xx.cpp
dtrCount <= vdtCount
xx.cpp
IS_CLASS(varType->tpMask)
xx.cpp
((unsigned __far *)vftAddr)[-1] == 0
xx.cpp
dttPtr->dttFlags & (DTCVF_PTRVAL|DTCVF_RETVAL)
xx.cpp
dttPtr->dttType->tpMask & TM_IS_PTR
xx.cpp
dttPtr->dttType->tpPtr.tppBaseType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
IS_CLASS(dttPtr->dttType->tpMask) && (dttPtr->dttType->tpClass.tpcFlags & CF_HAS_DTOR)
xx.cpp
dtvtPtr->dttType->tpMask & TM_IS_ARRAY
xx.cpp
varType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
elemType->tpClass.tpcFlags & CF_HAS_DTOR
xx.cpp
varType->tpMask & TM_IS_ARRAY
xx.cpp
varType->tpMask & TM_IS_PTR
xx.cpp
xx.cpp
**BCCxh1
KERNEL32.DLL
USER32.DLL
CloseHandle
CreateFileA
DeleteFileA
EnterCriticalSection
ExitProcess
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
GetACP
GetCPInfo
GetCommandLineA
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentThreadId
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLargestConsoleWindowSize
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultLangID
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
RaiseException
ReadConsoleInputA
ReadFile
RtlUnwind
ScrollConsoleScreenBufferA
SetConsoleCtrlHandler
SetConsoleCursorPosition
SetConsoleMode
SetConsoleScreenBufferSize
SetConsoleWindowInfo
SetFilePointer
SetHandleCount
SetLastError
SetThreadLocale
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteConsoleInputA
WriteConsoleOutputA
WriteFile
EnumThreadWindows
MessageBoxA
wsprintfA
stegomagic_bin.exe
__GetExceptDLLinfo
___CPPdebugHook
oIDATx
w<787Om
xj[786
+.`Pqz?
+_Z&<'\
rkK>sD3
~}!_d?
GOKcNs0
js_	Ou
8FA(>=
CyAqG1,
Yq]	T%c
,`j[=f
?z4z{r
1[zy-3
wh~_:K
rRoC]V
9 T*<7
Nzu4gS
o@[{(E
C faY>
:Hg*?P
N9g7?*
:,X|8R
j*T*[D)lD
JQk#'i1
),f	)x0#
Z,8|12
|IjAB|
9z2mH.
P_F7$!
&5BK]Z
|/,{f-d2i8bV
>!UB:&
zk9K(ii
a6;1#R
}._!3R
B*	ZfE
B NADj
h	ZMGM
Eiqgd0
!E _;~
2jXG_Au
IBKcZ>oK
Ms~`P6
N<q2L9
-[Gv.`
30aL=45
 aJN%@
~Mt1^b
PAPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGX
;I;Y;m;
<"<+<A<S<Z<d<
=9=E=P=
?%?+?6?B?f?
0B0N0a0g0
1(161A1
5'6g6Z7
3,4>4K4Q4
4C5H5[5i5
%:*:B:
>!>C>I>Q>]>f>o>
>2?R?t?
0$00070z0
191?1G1O1l1
2#3)31393
3,444A4^4f4
5*555^5
0/1M1v1
9?:D:e:j:
<(=9=>=j=o=
=W>n>r>
>A?9?M?
0A0G0O0]0o0u0~0
2!222B2
4%4C4V4
7"8E8]8,9U9r9W:\:
422\2}2
5#5h5?6
6 8+8L8
9Y:]:a:e:i:m:q:u:y:}:
7 7$7(7,7
?5?E?^?
0(0A0U0n0
1)1?1p1
4"3O3|3
315~5c6
747H7^7t7
>!>Z>a>
.08020<0&1-1O1V1b3l3f3p3
8F8P8J8T8
<&=0=*=4=
:(:@:H:O:Y:g:
<Z;9<L<g;x<
<i=#>\=]>p>
?9?I?^?d?s?
5+575I5
7:7H7Q7[7a7k7
8)8=8q8z8
9V9\9h9m9
;b;p;u;@=
020=0e0
3m1q1u1y1}1
3%3L3V3~3
=B=G=f=k=
?B6F6J6N6R6V6Z6g0
2$3)3]4b4
3*30363<3B3H3N3T3Z3`3f3l3r3x3~3
4 4&4,42484>4D4J4P4V4\4b4h4n4
0 0&0,02080>0D0J0P0V0\0b0h0n0t0z0
1"1&1*1
6 6$6(6,6064686<6@6D6H6L6P6T6X6\6`6d6h6l6p6t6x6|6
6H7L788l8
<0@0D0H0L0P0T0X0\0`0d0h0l0t0x0|0
1 1$1(1,10141L1P1X1\1`1d1