File Path | Type and Hashes |
---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat |
Type : Internet Explorer cache file version Ver 5.2 MD5 : 645ccdde38bb039eb271a4f120e6be5f SHA-1 : 475a264964d84a2c6c335202262fa6c76275a515 SHA-256 : a9b45e98f41bfcc23bc82cf17b3381b9820a2be6db8bab08799a9e6160382f45 SHA-512 : 0f5aa71c7c0b1a574c4a6c306a24006ad175e7c85eee3b20fcd81a5ce8e3188afbfaa75b5ea8f6fca8a6c7519e0e7cb29205b8b8140d2b690f4541a597454039 Size : 49.152 Kilobytes. |
C:\Users\user\AppData\Local\Temp\8104140.bat |
Type : ASCII text, with CRLF, CR line terminators MD5 : 3880eeb1c736d853eb13b44898b718ab SHA-1 : 4eec9d50360cd815211e3c4e6bdd08271b6ec8e6 SHA-256 : 936d9411d5226b7c5a150ecaf422987590a8870c8e095e1caa072273041a86e7 SHA-512 : 3eaa3dddd7a11942e75acd44208fbe3d3ff8f4006951cd970fb9ab748c160739409803450d28037e577443504707fc310c634e9dc54d0c25e8cfe6094f017c6b Size : 0.094 Kilobytes. |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\x.vbs |
Type : ASCII text, with CRLF line terminators MD5 : f23975e16f2022b9d838d4ead51823c6 SHA-1 : 10b793ce151092abf3b0298037fc3f59561d727c SHA-256 : 03b89ef34a8c9fb88e6a8d09a4ba4e7016694c0eba4d0108afc3385d8944c0e9 SHA-512 : 8f6726f09f067a63ca0b68f9aba96a1b31ffbca5960397de4fc664737932fae090745fadc3691eaa07e65dc39cd19c886cb92fff1c23bf2c7ea79afb5d035b95 Size : 0.14 Kilobytes. |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat |
Type : Internet Explorer cache file version Ver 5.2 MD5 : de20f795b0ea29cbcb8daf8951530db4 SHA-1 : 81d7e8a0197a0ea9eba76e4dc856d10aa5ec04d9 SHA-256 : f891c989c74d22028cc0dfcd564c186fe6857592cacc56a0e72be2f83683b77e SHA-512 : 06ed0fdb0abfcdbc16a7f5adb92ed0c59ba788f08b2de3fca1e40743c212bee3f1c130bbff01fba1ab513d985eabd516874e7f71c0c1b33535cf34a50d858445 Size : 180.224 Kilobytes. |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\index.dat |
Type : Internet Explorer cache file version Ver 5.2 MD5 : 2ed7b584633888df7f0114fa4ac6dc69 SHA-1 : fa8067b3241b8d9258d9fc88f5bd80fca5433b10 SHA-256 : 69a0d29dc846c82d785231dbf94e4c4b731ad588afaa529e9d8d77aca176c23d SHA-512 : 678165bd37def22a10615aded1384e97413fce1fb7fcf8db180349b0fea0b16037e654bea539e30ec1d0107de043a728ad81bf2aa7dab18306e8b3ac3e04766a Size : 32.768 Kilobytes. |
File Name: | luxxx.exe |
File Type: | PE32 executable (GUI) Intel 80386, for MS Windows |
SHA1: | 51e5b1e7bf928da55c2654ceefaff3df07a513ef |
MD5: | 76ba4ab044d1aec759c52282132eefb4 |
First Seen Date: | 2017-04-13 11:52:44.604765 ( ) |
Number of Clients Seen: | 7 |
Last Analysis Date: | 2017-04-13 11:52:44.604765 ( ) |
Human Expert Analysis Result: | No human expert analysis verdict given to this sample yet. |
Property | Value |
---|---|
number of sections | 4 |
compilation time stamp | 0x58E0AC1E [Sun Apr 2 07:45:34 2017 UTC] |
LegalCopyright | (C) 2003 |
InternalName | CmbShowHis |
FileVersion | 1, 0, 0, 1 |
CompanyName | |
PrivateBuild | |
LegalTrademarks | |
Comments | |
ProductName | CmbShowHis |
SpecialBuild | |
ProductVersion | 1, 0, 0, 1 |
FileDescription | CmbShowHis |
OriginalFilename | CmbShowHis.EXE |
Translation | 0x040e 0x04b0 |
entry point | 0x13a9e25 (.text) |
machine type | Intel 386 or later - 32Bit |
file size | 355170 |
sha256 | 6f6391e6e2d6d0c0f366094d37665ab06cbfba91cb434df461c48fde96e87ed3 |
mime type | application/x-dosexec |
Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
---|---|---|---|---|---|
.text | 0x1000 | 0x22667 | 0x23000 | 6.599764 | - |
.rdata | 0x24000 | 0x8b80 | 0x9000 | 5.005100 | - |
.data | 0x2d000 | 0x8e28 | 0x5000 | 3.399323 | - |
.rsrc | 0x36000 | 0x2478 | 0x3000 | 3.887771 | - |
-
KERNEL32.dll
- FileTimeToLocalFileTime
- GetTickCount
- RtlUnwind
- ExitProcess
- TerminateProcess
- GetCommandLineA
- HeapAlloc
- RaiseException
- HeapReAlloc
- HeapSize
- GetACP
- GetTimeZoneInformation
- LCMapStringA
- LCMapStringW
- UnhandledExceptionFilter
- FreeEnvironmentStringsA
- FreeEnvironmentStringsW
- GetEnvironmentStrings
- GetEnvironmentStringsW
- FileTimeToSystemTime
- GetStdHandle
- GetEnvironmentVariableA
- GetVersionExA
- HeapDestroy
- HeapCreate
- VirtualFree
- IsBadWritePtr
- SetUnhandledExceptionFilter
- GetStringTypeA
- GetStringTypeW
- IsBadReadPtr
- IsBadCodePtr
- SetStdHandle
- CompareStringA
- CompareStringW
- SetEnvironmentVariableA
- SetErrorMode
- GetProfileStringA
- GetFileTime
- GetFileSize
- GetFileAttributesA
- GetOEMCP
- GetCPInfo
- SizeofResource
- GetProcessVersion
- WritePrivateProfileStringA
- GlobalFlags
- TlsGetValue
- LocalReAlloc
- TlsSetValue
- EnterCriticalSection
- GlobalReAlloc
- LeaveCriticalSection
- TlsFree
- GlobalHandle
- DeleteCriticalSection
- TlsAlloc
- InitializeCriticalSection
- LocalAlloc
- MulDiv
- SetLastError
- GetThreadLocale
- GetFullPathNameA
- lstrcpynA
- GetVolumeInformationA
- FindFirstFileA
- FindClose
- SetEndOfFile
- UnlockFile
- LockFile
- FlushFileBuffers
- SetFilePointer
- WriteFile
- ReadFile
- CreateFileA
- GetCurrentProcess
- DuplicateHandle
- GetLastError
- LoadLibraryA
- FreeLibrary
- GetVersion
- lstrcatA
- GlobalGetAtomNameA
- GlobalAddAtomA
- GlobalFindAtomA
- lstrcpyA
- GetModuleHandleA
- GetProcAddress
- FormatMessageA
- LocalFree
- MultiByteToWideChar
- WideCharToMultiByte
- lstrlenA
- InterlockedDecrement
- InterlockedIncrement
- GlobalUnlock
- GlobalFree
- LockResource
- FindResourceA
- LoadResource
- CloseHandle
- GlobalLock
- GlobalAlloc
- GlobalDeleteAtom
- lstrcmpA
- lstrcmpiA
- GetCurrentThread
- GetCurrentThreadId
- GetStartupInfoA
- VirtualProtect
- GetModuleFileNameA
- OpenProcess
- GetThreadTimes
- DeleteFileW
- GetFileType
- GetSystemTimeAsFileTime
- HeapFree
- GetModuleFileNameW
- CreateFileW
- SetHandleCount
- VirtualAlloc
-
USER32.dll
- SetRect
- GetNextDlgGroupItem
- MessageBeep
- DestroyMenu
- InvalidateRect
- InflateRect
- RegisterClipboardFormatA
- PostThreadMessageA
- ScreenToClient
- CopyRect
- GetTopWindow
- IsChild
- GetCapture
- WinHelpA
- wsprintfA
- GetClassInfoA
- RegisterClassA
- GetMenu
- GetMenuItemCount
- GetSubMenu
- GetMenuItemID
- GetWindowTextLengthA
- GetWindowTextA
- GetDlgCtrlID
- CreateWindowExA
- GetClassLongA
- SetPropA
- UnhookWindowsHookEx
- GetPropA
- CallWindowProcA
- RemovePropA
- DefWindowProcA
- GetMessageTime
- GetMessagePos
- GetForegroundWindow
- CopyAcceleratorTableA
- SetWindowLongA
- PtInRect
- OffsetRect
- IntersectRect
- SystemParametersInfoA
- GetWindowPlacement
- GetWindowRect
- MapDialogRect
- SetWindowPos
- GetWindow
- SetWindowContextHelpId
- EndDialog
- SetActiveWindow
- IsWindow
- CreateDialogIndirectParamA
- GetDlgItem
- GetMenuCheckMarkDimensions
- LoadBitmapA
- GetMenuState
- ModifyMenuA
- SetMenuItemBitmaps
- CheckMenuItem
- EnableMenuItem
- GetFocus
- GetNextDlgTabItem
- GetMessageA
- TranslateMessage
- DispatchMessageA
- GetActiveWindow
- GetKeyState
- CallNextHookEx
- ValidateRect
- IsWindowVisible
- PeekMessageA
- GetCursorPos
- SetWindowsHookExA
- GetParent
- GetLastActivePopup
- LoadIconA
- FindWindowW
- DrawIcon
- UnregisterClassA
- HideCaret
- ShowCaret
- ExcludeUpdateRgn
- DrawFocusRect
- IsWindowEnabled
- GetWindowLongA
- MessageBoxA
- SetCursor
- PostQuitMessage
- PostMessageA
- EnableWindow
- IsIconic
- DefWindowProcW
- CreateWindowExW
- CreateDialogParamW
- GetDoubleClickTime
- CharNextA
- LoadStringA
- GetSysColorBrush
- SetForegroundWindow
- SendMessageA
- GetSystemMetrics
- DefDlgProcA
- IsWindowUnicode
- GetClientRect
- GetClassNameA
- GetDesktopWindow
- LoadCursorA
- GrayStringA
- DrawTextA
- TabbedTextOutA
- EndPaint
- BeginPaint
- GetWindowDC
- ReleaseDC
- GetDC
- ClientToScreen
- CharUpperA
- ShowWindow
- MoveWindow
- SetWindowTextA
- IsDialogMessageA
- UpdateWindow
- SendDlgItemMessageA
- DestroyWindow
- AdjustWindowRectEx
- GetSysColor
- RegisterWindowMessageA
- SetFocus
- MapWindowPoints
-
GDI32.dll
- SetBkMode
- SetMapMode
- SetViewportOrgEx
- OffsetViewportOrgEx
- SetViewportExtEx
- ScaleViewportExtEx
- SetWindowExtEx
- ScaleWindowExtEx
- DeleteObject
- GetStockObject
- GetDeviceCaps
- GetViewportExtEx
- GetWindowExtEx
- CreateSolidBrush
- PtVisible
- RectVisible
- TextOutA
- ExtTextOutA
- Escape
- GetTextColor
- GetBkColor
- DPtoLP
- LPtoDP
- GetMapMode
- PatBlt
- SelectObject
- RestoreDC
- SaveDC
- DeleteDC
- GetObjectA
- SetBkColor
- SetTextColor
- GetClipBox
- CreateBitmap
- Polyline
- GetCharacterPlacementW
- CreateDIBitmap
- GetTextExtentPointA
- BitBlt
- CreateCompatibleDC
- IntersectClipRect
-
comdlg32.dll
- GetFileTitleA
-
WINSPOOL.DRV
- ClosePrinter
- DocumentPropertiesA
- OpenPrinterA
-
ADVAPI32.dll
- RegSetValueExA
- RegOpenKeyExA
- RegCreateKeyExA
- RegCloseKey
-
COMCTL32.dll
- None
-
oledlg.dll
- None
-
ole32.dll
- CoFreeUnusedLibraries
- OleInitialize
- CoTaskMemAlloc
- CoTaskMemFree
- CreateILockBytesOnHGlobal
- StgCreateDocfileOnILockBytes
- StgOpenStorageOnILockBytes
- CoGetClassObject
- CLSIDFromString
- CLSIDFromProgID
- CoRegisterMessageFilter
- CoRevokeClassObject
- OleFlushClipboard
- OleIsCurrentClipboard
- OleUninitialize
-
OLEPRO32.DLL
- None
-
OLEAUT32.dll
- VariantTimeToSystemTime
- SysAllocStringLen
- SysFreeString
- VariantCopy
- VariantChangeType
- SysAllocString
- SysAllocStringByteLen
- SysStringLen
- VariantClear
RT_CURSOR
RT_BITMAP
RT_ICON
RT_DIALOG
RT_STRING
RT_GROUP_CURSOR
RT_GROUP_ICON
RT_VERSION