DESKTOP-C4O60NN_2022-08-03_16 15 47[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

DESKTOP-C4O60NN_2022-08-03_16 15 47.zip
Size

3.6MB
MD5

4af138447a6e397efb04a223e5a3cb7b
SHA1

4e99c3c3dce7896d6e752690b021ecfcc36f90af
SHA256

8716d9f9954cda97886c19b2900e885830212ef12cd9975dbc77565904440661
SHA512

04b035ab37b398491a836b12229f34ceb515d6d3b741fb5bd826da2181fbce0a5feac9afba3aef02b20f53c96ce0ecd89fbc423fa8ae77e6fe77bf7bef4fcf1b
SSDEEP

98304:/2XZfY4YL08Zs2ukvmeQfp21cyFzmLc0hgBGj:/2XZQ480WmFCyI0CB+

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

Processes:

resource	yara_rule
static1/unpack001/Device/HarddiskVolume3/Program Files/Lumion 11.0/Channels/PanoUnique.dll	themida

Files

DESKTOP-C4O60NN_2022-08-03_16 15 47.zip
.zip

Password: Malware1234.
Device/HarddiskVolume3/Program Files/Lumion 11.0/Channels/PanoUnique.dll
.dll windows x64

Password: Malware1234.

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

??0A3d_Thread@@QEAA@AEBV0@@Z
??0A3d_Thread@@QEAA@XZ
??0Error@@AEAA@XZ
??0Error@@QEAA@AEBV0@@Z
??0FileSystem@@QEAA@AEBV0@@Z
??0FileSystem@@QEAA@XZ
??0FileUpload@@QEAA@AEBV0@@Z
??0FileUpload@@QEAA@XZ
??0LumionNewsManager@@QEAA@AEBV0@@Z
??0LumionNewsManager@@QEAA@XZ
??0MyLumionImageUpload@@QEAA@AEBV0@@Z
??0MyLumionImageUpload@@QEAA@XZ
??0PanoCommandType@@QEAA@AEBV0@@Z
??0PanoCommandType@@QEAA@W4CommandCategory@0@W4CommandType@0@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2@Z
??0PanoCommandType@@QEAA@XZ
??0PanoUnique@@QEAA@AEBV0@@Z
??0PanoUnique@@QEAA@XZ
??0StringUtils@@QEAA@AEBV0@@Z
??0StringUtils@@QEAA@XZ
??0UploadManager@@QEAA@AEBV0@@Z
??0UploadManager@@QEAA@XZ
??0YoutubeManager@@QEAA@AEBV0@@Z
??0YoutubeManager@@QEAA@XZ
??0YoutubeUploader@@QEAA@AEBV0@@Z
??0YoutubeUploader@@QEAA@XZ
??1A3d_Thread@@UEAA@XZ
??1Error@@EEAA@XZ
??1FileSystem@@UEAA@XZ
??1FileUpload@@UEAA@XZ
??1LumionNewsManager@@UEAA@XZ
??1MyLumionImageUpload@@UEAA@XZ
??1PanoCommandType@@UEAA@XZ
??1PanoUnique@@UEAA@XZ
??1StringUtils@@UEAA@XZ
??1UploadManager@@UEAA@XZ
??1YoutubeManager@@UEAA@XZ
??1YoutubeUploader@@UEAA@XZ
??4A3d_Thread@@QEAAAEAV0@AEBV0@@Z
??4Error@@QEAAAEAV0@AEBV0@@Z
??4FileSystem@@QEAAAEAV0@AEBV0@@Z
??4FileUpload@@QEAAAEAV0@AEBV0@@Z
??4LumionNewsManager@@QEAAAEAV0@AEBV0@@Z
??4MyLumionImageUpload@@QEAAAEAV0@AEBV0@@Z
??4PanoCommandType@@QEAAAEAV0@AEBV0@@Z
??4StringUtils@@QEAAAEAV0@AEBV0@@Z
??4UploadManager@@QEAAAEAV0@AEBV0@@Z
??4YoutubeUploader@@QEAAAEAV0@AEBV0@@Z
??_7A3d_Thread@@6B@
??_7Error@@6B@
??_7FileSystem@@6B@
??_7FileUpload@@6B@
??_7LumionNewsManager@@6B@
??_7MyLumionImageUpload@@6B@
??_7PanoCommandType@@6B@
??_7PanoUnique@@6B@
??_7StringUtils@@6B@
??_7UploadManager@@6B@
??_7YoutubeManager@@6B@
??_7YoutubeUploader@@6B@
?AddBinaryData@FileUpload@@QEAAXAEBVA3d_Buffer@@@Z
?AddFile@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0@Z
?AddFormData@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0_N@Z
?AddHeader@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0@Z
?AddTime@Error@@KAXAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?AllowCache@FileUpload@@QEAAX_N@Z
?AppendErrorToLogFile@Error@@KAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?AppendMessageToLogFile@Error@@KAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?AppendMessageToLogFile@Error@@KAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?CallChannel@PanoUnique@@UEAAXXZ
?CancelRequestUpload@UploadManager@@QEAAXXZ
?CancelUpload@PanoUnique@@QEAAXXZ
?CancelYoutubeUpload@PanoUnique@@QEAAXXZ
?CancelYoutubeUpload@YoutubeManager@@QEAAXXZ
?Category@PanoCommandType@@QEBA?AW4CommandCategory@1@XZ
?CheckYoutubeLogin@YoutubeManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?CheckYoutubeLoginStatus@YoutubeManager@@QEAAXAEA_N0AEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?Clear@FileUpload@@QEAAXXZ
?Clear@LumionNewsManager@@QEAAXXZ
?Clear@MyLumionImageUpload@@QEAAXXZ
?Clear@UploadManager@@QEAAXXZ
?ClearErrors@Error@@SAXXZ
?ConnectRequest@FileUpload@@QEAA_NXZ
?DisconnectRequest@FileUpload@@QEAAXXZ
?DoDependencyInit@PanoUnique@@UEAAXPEAVA3d_List@@@Z
?EnableErrorLogging@Error@@SAX_N@Z
?EnableLogging@UploadManager@@QEAAX_N@Z
?EndsWith@StringUtils@@SA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?EndsWith@StringUtils@@SA_NAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0@Z
?Failed@LumionNewsManager@@QEAA_NXZ
?FindNoCase@StringUtils@@SA_KV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0@Z
?FormatForm@FileUpload@@IEAAXAEAVA3d_Buffer@@@Z
?FormatForm@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@@Z
?FormatHeaders@FileUpload@@IEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?FormatMultipartForm@FileUpload@@IEAAXAEAVA3d_Buffer@@@Z
?FormatPutBlob@FileUpload@@IEAAXAEAVA3d_Buffer@@@Z
?FromInt@StringUtils@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HH@Z
?FromIntW@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@HH@Z
?GZipBuffer@PanoUnique@@QEAAXAEBVA3d_Buffer@@AEAV2@@Z
?GetAllFiles@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@3@AEAV43@_N@Z
?GetClientId@YoutubeManager@@AEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?GetCommandTypes@PanoCommandType@@QEAAXAEAV?$vector@PEAVPanoCommandType@@V?$allocator@PEAVPanoCommandType@@@std@@@std@@@Z
?GetCurrentFolderName@FileSystem@@SAXAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?GetDefaultBrowser@YoutubeManager@@AEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetDescriptions@LumionNewsManager@@QEAAAEBV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@XZ
?GetErrorCount@Error@@SA_KXZ
?GetErrorMessage@Error@@SAXAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV23@I1I@Z
?GetErrors@Error@@SAXAEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?GetFileCRC@FileSystem@@SAIAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetImageBuffers@LumionNewsManager@@QEAAAEBV?$vector@VA3d_Buffer@@V?$allocator@VA3d_Buffer@@@std@@@std@@XZ
?GetImageUpload@PanoUnique@@QEAAPEAVMyLumionImageUpload@@XZ
?GetIteration@LumionNewsManager@@QEAA_KXZ
?GetLoginCodeFromBrowserWindow@YoutubeManager@@QEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetManagementPortalStatus@PanoUnique@@QEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEA_N@Z
?GetMessageFromWindowsError@Error@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV23@I0I@Z
?GetMessages@Error@@SAXAEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?GetNewsUrls@LumionNewsManager@@QEAAAEBV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@XZ
?GetPanoramaLink@PanoUnique@@QEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetPanoramaLink@UploadManager@@QEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetPercentageUploaded@PanoUnique@@QEAAIXZ
?GetResponseBuffer@FileUpload@@QEAAAEBVA3d_Buffer@@XZ
?GetResponseHeaders@FileUpload@@QEAAAEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@std@@XZ
?GetResponseHeadersRaw@FileUpload@@QEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetResponseString@FileUpload@@QEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetResponseStringA@FileUpload@@QEAA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?GetResponseStringUnicode@FileUpload@@QEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetStatus@YoutubeUploader@@QEAA?AW4UploadStatus@1@XZ
?GetStatusCode@FileUpload@@QEAAKXZ
?GetStatusCodeText@FileUpload@@QEAAAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetStatusCodeTextA@FileUpload@@QEAA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?GetStatusMessage@YoutubeUploader@@QEAAAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetSubDirectories@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@3@@Z
?GetSuccessCodeFromYoutubeLogin@PanoUnique@@QEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetToken@YoutubeManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@000@Z
?GetTokenFromMyLumion@YoutubeManager@@AEAAHAEAV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@@Z
?GetTokenStatus@YoutubeManager@@QEAAXAEA_N0AEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetTotalBytes@FileUpload@@QEAA_KXZ
?GetTotalBytesSent@FileUpload@@QEAA_KXZ
?GetTotalFileSize@FileSystem@@SA_JAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetTotalFileSize@FileSystem@@SA_JV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@@Z
?GetTotalSize@MyLumionImageUpload@@QEAA_JXZ
?GetTotalUploaded@MyLumionImageUpload@@QEAA_JXZ
?GetUploadStatus@YoutubeUploader@@QEAAXAEA_NAEAHAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2@Z
?GetYoutubeManager@PanoUnique@@QEAAPEAVYoutubeManager@@XZ
?GetYoutubeUploadStatus@PanoUnique@@QEAAXAEA_NAEAHAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2@Z
?HelpFile@PanoCommandType@@QEBAAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?HtmlDecode@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V23@@Z
?HtmlEncode@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@@Z
?Id@PanoCommandType@@QEBA?AW4CommandType@1@XZ
?InnerCheckYoutubeLogin@YoutubeManager@@AEAAXV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?InnerGetToken@YoutubeManager@@AEAAXV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@000@Z
?InnerOpenAuthCodeRequest@YoutubeManager@@AEAAXV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?InnerYoutubeLogout@YoutubeManager@@AEAAXXZ
?InternetErrorFromCode@Error@@KA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@H@Z
?IsErrorLoggingEnabled@Error@@SA_NXZ
?IsRunning@PanoUnique@@QEAA_NXZ
?IsTokenValid@YoutubeManager@@AEAAHAEBV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@@Z
?LoadChannel@PanoUnique@@UEAA_NAEAVA3dFileLoader@@PEAVA3d_ChannelGroup@@@Z
?LoadJSONFromDisk@YoutubeManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@@Z
?LoadTextToFromFile@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@@Z
?LoadTextToFromFile@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@@Z
?LogError@Error@@SAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I0I@Z
?LogError@Error@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@I@Z
?LogLumionOutput@PanoUnique@@QEAAXHHHAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?LogLumionOutput@UploadManager@@QEAAXHHHAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?LogMessage@Error@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@I@Z
?LogMessage@Error@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@IAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@I@Z
?LogMessage@Error@@SAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0I@Z
?LogMessage@Error@@SAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I0I@Z
?Logout@YoutubeManager@@QEAAXXZ
?Loop@A3d_Thread@@QEAA_NXZ
?MergeString@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@3@AEBV23@@Z
?MergeString@StringUtils@@SAXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@AEAV43@_N@Z
?MergeString@StringUtils@@SAXAEBV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@3@AEAV43@_N@Z
?MultipartForm@FileUpload@@QEAAX_N@Z
?Name@PanoCommandType@@QEBAAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?OpenAuthCodeRequest@YoutubeManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?OpenAuthorizationRequest@PanoUnique@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?OpenManagementPortal@PanoUnique@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00@Z
?OpenUrl@PanoUnique@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?ParseUrl@StringUtils@@SAXV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@1AEAHAEA_N@Z
?PrepareWStringHttp@StringUtils@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@I_N@Z
?PrepareWStringHttp@UploadManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@@Z
?ProcessResponseHeaders@FileUpload@@IEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?ProcessWStringHttp@StringUtils@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@I@Z
?ProcessWStringHttp@UploadManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0AEAV23@@Z
?ReadFileFromDisk@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAVA3d_Buffer@@@Z
?ReadFileFromDisk@FileUpload@@IEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAVA3d_Buffer@@@Z
?RefreshToken@YoutubeManager@@AEAAHAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@00AEAV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@@Z
?Replace@StringUtils@@SAAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEAV23@AEBV23@1@Z
?Replace@StringUtils@@SAAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@AEBV23@1@Z
?ReplaceNoCase@StringUtils@@SAAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEAV23@AEBV23@1@Z
?RequestUpload@UploadManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@000AEAV23@@Z
?RequestUploadStatus@UploadManager@@QEAAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEA_N@Z
?ResponseString@MyLumionImageUpload@@QEAAAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?Run@A3d_Thread@@UEAAXXZ
?Run@FileUpload@@UEAAXXZ
?Run@LumionNewsManager@@UEAAXXZ
?Run@MyLumionImageUpload@@UEAAXXZ
?Run@UploadManager@@UEAAXXZ
?Run@YoutubeUploader@@UEAAXXZ
?SaveChannel@PanoUnique@@UEAA_NAEAVA3dFileSaver@@@Z
?SaveTextToFile@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0_N@Z
?SaveTextToFile@FileSystem@@SAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@_N@Z
?SendASync@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RequestType@1@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@22_N3@Z
?SendASync@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RequestType@1@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@2_N@Z
?SendASync@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RequestType@1@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@AEBVA3d_Buffer@@@Z
?SendASync@FileUpload@@QEAAXXZ
?SendSync@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RequestType@1@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@22_N3@Z
?SendSync@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RequestType@1@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@2_N@Z
?SendSync@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RequestType@1@AEBV?$map@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@U?$less@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V12@@std@@@2@@3@AEBVA3d_Buffer@@@Z
?SendSync@FileUpload@@QEAAXXZ
?ServerSettingsFromUrl@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetComputerId@LumionNewsManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetHost@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetLicenseCode@LumionNewsManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetLumionVersion@LumionNewsManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetMaxAttempts@FileUpload@@QEAAX_K@Z
?SetPort@FileUpload@@QEAAXH@Z
?SetRequestType@FileUpload@@QEAAXW4RequestType@1@@Z
?SetServerPath@FileUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetUrl@LumionNewsManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetUseSSL@FileUpload@@QEAAX_N@Z
?SplitString@StringUtils@@SAHAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0AEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@3@_N@Z
?SplitString@StringUtils@@SAHAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0AEAV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@3@_N@Z
?Start@A3d_Thread@@UEAAXXZ
?Stop@A3d_Thread@@UEAAXK@Z
?Stop@MyLumionImageUpload@@QEAAXXZ
?Stop@UploadManager@@QEAAXXZ
?StoreTokenInMyLumion@YoutubeManager@@AEAAXAEBV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@@Z
?StringFromWString@StringUtils@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@3@@Z
?StripString@StringUtils@@SAXAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV23@@Z
?StripString@StringUtils@@SAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@@Z
?ThreadEnded@A3d_Thread@@QEAAXXZ
?TimeElapsed@PanoUnique@@QEAAIXZ
?TimeElapsed@UploadManager@@QEAA_JXZ
?ToLower@StringUtils@@SAXAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?ToLower@StringUtils@@SAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?ToUpper@StringUtils@@SAXAEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?ToUpper@StringUtils@@SAXAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?TotalBytes@UploadManager@@QEAA_JXZ
?TotalSize@YoutubeUploader@@QEAA_KXZ
?TotalUploaded@UploadManager@@QEAA_JXZ
?UploadDirectory@MyLumionImageUpload@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0000000@Z
?UploadDirectory@UploadManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0000000@Z
?UploadFileToYoutube@YoutubeManager@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@000AEBV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@00@Z
?UploadFileToYoutubeStatus@YoutubeManager@@QEAAXAEA_NAEAHAEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2@Z
?UploadPercentage@YoutubeUploader@@QEAAMXZ
?UploadYoutubeVideo@YoutubeUploader@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0AEBV?$basic_json@Vmap@std@@Vvector@2@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@_N_J_KNVallocator@2@@nlohmann@@1000000@Z
?Uploaded@YoutubeUploader@@QEAA_KXZ
?UrlDecode@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@@Z
?UrlEncode@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@@Z
?UrlEncodeAsString@StringUtils@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@3@@Z
?WStringFromString@StringUtils@@SA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@@Z
?WaitObject@A3d_Thread@@QEAAKK@Z
?YoutubeLogout@PanoUnique@@QEAAXXZ
?base64_chars@StringUtils@@0V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@B
?base64_decode@StringUtils@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV23@@Z
?base64_encode@StringUtils@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBEI@Z
?char2hex@UploadManager@@IEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@_W@Z
?cs_@Error@@1VA3d_CriticalSection@@A
?enable_logging_@Error@@1HA
?errors_@Error@@1V?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@A
?hex_to_string@StringUtils@@SAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEAVA3d_Buffer@@@Z
?hex_to_string@UploadManager@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEAVA3d_Buffer@@@Z
?hexenc@StringUtils@@0PAPEB_WA
?is_base64@StringUtils@@SA_NE@Z
?messages_@Error@@1V?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@A
?urlencode@UploadManager@@IEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBV23@@Z
GetType
InitDLL

Sections

Size: 128KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 42KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 611B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 296B - Virtual size: 1000B

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.exports
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imports
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 5.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.taggant
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
manifest.json

Sharing

General

Malware Config

Signatures

Files

Password: Malware1234.

Password: Malware1234.

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 128KB - Virtual size: 318KB

Size: 42KB - Virtual size: 144KB

Size: 2KB - Virtual size: 17KB

Size: 8KB - Virtual size: 14KB

Size: 611B - Virtual size: 1KB

Size: 1KB - Virtual size: 1KB

Size: 296B - Virtual size: 1000B

.exports Size: 26KB - Virtual size: 26KB

.imports Size: 1KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.themida Size: - Virtual size: 5.9MB

.boot Size: 3.4MB - Virtual size: 3.4MB

.reloc Size: 512B - Virtual size: 4KB

.taggant Size: 8KB - Virtual size: 8KB

.exports
Size: 26KB - Virtual size: 26KB

.imports
Size: 1KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.themida
Size: - Virtual size: 5.9MB

.boot
Size: 3.4MB - Virtual size: 3.4MB

.reloc
Size: 512B - Virtual size: 4KB

.taggant
Size: 8KB - Virtual size: 8KB