1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f

Analysis

max time kernel
95s
max time network
138s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
21-11-2024 03:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Size

31.4MB
MD5

c12c9a48c9e91d549af16a1c8632d174
SHA1

c0e4bf239214121b417181a50486e8fc6f044eff
SHA256

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f
SHA512

363c1851dcac65c491ef45640c51fe6cf4d257c8443ee34db3777d8f0770f25bbbb67222f070929a943142178e2299380ebe7ba0c31f1bf064241c5fec6244d6
SSDEEP

786432:Z4hMtbwlId8kkaZCFWqXrx4dQnJwer4Zyi5mub/j1Qg0zMv:Z8MtbmId8kjiWer437NHj+N6

Score

4^/10

discovery

Malware Config

Signatures

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 42 IoCs

Processes:

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

description	ioc	process
File created	C:\Program Files\PanoramaStudio4Pro\papplet.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudio Manual.pdf	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\io\common.pio	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\io\rawdll.pio	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\License.txt	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Licence.txt	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\vcomp140.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\vcruntime140_1.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Lizenz.txt	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\msvcp140.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\filters.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\platforms\qwindows.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Documentation.pdf	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\winmig-28.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\msvcp140_1.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\panoramastudio_de.qm	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\panoramastudio_fr.qm	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\styles\qwindowsvistastyle.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Dokumentation.pdf	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\vcruntime140.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\camdb.dat	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\concrt140.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\panoStudioViewer.js	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\uninstall.exe	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5WidgetsR.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5CoreR.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\qtbase_de.qm	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\License.txt	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5GuiR.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudio Handbuch.pdf	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5SvgR.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\panoramastudio.qm	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Order_en.html	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\printsupport\windowsprintersupport.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Lizenz.txt	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5NetworkR.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5PrintSupportR.dll	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Order_de.html	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Order_fr.html	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\qtbase_fr.qm	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
File created	C:\Program Files\PanoramaStudio4Pro\Licence.txt	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

Executes dropped EXE 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2512 PanoramaStudio4Pro.exe

pid	process
2512	PanoramaStudio4Pro.exe

Loads dropped DLL 31 IoCs

Processes:

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exePanoramaStudio4Pro.exe

pid	process
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe
2512	PanoramaStudio4Pro.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

Processes:

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

description	ioc	process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

Modifies registry class 11 IoCs

Processes:

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

description	ioc	process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.pap\ = "PanoramaStudio.Project"	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\open\command	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\open\command\ = "C:\\Program Files\\PanoramaStudio4Pro\\PanoramaStudio4Pro.exe \"%1\""	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\open	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\DefaultIcon	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\DefaultIcon\ = "C:\\Program Files\\PanoramaStudio4Pro\\PanoramaStudio4Pro.exe,1"	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.pap	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\ = "PanoramaStudio Project"	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\ = "open"	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

Suspicious behavior: AddClipboardFormatListener 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2512 PanoramaStudio4Pro.exe

pid	process
2512	PanoramaStudio4Pro.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes:

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

pid	process
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2512 PanoramaStudio4Pro.exe
Suspicious use of SetWindowsHookEx 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2512 PanoramaStudio4Pro.exe

pid	process
2512	PanoramaStudio4Pro.exe

pid	process
2512	PanoramaStudio4Pro.exe

Suspicious use of WriteProcessMemory 2 IoCs

Processes:

1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe

description	pid	process	target process
PID 3616 wrote to memory of 2512	3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe	PanoramaStudio4Pro.exe
PID 3616 wrote to memory of 2512	3616	1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe	PanoramaStudio4Pro.exe

C:\Users\Admin\AppData\Local\Temp\1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe
"C:\Users\Admin\AppData\Local\Temp\1aa60e99e1a78cdc167e64e85a7bc75b338767e58563c40e84b695d02a98ce2f.exe"
1⤵
- Drops file in Program Files directory
- Loads dropped DLL
- System Location Discovery: System Language Discovery
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:3616
- C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe
  "C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious behavior: AddClipboardFormatListener
  - Suspicious behavior: GetForegroundWindowSpam
  - Suspicious use of SetWindowsHookEx
  PID:2512

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\PanoramaStudio4Pro\MSVCP140.dll

Filesize
571KB

MD5
57e1c539476b9e59919baea9f5fd61e9

SHA1
9e856c8fd5ff6ec5681e28723e3d785d06095598

SHA256
ef27a68bdc1ee3d5d9a6a720b656bfb7604a8fac6aceb245a6eadc2788686d9f

SHA512
abfd8149c115c308321af9cb55c495a3b3d3cf1c8faa86e073fa42dd0c7aba9b1fb308d7bcdf8bde80a0254ffac86611bd9377e4d8bbbb638703cfbd7bee70c8

Download Submit
C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe

Filesize
13.6MB

MD5
c5729d836ed9f9cb0703c856432ad358

SHA1
0440101321f5f61f6fd67c4f5030235874ab1db1

SHA256
67072e2607cfa8dfe7b03a3160777cc5c09eb9d48bb19cc9fbc08dd4958c8b60

SHA512
b32a696cdf637372f5bf901396cf4b005a05a437caf537ea38f92ad698724c03045119e3c2022fc2738c8c8ccbc31ee8c9b322ac77b394c54a67127b820c0e85

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5CoreR.dll

Filesize
7.7MB

MD5
124d16febffeb24a27c5d48a08704bf0

SHA1
c8b296526db0c5c516112cafab46c725af65d3d8

SHA256
b3889ac5a6d0ad54c651421962c43c5078ab9446b049f87a62cc7c356c3e33e8

SHA512
e7426e4f0fa2aeebe690ca39246044049f4b1635eba44a0d25be602a547f1d74aeec82ec56162eb5ee396cd652d407b5a2fa86beeefb8a8c02f01aa12d014e69

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5GuiR.dll

Filesize
6.6MB

MD5
15edcf6ec892b6c9abf7ce257cad6212

SHA1
8047c10041af653451e5896b052ce21a9881b4f7

SHA256
632c9ffdf7b96ab965ad1dcbb8ca7f7b7a7e0d34136ba1a6564ea5aecd8598b7

SHA512
719ee1707028bb4703425e2567562a121fcc1f1dde6b1e77601b2abb405d290c9ae466b9c91d5244aaa521f3778e338da7e5fd332e30febbe2127e86fc23ebd3

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5NetworkR.dll

Filesize
1.0MB

MD5
ec63e27340077b40d0e4493bdeb45fa2

SHA1
b918117212af989185f09f55a27b2c1403de010e

SHA256
69132bcc4a4fc573f35ccf6c2bd1fa2b0ce2850279dd4e33b22b4bfe2783cc53

SHA512
617b62ec69e891b8f2405f8017f896947e2d4560a385eb3b7de92b3b9e3ff1fc97ce7c8a9f06682efd9e4ab85a2d037e6fb491fc56c3701996e4ca3aa1b1d9a6

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5PrintSupportR.dll

Filesize
311KB

MD5
bd174656911868cd58131f2d3094107d

SHA1
279aa1ed8a62cb77bb905794eb17a10ac9057825

SHA256
e8798836750e3336be35597f338d785c70c34a1a4da7f8ae560c7e0ec832b689

SHA512
a7d0c052c5b2a858d8d7447c19d9bf9ccaef86b91e0a34a7c6c25afc28bb045ed5b2555faef1f2864a547b2d987a75289a7b2fae798fb6bb9426e75fa6361019

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5SvgR.dll

Filesize
324KB

MD5
046bba37898e38a5c40a9c3bafed8d13

SHA1
148da917e6f8dbefc3e07d211e76dab7660b40de

SHA256
7b5ec35facecb2625bc903d51a49de723a20f4600b2864df522aa85d288e7ed1

SHA512
b45a4aa59b06120fc5fc1d245a7a92f311a92a4dfbb2f4e1cbd6da90d751ad629761af1b3063b0e46bc763acfa216035375561d4b2babb03485efff8a213c38e

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5WidgetsR.dll

Filesize
5.3MB

MD5
87db4db37341bc674aa2f41231b2ae1d

SHA1
e3dd51fd0b5ac7109e0af4cb566b8e34222a0dc8

SHA256
efb86a833e7ace8c3856eddf474369f991c8cb136a03527a46b7b20a73ef2ad5

SHA512
6db10de2859a300496abebba63352191f472606d2b90f78313859be5555a8ffdf0f6a25a250156a109d58009f3442ee6278901e8580590ff7cd178c4b39df653

Download Submit
C:\Program Files\PanoramaStudio4Pro\camdb.dat

Filesize
213KB

MD5
fb0d7d2da267e5337e2f2b3a8b89ffc7

SHA1
6fd47588636487bb467d71e6b721412db4af1f84

SHA256
c455ed9eef13e87a4069c54661290d147d743efdb5ce9cf9552ed3ff4576c9a8

SHA512
ae0abdfa4d72cffed9ff88b01209c5019428b3f307a2042021457aa2795051ab1d81c62551f7d8444aa76852f133fb686603aa27ade218b883b3387b7ee8c349

Download Submit
C:\Program Files\PanoramaStudio4Pro\filters.dll

Filesize
783KB

MD5
4e6d60a3d5896c42845e69c354e3fab3

SHA1
42ea04168f89d325d4f5c024757e2cfa2c93d587

SHA256
d4cf32985ed938486e46eb077b0c0b9a79bc3fafdb2093ba8df57d5a134e22be

SHA512
f1e750e74e2b2bc54d22e7f31aca0e2f2ce7f64d83fb80dcd592a1bb8e1881e022ceb1609a4d51d19b15e1946b9aad86ff37284878b007722e886abcfd8a76f0

Download Submit
C:\Program Files\PanoramaStudio4Pro\io\common.pio

Filesize
4.8MB

MD5
32af18cb607d6fd8593805e324f32299

SHA1
2eb5cd29b23d4968b0e3544fa9f464d9856b70c3

SHA256
5a39d57041a469a4400d704a4096f03809be1428e17caca004ff4a35953ebdf2

SHA512
473d9193149215a635c7ff943f30ebfdb6a1374811ae9e812b80069ac6530505ad25fb96a4593e96de0c3943d3c0167aab59c9903847e97e6fd66445f25d2f9e

Download Submit
C:\Program Files\PanoramaStudio4Pro\io\rawdll.pio

Filesize
6.3MB

MD5
4f512aa0b4a641fde1e35f02fcdeb725

SHA1
56249dfddbaea44be050211ffbc2299b847c599d

SHA256
0701600f8202c19f4414f7c7a5f76903a094243ea0268aaaa1184a069b22e580

SHA512
37b5a53e8b3e9d04fed061792c7d32aef060c60307435d24e3b6463f6823dec7a8a6f3608084c8fdf2dfb3cc17c7be5df23a5e41a2932a04289c3bf4f6979753

Download Submit
C:\Program Files\PanoramaStudio4Pro\msvcp140_1.dll

Filesize
23KB

MD5
b1e240f90d57451bb16a5a6d1d61740b

SHA1
265fb57ca68ddaed1e1d80c037f294eee96c0aa1

SHA256
1f9fd98375afa97e5c97c667a5a36a03b9653e3a4c8554cebf0f256a613a68a1

SHA512
128b125d9338b938c8b716f265debe01d6a69cb5949fbf8c14857da3b3441eb1d6cc6a6b246add71e5dc7397d51cb2af20d9956e63e6a8d82bc05ae7f6e661ea

Download Submit
C:\Program Files\PanoramaStudio4Pro\panoramastudio.qm

Filesize
299KB

MD5
4b8375ac62003d7db8545906a3756e21

SHA1
8db0e2a696d323039ce1f8b9a1c66ab104c16f2f

SHA256
98872a3999fbee4976b50e23897ea15937aec6f87357fe4d8c925e428505c17d

SHA512
6b23ae01569d5ff83b32c70bac16fe4449a36358e399979623557b2aad80778be3cc50dc473bf6aab0414aebf939524e32f5b7e69b97a038dee8b1d2adbc91f5

Download Submit
C:\Program Files\PanoramaStudio4Pro\panoramastudio_de.qm

Filesize
180KB

MD5
9597da3b3548ee7214a93b0937434f78

SHA1
a8d013f32ebaaf926b7ab3fcb7e94d710c728171

SHA256
068af049d421f48624fd9d1fa63993a6a377799fde34c5c70d89845920938d0a

SHA512
328ba9e124dcd56e026d832c0659d1fadb9ef6299c981df4ae4feb1de7c81ec8bc957bb2d6b545c68c9c5ee1d55c72392510c46c403dc8158dc9f101547756c7

Download Submit
C:\Program Files\PanoramaStudio4Pro\panoramastudio_fr.qm

Filesize
317KB

MD5
b8c62f95cc2efeef6271e6e7be0a8bf5

SHA1
1817dd0a7562431ae40953c7a90f83efa6aee239

SHA256
a6997be24d386bbfae65e54270ad47d42d2b349653110a8057d66cd07cfb85e9

SHA512
53408e6aa7aa192ff699f216447dfc6169576502a19fd4ae2388bbcd2f940dae651eaa4ae25ff502b3a7b5fda05b5d3bc00eabbf271fed25514ad3f15f6106fe

Download Submit
C:\Program Files\PanoramaStudio4Pro\papplet.dll

Filesize
1.4MB

MD5
858ab0cf0c44327bf28248681352de55

SHA1
33b9354c1ef96ad861ef37f2f030068bf5c58cbc

SHA256
d8d3d39d3b5f097afc922183ea7aa0009d886f9f39e101fb72a9594c47024667

SHA512
cc99c3b5b8ae4baf250aaba194369ec72e440774e1902143e0b5e9daae0eb3c3a758b87028a0591287b1ffd96b3e6813383d4bcda08a2bc8b7a7b29e5c8ec5de

Download Submit
C:\Program Files\PanoramaStudio4Pro\platforms\qwindows.dll

Filesize
1.4MB

MD5
87d4fb4136ffe4c0d728a4f3b0e8a34b

SHA1
4ab5c9a02b7be88b8dc6675d513db658bcabfbf8

SHA256
716abd52f61ba2abda7e35027454af427e3c48c89b2b437e55ef6ae93cd65ee6

SHA512
58286a44873a3f1148bace11f3d8f9e0d6a31c83d78bdcd97d9a4f98b87ec9eb18734655e02369a025d9f8e46f15d9a1aa22cf8838ce235806e1d0f6f4dd0924

Download Submit
C:\Program Files\PanoramaStudio4Pro\printsupport\windowsprintersupport.dll

Filesize
47KB

MD5
5657c867e81a8a4bdd14438341fa0315

SHA1
75c536d1b500dc6fb43b4810e84e511696ea19ef

SHA256
a5ada9d63303c8e79ae4b9077833d006591deb7948f944d9ad7e5c544746e91e

SHA512
70c0ca04349877f7661b96ce632205787fee516e2404312de4e5146724e104e6f5387a1be3467e6a39e55da1235881188f174dc3d8c1a067df36f98f5b68b110

Download Submit
C:\Program Files\PanoramaStudio4Pro\styles\qwindowsvistastyle.dll

Filesize
136KB

MD5
04af30ed3c12a66b60eed15cf3812bf8

SHA1
2fa3276f5a4316b7b8886c95d34934761f33779d

SHA256
27dfcb2e63bd77dd51ab6c93a35fd5de2f5d362557db578324b4e59b6cda0aaa

SHA512
6d2c6a629e5986ec1f52dd6303b39602042a1b7d497468dda69cee53346d484ba51749e5666c8033fce9eaa1b7e4c4c48b9a69cffcf97018dd7789180688d05e

Download Submit
C:\Program Files\PanoramaStudio4Pro\vcomp140.dll

Filesize
172KB

MD5
e0602ee84abc9f4f691c85f9e475d630

SHA1
88c834d526c346eff60c3e5a3e01696cf6926b2a

SHA256
dbdf865a31ea5c3081520a996f2e300c0ba1398935c3a05b24f7f72b2aa6a5d6

SHA512
b3ab265f5b4a35f36fc80bb5c82bd98bf9344dc3c0c530d55f29744ffcf09911edc22190b5c15f5c287b27c0b761446c280ae773d0a8f3d80b57be76226ae6be

Download Submit
C:\Program Files\PanoramaStudio4Pro\vcruntime140.dll

Filesize
91KB

MD5
d012e07ad4f2bae1f1010fee9152f130

SHA1
a5dfb8391d80e0a3d6eb21608264bf51e9a0a39a

SHA256
97113d1b0bdff2fc3b69b2c09fe0b485b9a901e097c12a7cf616a2fcf3ba37f6

SHA512
1ce3afadec186deb3b05173eb0a84ec4e564935c60017d5d6b883fed91770142622d66a5add5b0e2c57c3c9fc958bd4247cdda8377d2af82e8ff4e4f83840fea

Download Submit
C:\Program Files\PanoramaStudio4Pro\vcruntime140_1.dll

Filesize
35KB

MD5
834fe7d9886815faba09bd3a5a959f19

SHA1
10f3a63b8530ce758506da798f5298888715605c

SHA256
b4289a206c121bc4e036e1077860b24511c7efad8bedb7f26c65d6160ac1f48c

SHA512
a94cb45b87b07eeb2c94f6f6df8ff4c39821394b44da24d6cc50bf39255536938e0976f42ed1a3c6bdad9abd2a84bbbb37b61862c2be6a421e6687385ac08108

Download Submit
C:\Program Files\PanoramaStudio4Pro\winmig-28.dll

Filesize
44KB

MD5
4d870aa289a994867bac4cc7db686281

SHA1
61265cb443c8a919aafe4f35f05c32cebe5f7746

SHA256
dd87e4a342d885bd66a48cbfe1f5af89c5b5affdec3132da7ac08354cfb21b80

SHA512
5545bae4307de5b99d17596bb607bcb35f214e6c9ccb2760fa4bb162322ad612062f011d8a830afd2fcfe2934f68f731983f90b158ed317947ecb1e5b17e5571

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsrD60F.tmp\InstallOptions.dll

Filesize
15KB

MD5
0a9fb96a7579b685ec36b17fc354e6a3

SHA1
355754104dd47d5fcf8918dee0dc2e2ee53390a6

SHA256
b34fb342f21d690aac024b6f48a597e78d15791ef480ac55159cd585d0f64af7

SHA512
67870206fa7f1e7df45c8c1bc2f51fb430f0a048a2bdb55a4a41525388ca3b50203784537f139169705a03db4bb13b591162a79a5d2df81a4d11fd849615c86b

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsrD60F.tmp\System.dll

Filesize
12KB

MD5
564bb0373067e1785cba7e4c24aab4bf

SHA1
7c9416a01d821b10b2eef97b80899d24014d6fc1

SHA256
7a9ddee34562cd3703f1502b5c70e99cd5bba15de2b6845a3555033d7f6cb2a5

SHA512
22c61a323cb9293d7ec5c7e7e60674d0e2f7b29d55be25eb3c128ea2cd7440a1400cee17c43896b996278007c0d247f331a9b8964e3a40a0eb1404a9596c4472

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsrD60F.tmp\ioSpecial.ini

Filesize
1KB

MD5
6e4af97befd85adbddc2bb3e07b3df0a

SHA1
3f3f3a3799dfe112b57924c6efce3be11df9d2ae

SHA256
b76713b8eede4efa199f726132e47eaebbb084e7f2212eb7e2c6cb0a53381652

SHA512
81ab197b1055c423252e7e3f7e380272ee01dc05993fdca47a1c074179216bf3345e21e602a621f10752a1c89189108e3592953634331003b6f10f2cccb1e1ef

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsrD60F.tmp\ioSpecial.ini

Filesize
1KB

MD5
a0922ece916012908799bf6465709296

SHA1
71192e5300ef2a7ec8e511325affa650f7df2f81

SHA256
d2e745efa533279202472d3933458be5dea10f3348266298a375a8fb9ada2f9f

SHA512
3bd64febe8a38b190463bd869b9b549a7051ee0cef84f13d7eb620b298fbfd142f6363a28c83f8b415f216e83cf9918503d2a9e99e4d165743f6dcd85a144653

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsrD60F.tmp\ioSpecial.ini

Filesize
1KB

MD5
1c5dd30a3a2957983bd82005ab556e55

SHA1
77fd359359ccee9bdcfc2f00b09d030b1a43113e

SHA256
a97e2467be093a0e4a83097798d9e9e3b0a3e52170cd9c5f4195c190fdf091cf

SHA512
dbee8b2c279819133a304530bcb9df0caa7ed94a88afbe182205ea96b39c5a928d6e983a7426fdf499a535b296ddac533a5f5f354bc5fbd5594515be8cec1d80

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsrD60F.tmp\nsProcess.dll

Filesize
4KB

MD5
f0438a894f3a7e01a4aae8d1b5dd0289

SHA1
b058e3fcfb7b550041da16bf10d8837024c38bf6

SHA256
30c6c3dd3cc7fcea6e6081ce821adc7b2888542dae30bf00e881c0a105eb4d11

SHA512
f91fcea19cbddf8086affcb63fe599dc2b36351fc81ac144f58a80a524043ddeaa3943f36c86ebae45dd82e8faf622ea7b7c9b776e74c54b93df2963cfe66cc7

Download Submit
memory/2512-317-0x000002A7A5430000-0x000002A7A5431000-memory.dmp

Filesize
4KB

Download
memory/2512-307-0x00007FFB40280000-0x00007FFB407D3000-memory.dmp

Filesize
5.3MB

Download
memory/2512-306-0x00007FF797D40000-0x00007FF79938C000-memory.dmp

Filesize
22.3MB

Download