beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83

Analysis

max time kernel
93s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
21-11-2024 08:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Size

31.4MB
MD5

720c94d49ff3b80c463652a2f302a65d
SHA1

e14aa8ad299db0561d74e563912912c06228e6f6
SHA256

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83
SHA512

5875994c97578c1fcd850c6edbe8833afdbf90c3e5833bfc3e8c3befd2410eaea509cd0ce656739bbe4ffa8d487234a9da60f510830d499cd173d2cb31bbeaa2
SSDEEP

786432:ENQZAmAAf4rxXnn2hT0mZDLwbp/dyoLw0wMJB:EYf4rhEFZYbp/dH2Mr

Score

4^/10

discovery

Malware Config

Signatures

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Program Files directory 42 IoCs

Processes:

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

description	ioc	process
File created	C:\Program Files\PanoramaStudio4Pro\Qt5NetworkR.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\io\rawdll.pio	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5WidgetsR.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\winmig-28.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\msvcp140_1.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\vcruntime140_1.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\panoramastudio.qm	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Licence.txt	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5GuiR.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Licence.txt	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Order_de.html	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\io\common.pio	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\License.txt	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\panoStudioViewer.js	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5CoreR.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\filters.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\papplet.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Order_en.html	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Documentation.pdf	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\uninstall.exe	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\concrt140.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\msvcp140.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\panoramastudio_de.qm	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\qtbase_de.qm	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\platforms\qwindows.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Dokumentation.pdf	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\qtbase_fr.qm	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\License.txt	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\printsupport\windowsprintersupport.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\styles\qwindowsvistastyle.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudioViewer\Lizenz.txt	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5SvgR.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\vcruntime140.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\camdb.dat	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudio Handbuch.pdf	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Lizenz.txt	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Qt5PrintSupportR.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\vcomp140.dll	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\PanoramaStudio Manual.pdf	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\panoramastudio_fr.qm	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
File created	C:\Program Files\PanoramaStudio4Pro\Order_fr.html	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

Executes dropped EXE 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2928 PanoramaStudio4Pro.exe

pid	process
2928	PanoramaStudio4Pro.exe

Loads dropped DLL 23 IoCs

Processes:

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exePanoramaStudio4Pro.exe

pid	process
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe
2928	PanoramaStudio4Pro.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

Processes:

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

description	ioc	process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

Modifies registry class 11 IoCs

Processes:

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

description	ioc	process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\DefaultIcon	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.pap	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\ = "PanoramaStudio Project"	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\ = "open"	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\open	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.pap\ = "PanoramaStudio.Project"	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\open\command	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\shell\open\command\ = "C:\\Program Files\\PanoramaStudio4Pro\\PanoramaStudio4Pro.exe \"%1\""	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\PanoramaStudio.Project\DefaultIcon\ = "C:\\Program Files\\PanoramaStudio4Pro\\PanoramaStudio4Pro.exe,1"	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

Suspicious behavior: AddClipboardFormatListener 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2928 PanoramaStudio4Pro.exe

pid	process
2928	PanoramaStudio4Pro.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes:

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

pid	process
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2928 PanoramaStudio4Pro.exe
Suspicious use of SetWindowsHookEx 1 IoCs

Processes:

PanoramaStudio4Pro.exe

pid process

2928 PanoramaStudio4Pro.exe

pid	process
2928	PanoramaStudio4Pro.exe

pid	process
2928	PanoramaStudio4Pro.exe

Suspicious use of WriteProcessMemory 2 IoCs

Processes:

beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe

description	pid	process	target process
PID 4436 wrote to memory of 2928	4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe	PanoramaStudio4Pro.exe
PID 4436 wrote to memory of 2928	4436	beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe	PanoramaStudio4Pro.exe

C:\Users\Admin\AppData\Local\Temp\beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe
"C:\Users\Admin\AppData\Local\Temp\beab83ee3c6aa1b1a6355f237914423494be0b8ae8374fb88f464cc4df105b83.exe"
1⤵
- Drops file in Program Files directory
- Loads dropped DLL
- System Location Discovery: System Language Discovery
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:4436
- C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe
  "C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious behavior: AddClipboardFormatListener
  - Suspicious behavior: GetForegroundWindowSpam
  - Suspicious use of SetWindowsHookEx
  PID:2928

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\PanoramaStudio4Pro\PanoramaStudio4Pro.exe

Filesize
13.6MB

MD5
691e2b86ee66a02d91724057eda6b9f5

SHA1
23ceac6601eff4358505f703e8b556b0100c056c

SHA256
4b48907e6171e0e2291a4fb95239ddcc398bac79872ef90f55b369b1f66cb7eb

SHA512
433b4c9a12577c805840a785c2ed271496388afd6fa988b494ab9baa9c0d02d7bf59598f01881826892a7506172623c918e23b95fbe6dabaad4d0d3e1ff94532

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5CoreR.dll

Filesize
7.7MB

MD5
124d16febffeb24a27c5d48a08704bf0

SHA1
c8b296526db0c5c516112cafab46c725af65d3d8

SHA256
b3889ac5a6d0ad54c651421962c43c5078ab9446b049f87a62cc7c356c3e33e8

SHA512
e7426e4f0fa2aeebe690ca39246044049f4b1635eba44a0d25be602a547f1d74aeec82ec56162eb5ee396cd652d407b5a2fa86beeefb8a8c02f01aa12d014e69

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5GuiR.dll

Filesize
6.6MB

MD5
15edcf6ec892b6c9abf7ce257cad6212

SHA1
8047c10041af653451e5896b052ce21a9881b4f7

SHA256
632c9ffdf7b96ab965ad1dcbb8ca7f7b7a7e0d34136ba1a6564ea5aecd8598b7

SHA512
719ee1707028bb4703425e2567562a121fcc1f1dde6b1e77601b2abb405d290c9ae466b9c91d5244aaa521f3778e338da7e5fd332e30febbe2127e86fc23ebd3

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5NetworkR.dll

Filesize
1.0MB

MD5
ec63e27340077b40d0e4493bdeb45fa2

SHA1
b918117212af989185f09f55a27b2c1403de010e

SHA256
69132bcc4a4fc573f35ccf6c2bd1fa2b0ce2850279dd4e33b22b4bfe2783cc53

SHA512
617b62ec69e891b8f2405f8017f896947e2d4560a385eb3b7de92b3b9e3ff1fc97ce7c8a9f06682efd9e4ab85a2d037e6fb491fc56c3701996e4ca3aa1b1d9a6

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5PrintSupportR.dll

Filesize
311KB

MD5
bd174656911868cd58131f2d3094107d

SHA1
279aa1ed8a62cb77bb905794eb17a10ac9057825

SHA256
e8798836750e3336be35597f338d785c70c34a1a4da7f8ae560c7e0ec832b689

SHA512
a7d0c052c5b2a858d8d7447c19d9bf9ccaef86b91e0a34a7c6c25afc28bb045ed5b2555faef1f2864a547b2d987a75289a7b2fae798fb6bb9426e75fa6361019

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5SvgR.dll

Filesize
324KB

MD5
046bba37898e38a5c40a9c3bafed8d13

SHA1
148da917e6f8dbefc3e07d211e76dab7660b40de

SHA256
7b5ec35facecb2625bc903d51a49de723a20f4600b2864df522aa85d288e7ed1

SHA512
b45a4aa59b06120fc5fc1d245a7a92f311a92a4dfbb2f4e1cbd6da90d751ad629761af1b3063b0e46bc763acfa216035375561d4b2babb03485efff8a213c38e

Download Submit
C:\Program Files\PanoramaStudio4Pro\Qt5WidgetsR.dll

Filesize
5.3MB

MD5
87db4db37341bc674aa2f41231b2ae1d

SHA1
e3dd51fd0b5ac7109e0af4cb566b8e34222a0dc8

SHA256
efb86a833e7ace8c3856eddf474369f991c8cb136a03527a46b7b20a73ef2ad5

SHA512
6db10de2859a300496abebba63352191f472606d2b90f78313859be5555a8ffdf0f6a25a250156a109d58009f3442ee6278901e8580590ff7cd178c4b39df653

Download Submit
C:\Program Files\PanoramaStudio4Pro\camdb.dat

Filesize
213KB

MD5
fb0d7d2da267e5337e2f2b3a8b89ffc7

SHA1
6fd47588636487bb467d71e6b721412db4af1f84

SHA256
c455ed9eef13e87a4069c54661290d147d743efdb5ce9cf9552ed3ff4576c9a8

SHA512
ae0abdfa4d72cffed9ff88b01209c5019428b3f307a2042021457aa2795051ab1d81c62551f7d8444aa76852f133fb686603aa27ade218b883b3387b7ee8c349

Download Submit
C:\Program Files\PanoramaStudio4Pro\filters.dll

Filesize
783KB

MD5
0cddf86bff1d45eba9cd2d59defafbfc

SHA1
b74143ec27b79b3f2434c53112aa0832760025d9

SHA256
fcdda5cb60ebb8a161d99e2f98d98e22dd1f489cbfccdb75138bdf23435444a0

SHA512
b005de2c8f742dbcb9c54d4e9354463f601007498efc0dc55c44aafedf5edfdd29b4107cbfe460edc06fd930d0a06cd6353910531a2018c790b41b47af31af98

Download Submit
C:\Program Files\PanoramaStudio4Pro\io\common.pio

Filesize
4.8MB

MD5
032814da5737d54bb026f01efee0eb72

SHA1
e59eb0da25e9e2ce9cbf20fa09645706df4362cf

SHA256
fd58fecc99a9599fb09877c2f9314e6772e7de5e8176e392f4b7154f33f2bf8a

SHA512
c59ff830ce0d83141018d565fc824360ff4e56ef53db0f442bfb9ca1f910810e8bd7589fdc2a65c7d6124e15122a4b0fa3505ed75d06c2ff3a08823f7753a097

Download Submit
C:\Program Files\PanoramaStudio4Pro\io\rawdll.pio

Filesize
6.3MB

MD5
1fab2f9c9caa64e50875e5c86bf03231

SHA1
4f73527f24b56ee08bcf05c8408cfcd71aac39e4

SHA256
ea2133f291a1ce44d835764962c881019f749be7d3b5b75e35c0098ca005d0ee

SHA512
babf78eac39f163195a87eb68cc0d3b0ee83a4499ee5fc70d54027c75a783b61775e31cdf23519bd304b9d16eac9b21b593d2768a07ba76638b2bcafbba9be0c

Download Submit
C:\Program Files\PanoramaStudio4Pro\msvcp140.dll

Filesize
571KB

MD5
57e1c539476b9e59919baea9f5fd61e9

SHA1
9e856c8fd5ff6ec5681e28723e3d785d06095598

SHA256
ef27a68bdc1ee3d5d9a6a720b656bfb7604a8fac6aceb245a6eadc2788686d9f

SHA512
abfd8149c115c308321af9cb55c495a3b3d3cf1c8faa86e073fa42dd0c7aba9b1fb308d7bcdf8bde80a0254ffac86611bd9377e4d8bbbb638703cfbd7bee70c8

Download Submit
C:\Program Files\PanoramaStudio4Pro\msvcp140_1.dll

Filesize
23KB

MD5
b1e240f90d57451bb16a5a6d1d61740b

SHA1
265fb57ca68ddaed1e1d80c037f294eee96c0aa1

SHA256
1f9fd98375afa97e5c97c667a5a36a03b9653e3a4c8554cebf0f256a613a68a1

SHA512
128b125d9338b938c8b716f265debe01d6a69cb5949fbf8c14857da3b3441eb1d6cc6a6b246add71e5dc7397d51cb2af20d9956e63e6a8d82bc05ae7f6e661ea

Download Submit
C:\Program Files\PanoramaStudio4Pro\panoramastudio.qm

Filesize
299KB

MD5
4b8375ac62003d7db8545906a3756e21

SHA1
8db0e2a696d323039ce1f8b9a1c66ab104c16f2f

SHA256
98872a3999fbee4976b50e23897ea15937aec6f87357fe4d8c925e428505c17d

SHA512
6b23ae01569d5ff83b32c70bac16fe4449a36358e399979623557b2aad80778be3cc50dc473bf6aab0414aebf939524e32f5b7e69b97a038dee8b1d2adbc91f5

Download Submit
C:\Program Files\PanoramaStudio4Pro\panoramastudio_de.qm

Filesize
180KB

MD5
9597da3b3548ee7214a93b0937434f78

SHA1
a8d013f32ebaaf926b7ab3fcb7e94d710c728171

SHA256
068af049d421f48624fd9d1fa63993a6a377799fde34c5c70d89845920938d0a

SHA512
328ba9e124dcd56e026d832c0659d1fadb9ef6299c981df4ae4feb1de7c81ec8bc957bb2d6b545c68c9c5ee1d55c72392510c46c403dc8158dc9f101547756c7

Download Submit
C:\Program Files\PanoramaStudio4Pro\panoramastudio_fr.qm

Filesize
317KB

MD5
b8c62f95cc2efeef6271e6e7be0a8bf5

SHA1
1817dd0a7562431ae40953c7a90f83efa6aee239

SHA256
a6997be24d386bbfae65e54270ad47d42d2b349653110a8057d66cd07cfb85e9

SHA512
53408e6aa7aa192ff699f216447dfc6169576502a19fd4ae2388bbcd2f940dae651eaa4ae25ff502b3a7b5fda05b5d3bc00eabbf271fed25514ad3f15f6106fe

Download Submit
C:\Program Files\PanoramaStudio4Pro\papplet.dll

Filesize
1.4MB

MD5
c184504988d61103d782b21d13403ac2

SHA1
3aae15224f521f8aa0e8f386709d6e93faaa801c

SHA256
2c56c03439f6fe3b5978db681097949979e02aa18371aa893c83a0ba22abebf9

SHA512
f7570828e79a988bd481bb6f7215a09be5d02295aa829a52bb10b3b2edab8d3c8793604a64d3f6d45c12ef9e288cab465cc9a2dcb002e0755a2f6fb335acaf4c

Download Submit
C:\Program Files\PanoramaStudio4Pro\platforms\qwindows.dll

Filesize
1.4MB

MD5
87d4fb4136ffe4c0d728a4f3b0e8a34b

SHA1
4ab5c9a02b7be88b8dc6675d513db658bcabfbf8

SHA256
716abd52f61ba2abda7e35027454af427e3c48c89b2b437e55ef6ae93cd65ee6

SHA512
58286a44873a3f1148bace11f3d8f9e0d6a31c83d78bdcd97d9a4f98b87ec9eb18734655e02369a025d9f8e46f15d9a1aa22cf8838ce235806e1d0f6f4dd0924

Download Submit
C:\Program Files\PanoramaStudio4Pro\printsupport\windowsprintersupport.dll

Filesize
47KB

MD5
5657c867e81a8a4bdd14438341fa0315

SHA1
75c536d1b500dc6fb43b4810e84e511696ea19ef

SHA256
a5ada9d63303c8e79ae4b9077833d006591deb7948f944d9ad7e5c544746e91e

SHA512
70c0ca04349877f7661b96ce632205787fee516e2404312de4e5146724e104e6f5387a1be3467e6a39e55da1235881188f174dc3d8c1a067df36f98f5b68b110

Download Submit
C:\Program Files\PanoramaStudio4Pro\styles\qwindowsvistastyle.dll

Filesize
136KB

MD5
04af30ed3c12a66b60eed15cf3812bf8

SHA1
2fa3276f5a4316b7b8886c95d34934761f33779d

SHA256
27dfcb2e63bd77dd51ab6c93a35fd5de2f5d362557db578324b4e59b6cda0aaa

SHA512
6d2c6a629e5986ec1f52dd6303b39602042a1b7d497468dda69cee53346d484ba51749e5666c8033fce9eaa1b7e4c4c48b9a69cffcf97018dd7789180688d05e

Download Submit
C:\Program Files\PanoramaStudio4Pro\vcomp140.dll

Filesize
172KB

MD5
e0602ee84abc9f4f691c85f9e475d630

SHA1
88c834d526c346eff60c3e5a3e01696cf6926b2a

SHA256
dbdf865a31ea5c3081520a996f2e300c0ba1398935c3a05b24f7f72b2aa6a5d6

SHA512
b3ab265f5b4a35f36fc80bb5c82bd98bf9344dc3c0c530d55f29744ffcf09911edc22190b5c15f5c287b27c0b761446c280ae773d0a8f3d80b57be76226ae6be

Download Submit
C:\Program Files\PanoramaStudio4Pro\vcruntime140.dll

Filesize
91KB

MD5
d012e07ad4f2bae1f1010fee9152f130

SHA1
a5dfb8391d80e0a3d6eb21608264bf51e9a0a39a

SHA256
97113d1b0bdff2fc3b69b2c09fe0b485b9a901e097c12a7cf616a2fcf3ba37f6

SHA512
1ce3afadec186deb3b05173eb0a84ec4e564935c60017d5d6b883fed91770142622d66a5add5b0e2c57c3c9fc958bd4247cdda8377d2af82e8ff4e4f83840fea

Download Submit
C:\Program Files\PanoramaStudio4Pro\vcruntime140_1.dll

Filesize
35KB

MD5
834fe7d9886815faba09bd3a5a959f19

SHA1
10f3a63b8530ce758506da798f5298888715605c

SHA256
b4289a206c121bc4e036e1077860b24511c7efad8bedb7f26c65d6160ac1f48c

SHA512
a94cb45b87b07eeb2c94f6f6df8ff4c39821394b44da24d6cc50bf39255536938e0976f42ed1a3c6bdad9abd2a84bbbb37b61862c2be6a421e6687385ac08108

Download Submit
C:\Program Files\PanoramaStudio4Pro\winmig-28.dll

Filesize
44KB

MD5
4d870aa289a994867bac4cc7db686281

SHA1
61265cb443c8a919aafe4f35f05c32cebe5f7746

SHA256
dd87e4a342d885bd66a48cbfe1f5af89c5b5affdec3132da7ac08354cfb21b80

SHA512
5545bae4307de5b99d17596bb607bcb35f214e6c9ccb2760fa4bb162322ad612062f011d8a830afd2fcfe2934f68f731983f90b158ed317947ecb1e5b17e5571

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\InstallOptions.dll

Filesize
15KB

MD5
0a9fb96a7579b685ec36b17fc354e6a3

SHA1
355754104dd47d5fcf8918dee0dc2e2ee53390a6

SHA256
b34fb342f21d690aac024b6f48a597e78d15791ef480ac55159cd585d0f64af7

SHA512
67870206fa7f1e7df45c8c1bc2f51fb430f0a048a2bdb55a4a41525388ca3b50203784537f139169705a03db4bb13b591162a79a5d2df81a4d11fd849615c86b

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\System.dll

Filesize
12KB

MD5
564bb0373067e1785cba7e4c24aab4bf

SHA1
7c9416a01d821b10b2eef97b80899d24014d6fc1

SHA256
7a9ddee34562cd3703f1502b5c70e99cd5bba15de2b6845a3555033d7f6cb2a5

SHA512
22c61a323cb9293d7ec5c7e7e60674d0e2f7b29d55be25eb3c128ea2cd7440a1400cee17c43896b996278007c0d247f331a9b8964e3a40a0eb1404a9596c4472

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\ioSpecial.ini

Filesize
1KB

MD5
74481252cc87f4ca680c69e07d3dfaed

SHA1
44e9be6bbd281a48be29098d448c1e9f185c010a

SHA256
4e927372c25d5196c5379c89fc0e0435e718d7590bc47aefcc4c31a2aa8339af

SHA512
01ae97886289bd25d32185e15c0d1afb6faf1e19eaaf88e1748f43b1e94c373eb39ed9aa8bcea3eb59d670f66dada6573cd5ab326e5c2632b36fea23a9ef8c0d

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\ioSpecial.ini

Filesize
1KB

MD5
1c603bf84eb6afce0f3bcfeb573e3adf

SHA1
c79a0de2c6b04cb52cdae867c2e800b82baad6de

SHA256
bb0a2f14065a626b9090b821e6821b61dfe03cc56ec4ab3d4c01e719d131e950

SHA512
7af6d270a51157799b06b0a059f6662ad94ddbc0eeb9f72671703d9cd55398b9275adcc5c045b55f4c9c4dc4033cfe9c26c314d6cf0711352b36e8260c8f5056

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\ioSpecial.ini

Filesize
1KB

MD5
0e970e5cabdcebb4300441cf9638e208

SHA1
db1a8a444664d60796f2d273758360bbbef582cf

SHA256
511ddeae24d183a78c91346ea730f30ee9ebdfbdd9eea5b991dfd5dda0322276

SHA512
6cc1893868ed184f88815b34f05b56c7298e13ef9052e628b6558f9e63663d33d55c2c0fc6bb0fd3c67014f73b3e22f6a7d6edccc8ce0b4a5e81678f908450b1

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\ioSpecial.ini

Filesize
1KB

MD5
b62c70fce79807ae627dd7c68588b3b1

SHA1
d23b4337ff66223bae5ad4fa65f4c979e23de573

SHA256
f8f7f55d9a3ce11ce4eae2eb8ca155e9dcfe4c127c9e58155eb5bfc044f1564c

SHA512
23d8a0cc49e2c2045e0636a74ae39ecf192be029b4dd5810812c0ca4ffb994c1dbab92ba7dc4c7166d4db9cd7e0a2cb41195224ba3856569d0751a26149288de

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\ioSpecial.ini

Filesize
1KB

MD5
e186b1159615eb68c7f32360c553c28a

SHA1
d4e0296111e8569aeb77fa0384f9f20bc1c03ca5

SHA256
61339bdc0164037fe2def271b3e5769aab1670b005038177e3c94afd4081122d

SHA512
be2e85090dc1f4411e361aae06037b0f78ca6b7c81623c4e32c529b8d204cfee3aff0895b1b00814d3e35d5a89d4ed2d81267e24ac8de288e927d1ba94730359

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\ioSpecial.ini

Filesize
1KB

MD5
b14823d7bac8adcac9e3dc669720acf9

SHA1
bfee32e223cb7d79b55560d1209b203ccfecff37

SHA256
de81accd2c8b330fbbda76d5c6a95ae59b4a1862d37eca79a84ff7b3be925bbb

SHA512
a21f1ce8d82f211e6dcb438f7e766f2b4f5c2bd1b42e5e7d65557f3664eea22074eda2e24be5030e458440a31fd493bff6ff276495127b61f478d449afbb02c9

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsd9BB5.tmp\nsProcess.dll

Filesize
4KB

MD5
f0438a894f3a7e01a4aae8d1b5dd0289

SHA1
b058e3fcfb7b550041da16bf10d8837024c38bf6

SHA256
30c6c3dd3cc7fcea6e6081ce821adc7b2888542dae30bf00e881c0a105eb4d11

SHA512
f91fcea19cbddf8086affcb63fe599dc2b36351fc81ac144f58a80a524043ddeaa3943f36c86ebae45dd82e8faf622ea7b7c9b776e74c54b93df2963cfe66cc7

Download Submit
memory/2928-316-0x0000014EDA560000-0x0000014EDA570000-memory.dmp

Filesize
64KB

Download
memory/2928-305-0x00007FF6873C0000-0x00007FF688A0C000-memory.dmp

Filesize
22.3MB

Download
memory/2928-313-0x0000014EDA540000-0x0000014EDA541000-memory.dmp

Filesize
4KB

Download
memory/2928-308-0x00007FF9FE8A0000-0x00007FF9FEDF3000-memory.dmp

Filesize
5.3MB

Download
memory/2928-334-0x0000014EDA560000-0x0000014EDA570000-memory.dmp

Filesize
64KB

Download