Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A78BE NtAllocateVirtualMemory, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7A9E NtAllocateVirtualMemory, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A78C2 NtAllocateVirtualMemory, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7973 NtAllocateVirtualMemory, |
Source: FACTURA.exe, 00000000.00000000.286217984.000000000041B000.00000002.00020000.sdmp | Binary or memory string: OriginalFilenameCounterfoil7.exe vs FACTURA.exe |
Source: FACTURA.exe, 00000000.00000002.809631589.00000000022A0000.00000004.00000001.sdmp | Binary or memory string: OriginalFilenameCounterfoil7.exeFE2XCollides Systems, Inc. Collides Systems, Inc. vs FACTURA.exe |
Source: FACTURA.exe | Binary or memory string: OriginalFilenameCounterfoil7.exe vs FACTURA.exe |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A78BE |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABD75 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABE16 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AAE3D |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AA22C |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABE7E |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7E6A |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A626C |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AB68E |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A76B0 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A5EAA |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A5B0A |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABF0E |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AA302 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AAF36 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A6349 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABF6C |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A8362 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7F90 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABFB9 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A5FB4 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A53A7 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A57C6 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AB3C6 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AA7FA |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A540E |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A5C38 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A642E |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AA456 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AB056 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A809A |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7093 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A54AC |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC0A4 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A50D1 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AB0D4 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A78C2 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AACC4 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A58FC |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A60E2 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A650A |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC151 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AB148 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7973 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AAD64 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A1991 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABDAA |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A7DA7 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AA1A5 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC1D6 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A51EB |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A59E6 |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A0B20 push ds; iretd |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A3CBF push es; retf |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A4191 push es; iretd |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A2DC7 push esi; iretd |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | Process information set: NOOPENFILEERRORBOX |
Source: C:\Users\user\Desktop\FACTURA.exe | RDTSC instruction interceptor: First address: 000000000040F386 second address: 000000000040F386 instructions: 0x00000000 rdtsc 0x00000002 nop 0x00000003 mfence 0x00000006 popad 0x00000007 pushfd 0x00000008 popfd 0x00000009 cmp eax, 000000F9h 0x0000000e dec edi 0x0000000f wait 0x00000010 cmp eax, 67h 0x00000013 cmp edi, 00000000h 0x00000016 jne 00007F49089A7E50h 0x00000018 pushfd 0x00000019 popfd 0x0000001a wait 0x0000001b pushad 0x0000001c mfence 0x0000001f mfence 0x00000022 rdtsc |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A9A96 mov eax, dword ptr fs:[00000030h] |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A9A94 mov eax, dword ptr fs:[00000030h] |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A6FB7 mov eax, dword ptr fs:[00000030h] |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021A9FE0 mov eax, dword ptr fs:[00000030h] |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AACC4 mov eax, dword ptr fs:[00000030h] |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABD75 RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABE16 RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABE7E RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABF0E RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC30D RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABF6C RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABFB9 RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC0A4 RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC151 RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021ABDAA RtlAddVectoredExceptionHandler, |
Source: C:\Users\user\Desktop\FACTURA.exe | Code function: 0_2_021AC1D6 RtlAddVectoredExceptionHandler, |
Source: FACTURA.exe, 00000000.00000002.809398242.0000000000C60000.00000002.00020000.sdmp | Binary or memory string: Program Manager |
Source: FACTURA.exe, 00000000.00000002.809398242.0000000000C60000.00000002.00020000.sdmp | Binary or memory string: Shell_TrayWnd |
Source: FACTURA.exe, 00000000.00000002.809398242.0000000000C60000.00000002.00020000.sdmp | Binary or memory string: Progman |
Source: FACTURA.exe, 00000000.00000002.809398242.0000000000C60000.00000002.00020000.sdmp | Binary or memory string: Progmanlock |
Thumbnails
This section contains all screenshots as thumbnails, including those not shown in the slideshow.