Free Automated Malware Analysis Service - powered by Falcon Sandbox - Viewing online file analysis results for 'Twitter Checker.exe'

not enough data to reliably determine

Twitter Checker.exe

This report is generated from a file or URL submitted to this webservice on December 5th 2015 00:37:21 (UTC)
Guest System: Windows 7 32 bit, Home Premium, 6.1 (build 7601), Service Pack 1
Report generated by Falcon Sandbox v2.61 © Hybrid Analysis

Overview Sample not shared Re-analyze Hash Seen Before Show Similar Samples Report False-Positive

Attention: this analysis ran with the legacy Usermode Monitor. It is highly recommended to use the Kernelmode Monitor.

Request Report Deletion

Incident Response

Risk Assessment

Fingerprint: Contains ability to lookup the windows account name

Indicators

Not all malicious and suspicious indicators are displayed. Get your own cloud service or the full version to view all details.

Malicious Indicators 1
External Systems
- Sample was identified as malicious by at least one Antivirus engine
  
  details
  
  2/55 Antivirus vendors marked sample as malicious (3% detection rate)
  
  source
  
  External System
  
  relevance
  
  8/10

Suspicious Indicators 7
Anti-Detection/Stealthyness
- Queries kernel debugger information
  
  details
  
  "<Input Sample>" at 00116578-00002528-779D61F8-302611
  
  source
  
  API Call
  
  relevance
  
  6/10
Anti-Reverse Engineering
- Creates guarded memory regions (anti-debugging trick to avoid memory dumping)
  
  details
  
  Creates guarded memory regions (anti-debugging trick to avoid memory dumping)
  
  source
  
  API Call
  
  relevance
  
  10/10
Environment Awareness
- Queries volume information
  
  details
  
  "<Input Sample>" queries volume information of "\192.168.56.1\VM10\Twitter_Checker.exe" at 00116578-00002528-779D6268-120562
  
  source
  
  API Call
  
  relevance
  
  2/10
- Tries to sleep for a long time (more than two minutes)
  
  details
  
  "<Input Sample>" sleeping for "1566804069" milliseconds
  
  source
  
  API Call
  
  relevance
  
  10/10
Installation/Persistance
- Creates/touches files in windows directory
  
  details
  
  "<Input Sample>" created file "%WINDIR%\system32\rsaenh.dll"
  
  source
  
  API Call
  
  relevance
  
  7/10
Unusual Characteristics
- Installs hooks/patches the running process
  
  details
  
  "<Input Sample>" wrote bytes "07944C83" to virtual address "0x6B402AFC" (part of module "CLR.DLL")
  
  source
  
  Hook Detection
  
  relevance
  
  10/10
- Reads information about supported languages
  
  details
  
  "<Input Sample>" (Path: "\REGISTRY\MACHINE\SYSTEM\CONTROLSET001\CONTROL\NLS\LOCALE", Key: "00000409")
  
  source
  
  Registry Access
  
  relevance
  
  3/10

Informative 5
General
- Loads modules at runtime
  
  details
  
  "<Input Sample>" loaded module "API-MS-WIN-SECURITY-LSALOOKUP-L1-1-0.DLL" at base 77B10000
  "<Input Sample>" loaded module "ADVAPI32.DLL" at base 77080000
  "<Input Sample>" loaded module "CRYPTSP.DLL" at base 75560000
  
  source
  
  API Call
  
  relevance
  
  1/10
- Loads the .NET runtime environment
  
  details
  
  "<Input Sample>" loaded module "%WINDIR%\assembly\NativeImages_v4.0.30319_32\mscorlib\51e2934144ba15628ba5a31be2dae7dc\mscorlib.ni.dll" at 6A360000
  
  source
  
  Loaded Module
- Looks up procedures from modules (excluding apphelp.dll, kernel32.dll, user32.dll, gdi32.dll, ole32.dll, comctl32.dll, uxtheme.dll, oleaut32.dll, version.dll, msctfime.ime)
  
  details
  
  "EventRegister@ADVAPI32.dll"
  "LookupAccountNameLocalW@sechost.dll"
  "EventUnregister@ADVAPI32.dll"
  "GdipDeleteBrush@gdiplus.dll"
  "LookupAccountSidW@ADVAPI32.dll"
  "LookupAccountSidLocalW@sechost.dll"
  "CryptAcquireContextW@CRYPTSP.dll"
  
  source
  
  API Call
  
  relevance
  
  1/10
Installation/Persistance
- Contains ability to lookup the windows account name
  
  details
  
  LookupAccountNameLocalW@SECHOST.DLL at 00116578-00002528-779F228D-302250
  
  source
  
  Hybrid Analysis Technology
  
  relevance
  
  5/10
Spyware/Information Retrieval
- Found a reference to a known community page
  
  details
  
  "Twitter Checker.exe" (Indicator: "twitter")
  "Twitter Checker" (Indicator: "twitter")
  
  source
  
  File/Memory
  
  relevance
  
  7/10

File Details

All Details:

Twitter Checker.exe

Filename: Twitter Checker.exe
Size: 21KiB (20992 bytes)
Type: peexe assembly executable
Description: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Architecture
: WINDOWS
SHA256
: 94239a736d099ce3343b814bf768dcf928936f70933b7bec33770826090fc889
MD5
: 9664e3f3fc40c3dc1e4b3eacf9658b05
SHA1
: 3d0790e8ebbd990c4843400aa914f20d0e7220a2
ssdeep
: 384:x2sUtT9QNxWwgr1L1z5AtWLqIAyjsW737NvWmdfCTF8y8DQkN8I:xASJU/AtWL5weQkN8I
imphash
: f34d5f2d4577ed6d9ceec516c1f5a744
PDB Pathway

Resources

Language
: NEUTRAL
Icon

Visualization

Input File (PortEx)

Version Info

Translation: 0x0000 0x04b0
LegalCopyright: Copyright 2015
Assembly Version: 1.0.0.0
InternalName: Twitter Checker.exe
FileVersion: 1.0.0.0
CompanyName: Trixie @ Codernation
LegalTrademarks: -
Comments: -
ProductName: Twitter Checker
ProductVersion: 1.0.0.0
FileDescription: Twitter Checker
OriginalFilename: Twitter Checker.exe

Classification (TrID)

82.9% (.EXE) Generic CIL Executable (.NET, Mono, etc.)
7.4% (.DLL) Win32 Dynamic Link Library (generic)
5.1% (.EXE) Win32 Executable (generic)
2.2% (.EXE) Generic Win/DOS Executable
2.2% (.EXE) DOS Executable Generic

File Sections

Details	Name	Entropy	Virtual Address	Virtual Size	Raw Size	MD5	Characteristics
Name .text Entropy 6.98245398346 Virtual Address 0x2000 Virtual Size 0x4714 Raw Size 0x4800 MD5 653356e51e4c696b8603119fe798d334	.text	6.98245398346	0x2000	0x4714	0x4800	653356e51e4c696b8603119fe798d334	-
Name .rsrc Entropy 4.21052382969 Virtual Address 0x8000 Virtual Size 0x600 Raw Size 0x600 MD5 a9e4a01db7c42052327e540bb0b67908	.rsrc	4.21052382969	0x8000	0x600	0x600	a9e4a01db7c42052327e540bb0b67908	-
Name .reloc Entropy 0.0815394123432 Virtual Address 0xa000 Virtual Size 0xc Raw Size 0x200 MD5 462fc12508961b373ef0d854f9e538bf	.reloc	0.0815394123432	0xa000	0xc	0x200	462fc12508961b373ef0d854f9e538bf	-

File Resources

Details	Name	RVA	Size	Type	Language
Name RT_VERSION RVA 0x80a0 Size 0x374 Type data Language Neutral	RT_VERSION	0x80a0	0x374	data	Neutral
Name RT_MANIFEST RVA 0x8414 Size 0x1ea Type XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators Language Neutral	RT_MANIFEST	0x8414	0x1ea	XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators	Neutral

File Imports

mscoree.dll

_CorExeMain

Screenshots

Loading content, please wait...

Hybrid Analysis

Tip: Click an analysed process below to view more details.

Analysed 1 process in total (System Resource Monitor).

Twitter_Checker.exe (PID: 2528)

Logged Script Calls	Logged Stdout	Extracted Streams	Memory Dumps
Reduced Monitoring	Network Activityy	Network Error	Multiscan Match

Network Analysis

DNS Requests

No relevant DNS requests were made.

Contacted Hosts

No relevant hosts were contacted.

HTTP Traffic

No relevant HTTP requests were made.

Extracted Strings

Download All Memory Strings (2.5KiB)

!This program cannot be run in DOS mode.$

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

#Strings

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

$87b3aba3-b926-4601-9768-5241beac5094

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

??_??s__,

Ansi based on Image Processing (screen_0.png)

@ Codernation

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

_CorExeMain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

_streamPos

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

_TrackMouseEvent

Ansi based on Runtime Data (Twitter_Checker.exe )

_windowSize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AccListViewV6

Unicode based on Runtime Data (Twitter_Checker.exe )

add_AssemblyResolve

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

alFilename

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

AppDomain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Assembly Version

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyCompanyAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyConfigurationAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyCopyrightAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyDescriptionAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyFileVersionAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyName

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyProductAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyTitleAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyTrademarkAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Attribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

BitDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

BitTreeDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

BlockCopy

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

CacheLocation

Unicode based on Runtime Data (Twitter_Checker.exe )

CloseHandle

Ansi based on Runtime Data (Twitter_Checker.exe )

CloseThemeData

Ansi based on Runtime Data (Twitter_Checker.exe )

CloseThemeDataW

Ansi based on Runtime Data (Twitter_Checker.exe )

CompilationRelaxationsAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ComVisibleAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ConfusedByAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ConfuserEx v0.6.0

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

CopyBlock

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

CoWaitForMultipleHandles

Ansi based on Runtime Data (Twitter_Checker.exe )

CryptAcquireContextW

Ansi based on Runtime Data (Twitter_Checker.exe )

DataField

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DataFilePath

Unicode based on Runtime Data (Twitter_Checker.exe )

DbgJITDebugLaunchSetting

Unicode based on Runtime Data (Twitter_Checker.exe )

DbgManagedDebugger

Unicode based on Runtime Data (Twitter_Checker.exe )

DebuggableAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DebuggingModes

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DecodeDirectBits

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DecodeNormal

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DecodePointer

Ansi based on Runtime Data (Twitter_Checker.exe )

DecodeWithMatchByte

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Decompress

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DefaultAccessPermission

Unicode based on Runtime Data (Twitter_Checker.exe )

DeleteObject

Ansi based on Runtime Data (Twitter_Checker.exe )

DestroyIcon

Ansi based on Runtime Data (Twitter_Checker.exe )

DestroyWindow

Ansi based on Runtime Data (Twitter_Checker.exe )

DevOverrideEnable

Unicode based on Runtime Data (Twitter_Checker.exe )

DisableConfigCache

Unicode based on Runtime Data (Twitter_Checker.exe )

DisableMSIPeek

Unicode based on Runtime Data (Twitter_Checker.exe )

DownloadCacheQuotaInKB

Unicode based on Runtime Data (Twitter_Checker.exe )

EnableAnchorContext

Unicode based on Runtime Data (Twitter_Checker.exe )

EnableBalloonTips

Unicode based on Runtime Data (Twitter_Checker.exe )

EnableLog

Unicode based on Runtime Data (Twitter_Checker.exe )

EncodePointer

Ansi based on Runtime Data (Twitter_Checker.exe )

EnumThreadWindows

Ansi based on Runtime Data (Twitter_Checker.exe )

er Checker

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

EventRegister

Ansi based on Runtime Data (Twitter_Checker.exe )

EventUnregister

Ansi based on Runtime Data (Twitter_Checker.exe )

FileInUseMillisecondsBetweenRetries

Unicode based on Runtime Data (Twitter_Checker.exe )

FileInUseRetryAttempts

Unicode based on Runtime Data (Twitter_Checker.exe )

FontCachePath

Unicode based on Runtime Data (Twitter_Checker.exe )

galTrademarks

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

GCHandle

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GCHandleType

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GdipDeleteBrush

Ansi based on Runtime Data (Twitter_Checker.exe )

get_CurrentDomain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_FullName

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_Length

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_ManifestModule

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_Target

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_UTF8

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetCapture

Ansi based on Runtime Data (Twitter_Checker.exe )

GetDlgItem

Ansi based on Runtime Data (Twitter_Checker.exe )

GetEntryAssembly

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetExecutingAssembly

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetKeyState

Ansi based on Runtime Data (Twitter_Checker.exe )

GetLenToPosState

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetManifestResourceStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetMessageA

Ansi based on Runtime Data (Twitter_Checker.exe )

GetParameters

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GuidAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

hecker.exe

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

Image Path

Unicode based on Runtime Data (Twitter_Checker.exe )

InitializeArray

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

InstallRoot

Unicode based on Runtime Data (Twitter_Checker.exe )

InternalName

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

IsCharState

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

IsWindow

Ansi based on Runtime Data (Twitter_Checker.exe )

lCopyright

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

LegacyPolicyTimeStamp

Unicode based on Runtime Data (Twitter_Checker.exe )

LenDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ListviewAlphaSelect

Unicode based on Runtime Data (Twitter_Checker.exe )

ListviewShadow

Unicode based on Runtime Data (Twitter_Checker.exe )

LiteralDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

LoadCursor

Ansi based on Runtime Data (Twitter_Checker.exe )

LoadCursorW

Ansi based on Runtime Data (Twitter_Checker.exe )

LoadModule

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

LogFailures

Unicode based on Runtime Data (Twitter_Checker.exe )

LoggingLevel

Unicode based on Runtime Data (Twitter_Checker.exe )

LogResourceBinds

Unicode based on Runtime Data (Twitter_Checker.exe )

LookupAccountNameLocalW

Ansi based on Runtime Data (Twitter_Checker.exe )

LookupAccountSidLocalW

Ansi based on Runtime Data (Twitter_Checker.exe )

LookupAccountSidW

Ansi based on Runtime Data (Twitter_Checker.exe )

LzmaDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Choice

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Choice2

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Coders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_DictionarySize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_DictionarySizeCheck

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_HighCoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsMatchDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRep0LongDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepG0Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepG1Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepG2Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_LenDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_LiteralDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_LowCoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_MidCoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_NumPosBits

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_NumPosStates

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_NumPrevBits

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_OutWindow

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosAlignDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosMask

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosSlotDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosStateMask

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_RangeDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_RepLenDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

MemoryStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

MethodBase

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Microsoft Sans Serif

Unicode based on Runtime Data (Twitter_Checker.exe )

mpanyName

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

mscoree.dll

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

mscorlib

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

NoClientChecks

Unicode based on Runtime Data (Twitter_Checker.exe )

Normalize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

NumBitLevels

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

OleUninitialize

Ansi based on Runtime Data (Twitter_Checker.exe )

on="1.0" encoding="UTF-8" standalone="yes"?><assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"> <assemblyIdentity version="1.0.0.0" name="MyApplication.app"/> <trustInfo xmlns="urn:schemas-microsoft-com:asm.v2"> <security> <requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3"> <requestedExecutionLevel level="asInvoker" uiAccess="false"/> </requestedPrivileges> </security> </trustInfo></assembly>

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

OnlyUseLatestCLR

Unicode based on Runtime Data (Twitter_Checker.exe )

OptimizeUsedBinaries

Unicode based on Runtime Data (Twitter_Checker.exe )

OutWindow

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ParameterInfo

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

PostMessage

Ansi based on Runtime Data (Twitter_Checker.exe )

PostMessageW

Ansi based on Runtime Data (Twitter_Checker.exe )

PostThreadMessage

Ansi based on Runtime Data (Twitter_Checker.exe )

PostThreadMessageW

Ansi based on Runtime Data (Twitter_Checker.exe )

PreferExternalManifest

Unicode based on Runtime Data (Twitter_Checker.exe )

RaiseDefaultAuthnLevel

Unicode based on Runtime Data (Twitter_Checker.exe )

ReleaseStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveEventArgs

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveEventHandler

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveMethod

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveSignature

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ReverseDecode

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeCompatibilityAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeFieldHandle

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeHelpers

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SafeProcessSearchMode

Unicode based on Runtime Data (Twitter_Checker.exe )

SetClassLong

Ansi based on Runtime Data (Twitter_Checker.exe )

SetClassLongW

Ansi based on Runtime Data (Twitter_Checker.exe )

SetCursor

Ansi based on Runtime Data (Twitter_Checker.exe )

SetDecoderProperties

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetDictionarySize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetLiteralProperties

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetPosBitsProperties

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SmoothScroll

Unicode based on Runtime Data (Twitter_Checker.exe )

STAThreadAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

StringFileInfo

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Diagnostics

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.IO

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Reflection

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.CompilerServices

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.InteropServices

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.Versioning

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Text

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

TargetFrameworkAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ToBase64String

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ToUpperInvariant

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Trixie @ Codernation

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

tter Checker

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

Twitter Checker

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Twitter Checker.exe

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

uc.Form1.resources

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

uc.Properties.Resources.resources

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UnregisterClass

Ansi based on Runtime Data (Twitter_Checker.exe )

UnregisterClassW

Ansi based on Runtime Data (Twitter_Checker.exe )

UpdateChar

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateMatch

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateRep

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateShortRep

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UseDoubleClickTimer

Unicode based on Runtime Data (Twitter_Checker.exe )

UseLegacyIdentityFormat

Unicode based on Runtime Data (Twitter_Checker.exe )

UseLegacyV2RuntimeActivationPolicyDefaultValue

Unicode based on Runtime Data (Twitter_Checker.exe )

v4.0.30319

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ValueType

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

VarFileInfo

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

VS_VERSION_INFO

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

%SAMPLEDIR%\;C:\Windows\system32;C:\Windows\system;C:\Windows;.;%ALLUSERSPROFILE%\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windo

Unicode based on Runtime Data (Twitter_Checker.exe )

$87b3aba3-b926-4601-9768-5241beac5094

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

_CorExeMain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Assembly Version

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyCompanyAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyDescriptionAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyFileVersionAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

CompilationRelaxationsAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ComVisibleAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Decompress

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DisableMSIPeek

Unicode based on Runtime Data (Twitter_Checker.exe )

EventRegister

Ansi based on Runtime Data (Twitter_Checker.exe )

EventUnregister

Ansi based on Runtime Data (Twitter_Checker.exe )

get_CurrentDomain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_FullName

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_Length

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_ManifestModule

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_Target

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_UTF8

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetCapture

Ansi based on Runtime Data (Twitter_Checker.exe )

GetDlgItem

Ansi based on Runtime Data (Twitter_Checker.exe )

GetEntryAssembly

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetExecutingAssembly

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetKeyState

Ansi based on Runtime Data (Twitter_Checker.exe )

GetLenToPosState

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetManifestResourceStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetMessageA

Ansi based on Runtime Data (Twitter_Checker.exe )

GetParameters

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

hecker.exe

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

InstallRoot

Unicode based on Runtime Data (Twitter_Checker.exe )

LogFailures

Unicode based on Runtime Data (Twitter_Checker.exe )

LogResourceBinds

Unicode based on Runtime Data (Twitter_Checker.exe )

LookupAccountNameLocalW

Ansi based on Runtime Data (Twitter_Checker.exe )

LookupAccountSidLocalW

Ansi based on Runtime Data (Twitter_Checker.exe )

LookupAccountSidW

Ansi based on Runtime Data (Twitter_Checker.exe )

mscoree.dll

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

mscorlib

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

OptimizeUsedBinaries

Unicode based on Runtime Data (Twitter_Checker.exe )

ParameterInfo

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

PostMessage

Ansi based on Runtime Data (Twitter_Checker.exe )

PostMessageW

Ansi based on Runtime Data (Twitter_Checker.exe )

PostThreadMessage

Ansi based on Runtime Data (Twitter_Checker.exe )

PostThreadMessageW

Ansi based on Runtime Data (Twitter_Checker.exe )

ResolveEventArgs

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeCompatibilityAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SafeProcessSearchMode

Unicode based on Runtime Data (Twitter_Checker.exe )

SmoothScroll

Unicode based on Runtime Data (Twitter_Checker.exe )

StringFileInfo

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.CompilerServices

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.InteropServices

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.Versioning

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

TargetFrameworkAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Twitter Checker

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Twitter Checker.exe

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UnregisterClass

Ansi based on Runtime Data (Twitter_Checker.exe )

UnregisterClassW

Ansi based on Runtime Data (Twitter_Checker.exe )

VarFileInfo

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

VS_VERSION_INFO

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

%SAMPLEDIR%\;C:\Windows\system32;C:\Windows\system;C:\Windows;.;%ALLUSERSPROFILE%\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windo

Unicode based on Runtime Data (Twitter_Checker.exe )

!This program cannot be run in DOS mode.$

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

#Strings

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

$87b3aba3-b926-4601-9768-5241beac5094

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

@ Codernation

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

_CorExeMain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

_streamPos

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

_windowSize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

add_AssemblyResolve

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

alFilename

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

AppDomain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Assembly Version

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyCompanyAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyConfigurationAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyCopyrightAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyDescriptionAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyFileVersionAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyName

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyProductAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyTitleAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

AssemblyTrademarkAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Attribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

BitDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

BitTreeDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

BlockCopy

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

CompilationRelaxationsAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ComVisibleAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ConfusedByAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ConfuserEx v0.6.0

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

CopyBlock

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DataField

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DebuggableAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DebuggingModes

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DecodeDirectBits

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DecodeNormal

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

DecodeWithMatchByte

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Decompress

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

er Checker

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

galTrademarks

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

GCHandle

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GCHandleType

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_CurrentDomain

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_FullName

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_Length

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_ManifestModule

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_Target

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

get_UTF8

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetEntryAssembly

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetExecutingAssembly

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetLenToPosState

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetManifestResourceStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GetParameters

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

GuidAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

hecker.exe

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

InitializeArray

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

InternalName

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

IsCharState

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

lCopyright

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

LenDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

LiteralDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

LoadModule

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

LzmaDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Choice

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Choice2

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Coders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_DictionarySize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_DictionarySizeCheck

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_HighCoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsMatchDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRep0LongDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepG0Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepG1Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_IsRepG2Decoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_LenDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_LiteralDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_LowCoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_MidCoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_NumPosBits

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_NumPosStates

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_NumPrevBits

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_OutWindow

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosAlignDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosDecoders

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosMask

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosSlotDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_PosStateMask

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_RangeDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

m_RepLenDecoder

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

MemoryStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

MethodBase

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

mpanyName

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

mscoree.dll

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

mscorlib

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Normalize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

NumBitLevels

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

OutWindow

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ParameterInfo

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ReleaseStream

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveEventArgs

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveEventHandler

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveMethod

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ResolveSignature

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ReverseDecode

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeCompatibilityAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeFieldHandle

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

RuntimeHelpers

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetDecoderProperties

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetDictionarySize

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetLiteralProperties

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

SetPosBitsProperties

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

STAThreadAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

StringFileInfo

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Diagnostics

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.IO

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Reflection

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.CompilerServices

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.InteropServices

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Runtime.Versioning

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

System.Text

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

TargetFrameworkAttribute

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ToBase64String

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ToUpperInvariant

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Trixie @ Codernation

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

tter Checker

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

Twitter Checker

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

Twitter Checker.exe

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

uc.Form1.resources

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

uc.Properties.Resources.resources

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateChar

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateMatch

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateRep

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

UpdateShortRep

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

v4.0.30319

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

ValueType

Ansi based on Memory/File Scan (Twitter_Checker.exe.bin)

VarFileInfo

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

VS_VERSION_INFO

Unicode based on Memory/File Scan (Twitter_Checker.exe.bin)

??_??s__,

Ansi based on Image Processing (screen_0.png)

_TrackMouseEvent

Ansi based on Runtime Data (Twitter_Checker.exe )

AccListViewV6

Unicode based on Runtime Data (Twitter_Checker.exe )

CacheLocation

Unicode based on Runtime Data (Twitter_Checker.exe )

CloseHandle

Ansi based on Runtime Data (Twitter_Checker.exe )

CloseThemeData

Ansi based on Runtime Data (Twitter_Checker.exe )

CloseThemeDataW

Ansi based on Runtime Data (Twitter_Checker.exe )

CoWaitForMultipleHandles

Ansi based on Runtime Data (Twitter_Checker.exe )

CryptAcquireContextW

Ansi based on Runtime Data (Twitter_Checker.exe )

DataFilePath

Unicode based on Runtime Data (Twitter_Checker.exe )

DbgJITDebugLaunchSetting

Unicode based on Runtime Data (Twitter_Checker.exe )

DbgManagedDebugger

Unicode based on Runtime Data (Twitter_Checker.exe )

DecodePointer

Ansi based on Runtime Data (Twitter_Checker.exe )

DefaultAccessPermission

Unicode based on Runtime Data (Twitter_Checker.exe )

DeleteObject

Ansi based on Runtime Data (Twitter_Checker.exe )

DestroyIcon

Ansi based on Runtime Data (Twitter_Checker.exe )

DestroyWindow

Ansi based on Runtime Data (Twitter_Checker.exe )

DevOverrideEnable

Unicode based on Runtime Data (Twitter_Checker.exe )

DisableConfigCache

Unicode based on Runtime Data (Twitter_Checker.exe )

DisableMSIPeek

Unicode based on Runtime Data (Twitter_Checker.exe )

DownloadCacheQuotaInKB

Unicode based on Runtime Data (Twitter_Checker.exe )

EnableAnchorContext

Unicode based on Runtime Data (Twitter_Checker.exe )

EnableBalloonTips

Unicode based on Runtime Data (Twitter_Checker.exe )

EnableLog

Unicode based on Runtime Data (Twitter_Checker.exe )

EncodePointer

Ansi based on Runtime Data (Twitter_Checker.exe )

EnumThreadWindows

Ansi based on Runtime Data (Twitter_Checker.exe )

EventRegister

Ansi based on Runtime Data (Twitter_Checker.exe )

EventUnregister

Ansi based on Runtime Data (Twitter_Checker.exe )

FileInUseMillisecondsBetweenRetries

Unicode based on Runtime Data (Twitter_Checker.exe )

FileInUseRetryAttempts

Unicode based on Runtime Data (Twitter_Checker.exe )

FontCachePath

Unicode based on Runtime Data (Twitter_Checker.exe )

GdipDeleteBrush

Ansi based on Runtime Data (Twitter_Checker.exe )

GetCapture

Ansi based on Runtime Data (Twitter_Checker.exe )

GetDlgItem

Ansi based on Runtime Data (Twitter_Checker.exe )

GetKeyState

Ansi based on Runtime Data (Twitter_Checker.exe )

GetMessageA

Ansi based on Runtime Data (Twitter_Checker.exe )

Image Path

Unicode based on Runtime Data (Twitter_Checker.exe )

InstallRoot

Unicode based on Runtime Data (Twitter_Checker.exe )

IsWindow

Ansi based on Runtime Data (Twitter_Checker.exe )

LegacyPolicyTimeStamp

Unicode based on Runtime Data (Twitter_Checker.exe )

ListviewAlphaSelect

Unicode based on Runtime Data (Twitter_Checker.exe )

ListviewShadow

Unicode based on Runtime Data (Twitter_Checker.exe )

LoadCursor

Ansi based on Runtime Data (Twitter_Checker.exe )

LoadCursorW

Ansi based on Runtime Data (Twitter_Checker.exe )

LogFailures

Unicode based on Runtime Data (Twitter_Checker.exe )

LoggingLevel

Unicode based on Runtime Data (Twitter_Checker.exe )

LogResourceBinds

Unicode based on Runtime Data (Twitter_Checker.exe )

LookupAccountNameLocalW

Ansi based on Runtime Data (Twitter_Checker.exe )

LookupAccountSidLocalW

Ansi based on Runtime Data (Twitter_Checker.exe )

LookupAccountSidW

Ansi based on Runtime Data (Twitter_Checker.exe )

Microsoft Sans Serif

Unicode based on Runtime Data (Twitter_Checker.exe )

NoClientChecks

Unicode based on Runtime Data (Twitter_Checker.exe )

OleUninitialize

Ansi based on Runtime Data (Twitter_Checker.exe )

OnlyUseLatestCLR

Unicode based on Runtime Data (Twitter_Checker.exe )

OptimizeUsedBinaries

Unicode based on Runtime Data (Twitter_Checker.exe )

PostMessage

Ansi based on Runtime Data (Twitter_Checker.exe )

PostMessageW

Ansi based on Runtime Data (Twitter_Checker.exe )

PostThreadMessage

Ansi based on Runtime Data (Twitter_Checker.exe )

PostThreadMessageW

Ansi based on Runtime Data (Twitter_Checker.exe )

PreferExternalManifest

Unicode based on Runtime Data (Twitter_Checker.exe )

RaiseDefaultAuthnLevel

Unicode based on Runtime Data (Twitter_Checker.exe )

SafeProcessSearchMode

Unicode based on Runtime Data (Twitter_Checker.exe )

SetClassLong

Ansi based on Runtime Data (Twitter_Checker.exe )

SetClassLongW

Ansi based on Runtime Data (Twitter_Checker.exe )

SetCursor

Ansi based on Runtime Data (Twitter_Checker.exe )

SmoothScroll

Unicode based on Runtime Data (Twitter_Checker.exe )

UnregisterClass

Ansi based on Runtime Data (Twitter_Checker.exe )

UnregisterClassW

Ansi based on Runtime Data (Twitter_Checker.exe )

UseDoubleClickTimer

Unicode based on Runtime Data (Twitter_Checker.exe )

UseLegacyIdentityFormat

Unicode based on Runtime Data (Twitter_Checker.exe )

UseLegacyV2RuntimeActivationPolicyDefaultValue

Unicode based on Runtime Data (Twitter_Checker.exe )

%SAMPLEDIR%\;C:\Windows\system32;C:\Windows\system;C:\Windows;.;%ALLUSERSPROFILE%\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windo

Unicode based on Runtime Data (Twitter_Checker.exe )

Extracted Files

No significant files were extracted.

Notifications

Runtime 0

Environment 1

Sample was not shared with the community

Community

There are no community comments.

You must be logged in to submit a comment.

Twitter Checker.exe

Incident Response

Risk Assessment

Indicators

Malicious Indicators 1

Suspicious Indicators 7

Informative 5

File Details

Twitter Checker.exe

Resources

Visualization

Version Info

Classification (TrID)

File Sections

File Resources

File Imports

Screenshots

System Resource Monitor

Hybrid Analysis

Network Analysis

DNS Requests

Contacted Hosts

HTTP Traffic

Extracted Strings

Extracted Files

Notifications

Runtime 0

Environment 1

Community

Latest News

Vetting required

Request Report Deletion

Link