From 57ddb3bce58f3019af44ca36ab31fa09c55de696 Mon Sep 17 00:00:00 2001 From: Remi Jullian Date: Tue, 6 Mar 2018 15:45:50 +0100 Subject: [PATCH] Add new strings related to formbook hashes --- formbook/func_index_hashes.txt | 84 +++++++++++++++++----------------- 1 file changed, 42 insertions(+), 42 deletions(-) diff --git a/formbook/func_index_hashes.txt b/formbook/func_index_hashes.txt index b26a417..0c0ffc6 100644 --- a/formbook/func_index_hashes.txt +++ b/formbook/func_index_hashes.txt @@ -78,13 +78,13 @@ 77 0x2430512b CryptStringToBinaryA 78 0x3ebe9086 unknown 79 0x4c6fddb5 unknown -80 0x276db13e unknown -81 0xe00f0a8e unknown +80 0x276db13e VBoxService.exe +81 0xe00f0a8e vboxtray.exe 82 0x85cf9404 unknown 83 0xb2248784 unknown -84 0xcdc7e023 unknown -85 0x11f5f50 unknown -86 0x1dd4bc1c unknown +84 0xcdc7e023 Procmon.exe +85 0x11f5f50 filemon.exe +86 0x1dd4bc1c wireshark.exe 87 0x8235fce2 unknown 88 0x21b17672 unknown 89 0xbba64d93 unknown @@ -92,10 +92,10 @@ 91 0x9cb95240 unknown 92 0x28c21e3f unknown 93 0x9347ac57 unknown -94 0x9d9522dc unknown -95 0x911bc70e unknown -96 0x74443db9 unknown -97 0xf04c1aa9 unknown +94 0x9d9522dc vmusrvc.exe +95 0x911bc70e python.exe +96 0x74443db9 perl.exe +97 0xf04c1aa9 regmon.exe 98 0x6484bcb5 unknown 99 0x11fc2f72 unknown 100 0x2b44324f unknown @@ -112,67 +112,67 @@ 111 0xc1626bff unknown 112 0xb4e1ae2 unknown 113 0x24a48dcf unknown -114 0xe11da208 unknown +114 0xe11da208 SbieDll.dll 115 0x1c920818 unknown 116 0x65f4449c unknown 117 0xc30bc050 unknown 118 0x3e86e1fb unknown -119 0x9e01fc32 unknown -120 0x216500c2 unknown -121 0x48e207c9 unknown -122 0x2decf13e unknown -123 0x19996921 unknown -124 0xb7da3dd7 unknown -125 0x47f39d2b unknown -126 0x6777e2de unknown +119 0x9e01fc32 iexplore.exe +120 0x216500c2 firefox.exe +121 0x48e207c9 chrome.exe +122 0x2decf13e MicrosoftEdgeCP.exe +123 0x19996921 explorer.exe +124 0xb7da3dd7 opera.exe +125 0x47f39d2b safari.exe +126 0x6777e2de torch.exe 127 0xd980e37f unknown -128 0x963fea3b unknown -129 0xacddb7ea unknown -130 0x110aec35 unknown -131 0x647331f3 unknown +128 0x963fea3b maxthon.exe +129 0xacddb7ea seamonkey.exe +130 0x110aec35 avant.exe +131 0x647331f3 deepnet.exe 132 0x2e381da4 unknown 133 0x50f66474 unknown 134 0xec16e0c0 unknown -135 0xf9d81a42 unknown +135 0xf9d81a42 notepad.exe 136 0xd6c6f9db unknown 137 0xef3df91 unknown 138 0x60e0e203 unknown 139 0x7c81caaf unknown 140 0x71c2ec76 unknown -141 0x25e431cc unknown +141 0x25e431cc k-meleon.exe 142 0x106f568f unknown 143 0x6a60c8a9 unknown 144 0xb758aab3 unknown -145 0x3b34de90 unknown -146 0x700420f5 unknown -147 0xee359a7e unknown -148 0xd1d808a unknown -149 0x47ba47a5 unknown -150 0xff959c4c unknown -151 0x5d30a87d unknown +145 0x3b34de90 citrio.exe +146 0x700420f5 coolnovo.exe +147 0xee359a7e coowon.exe +148 0xd1d808a cyberfox.exe +149 0x47ba47a5 dooble.exe +150 0xff959c4c vivaldi.exe +151 0x5d30a87d iridium.exe 152 0xaa95a900 unknown -153 0x80b19064 unknown -154 0x9c5a481a unknown -155 0x1dd252d unknown -156 0xdb3055fc unknown -157 0xe0cf8bf1 unknown +153 0x80b19064 epic.exe +154 0x9c5a481a midori.exe +155 0x1dd252d mustang.exe +156 0xdb3055fc orbitum.exe +157 0xe0cf8bf1 palemoon.exe 158 0x3a48eabc unknown -159 0xf0472f97 unknown -160 0x4a6323de unknown -161 0x4260edca unknown +159 0xf0472f97 qupzilla.exe +160 0x4a6323de sleipnir.exe +161 0x4260edca superbird.exe 162 0x53f7fb4f unknown 163 0x3d2e9c99 unknown 164 0xf6879235 unknown 165 0xe6723cac unknown 166 0xe184dfaa unknown 167 0xe99ffaa0 unknown -168 0xf6aebe25 unknown +168 0xf6aebe25 outlook.exe 169 0xefadf9a5 unknown 170 0x215de938 unknown 171 0x757906aa unknown 172 0x84f8d766 unknown 173 0xb6494f65 unknown -174 0x13a75318 unknown +174 0x13a75318 thunderbird.exe 175 0x5bde5587 unknown 176 0xe9eba2a4 unknown 177 0x6b8a0df3 unknown @@ -203,7 +203,7 @@ 202 0x4536ab86 unknown 203 0x3476afc1 unknown 204 0xaf24a63b unknown -205 0x393b9ac8 unknown +205 0x393b9ac8 totalcmd.exe 206 0x414a3c70 unknown 207 0x487e77f4 unknown 208 0xbee1bdf6 unknown