Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 008db93a412471589985e3f4b7389336 --

Hashes
MD5: 008db93a412471589985e3f4b7389336
SHA1: 67b5833435addc8c93e85a280d4595706e426d52
SHA256: e79a9e8a9b1c81a4c0a163b5a15d4286e73f5305b3a52239c090687921f788ed
SSDEEP: 768:BUgmyGb8SShUc2xOT9veuq/weEyYlLZIVFwlotyBax9:BpV32QT9veuqIeNYZ4woL
Details
File Type: PE32
Yara Hits
YRP/Armadillo_v1xx_v2xx_additional | YRP/Microsoft_Visual_Cpp_v70_DLL | YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/Microsoft_Visual_Cpp_60_DLL_Debug | YRP/Armadillo_v1xx_v2xx | YRP/Microsoft_Visual_Cpp_v60_DLL | YRP/Microsoft_Visual_Cpp_60 | YRP/Armadillov1xxv2xx | YRP/IsPE32 | YRP/IsDLL | YRP/IsWindowsGUI | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/win_files_operation | YRP/DES_sbox |
Parent Files
06623a1051ad739a268ff132cd62f25e
Strings
		!This program cannot be run in DOS mode.
2'o}a'o}a'o}a
pwaho}a
ssa3o}a'o|aco}aEpna$o}a
pva$o}a
pya&o}aRich'o}a
`.rdata
@.data
.reloc
SUVWj	
SUVWj	
HHtpHHtl
<]t_G<-uA
SS@SSPVSS
t#SSUP
t$$VSS
_^][YY
VWuBhlt
YYF;5 
"WWShxt
PPPPPPPP
PPPPPPPP
t.;t$$t(
VC20XC00U
`h````
ppxxxx
(null)
runtime error 
TLOSS error
SING error
DOMAIN error
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
abnormal program termination
- not enough space for environment
- not enough space for arguments
- floating point not loaded
Microsoft Visual C++ Runtime Library
Runtime Error!
Program: 
<program name unknown>
GetLastActivePopup
GetActiveWindow
MessageBoxA
user32.dll
H:mm:ss
dddd, MMMM dd, yyyy
M/d/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
VirtualAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetFilePointer
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetStdHandle
GetStringTypeA
GetStringTypeW
ReadFile
LCMapStringA
LCMapStringW
FlushFileBuffers
RtlUnwind
CloseHandle
KERNEL32.dll
PassDLL.dll
??0CPassDLL@@QAE@XZ
??4CPassDLL@@QAEAAV0@ABV0@@Z
?fnPassDLL@@YAHXZ
?nPassDLL@@3HA
vncDecryptPasswd
vncEncryptPasswd
;3+#>6.&
'2, /+0&7!4-)1#
2,2D253D3g3 525>5E5b5l5~5
798@8O8W8b8h8n8x8
:":*:Q:]:g:o:w:}:
;#;+;X;s;
;%>3>9>S>X>g>m>}>
?*?0?t?
2-232I2P2V2`2f2k2q2
203*424
4<5K5a5
<!<%<)<-<
0'040H0
0G1m1}2
6<7Y7L8W8\8f8k8
91979q9y9
:$:5:L:V:o:
<9<c<q<
000<0L0
0,1>1M1_1
162J2h2t2
3 3'3/34383<3e3
5=5D5H5L5P5T5X5\5`5
9.9;9U9c9q9|9
: :C:M:V:r:
;&;8;>;K<S<Y<a<
=$=W=]=
B0j0p0|0
2M2_2n2
3%3S3_3i3t3~3
4	4x4~4
5?5K5]5k5z5
656[6u6|6
8 8$8(8,808z8
9 9%969R9m:z:
;;;h;|;
< <6<><g<t<y<
<L=S=l=
> >'>9>A>Q>b>u>
2W3|3@4P4
;?;Q;d;
0D9P9p9
:d:l:t:|:
:p=t=x=|=
4 4$4(4,4044484<4@4D4H4L4P4T4X4\4`4d4h4l4p4t4x4|4