Sample details: 08a92e9b7ba3d9a03412db9cc031fe94 --

Hashes
MD5: 08a92e9b7ba3d9a03412db9cc031fe94
SHA1: 0876843986158fcdd838944d16156a3873b474ea
SHA256: c714b321335c942077fca6675258f50e863b0accc39911d764b8dc5c55c29ba9
SSDEEP: 1536:UUzuWZ1TaPBBWL2M2c4DVX1gqAzaODFLkk9OqcTcPZXRgd1FSNqQ/s9d1eM2HZY:VzxPTy3SpazSa7TuZX8FSNZhZY
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/domain | YRP/contentis_base64 |
Source
http://microdocs.ru/axls/svita.exe
Strings
          	            !This program cannot be run in DOS mode.
`.rdata
@.data
SSSVSW
SSSSSSh
SSSSSSh
SSSSSSh
SSSVSW
SSSSSSh
SSSVSW
SSSVSW
PSSSSSSSS3
uGj8^3
PSSSSSSSSj
j0_jZS
SSSSSSj
SSSSSSS
0WWWWW
0WWWWW
0WWWWW
BBFFf;
QQSVWd
0A@@Ju
t^9(uZ
tD9(u@
HHt@HHt
2If90t
tNIt?It0It 
YYuTVWh
^SSSSS
^SSSSS
8VVVVV
@@BBf;
@@BBf;
0WWWWW
@@BBf;
@@BBf;
8VVVVV
AAGGf;
sZj1X+E
0SSSSS
0SSSSS
^SSSSS
t$<"u	3
>=Yt/j
< tK<	tG
t#SSUP
t$$VSS
_^][YY
j8j ^V
s[S;7|G;w
tR99u2
YYu-9D$
PPPPPPPP
0SSSSS
PPPPPPPP
^SSSSS
j"^SSSSS
v	N+D$
URPQQh8
	X 9} 
^SSSSS
^SSSSS
;t$,v-
UQPXY]Y[
t+WWVPV
_VVVVV
^WWWWW
^SSSSS
^SSSSS
^SSSSS
^SSSSS
j"^SSSSS
0SSSSS
v	N+D$
_VVVVV
0SSSSS
<+t(<-t$:
+t HHt
u&f!;f;
^SSSSS
o9f5x(6
{t1su0{0D[
*[1cCJ
L%K$9+
[]tCY[
mp#M4Sb
|5#tk$
I]xkEh
VC20XC00U
f-00f=
f-00f=
t+Ht$Ht
string too long
invalid string position
Filename cannot be displayed on Win9x
Expression cannot be displayed on Win9x
Unknown exception
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
.mixcrt
EncodePointer
KERNEL32.DLL
DecodePointer
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
(null)
`h````
xpxxxx
CorExitProcess
mscoree.dll
GetProcessWindowStation
GetUserObjectInformationW
GetLastActivePopup
GetActiveWindow
MessageBoxW
Microsoft Visual C++ Runtime Library
(Press Retry to debug the application - JIT must be enabled)
For information on how your program can cause an assertion
failure, see the Visual C++ documentation on asserts
Expression: 
Line: 
File: 
<program name unknown>
Program: 
Assertion failed!
runtime error 
TLOSS error
SING error
DOMAIN error
An application has made an attempt to load the C runtime library incorrectly.
Please contact the application's support team for more information.
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
This application has requested the Runtime to terminate it in an unusual way.
Please contact the application's support team for more information.
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
Runtime Error!
Program: 
bad exception
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
`h`hhh
xppwpp
_nextafter
_hypot
InitializeCriticalSectionAndSpinCount
kernel32.dll
GetUserObjectInformationA
MessageBoxA
USER32.DLL
 Complete Object Locator'
 Class Hierarchy Descriptor'
 Base Class Array'
 Base Class Descriptor at (
 Type Descriptor'
`local static thread guard'
`managed vector copy constructor iterator'
`vector vbase copy constructor iterator'
`vector copy constructor iterator'
`dynamic atexit destructor for '
`dynamic initializer for '
`eh vector vbase copy constructor iterator'
`eh vector copy constructor iterator'
`managed vector destructor iterator'
`managed vector constructor iterator'
`placement delete[] closure'
`placement delete closure'
`omni callsig'
 delete[]
 new[]
`local vftable constructor closure'
`local vftable'
`udt returning'
`copy constructor closure'
`eh vector vbase constructor iterator'
`eh vector destructor iterator'
`eh vector constructor iterator'
`virtual displacement map'
`vector vbase constructor iterator'
`vector destructor iterator'
`vector constructor iterator'
`scalar deleting destructor'
`default constructor closure'
`vector deleting destructor'
`vbase destructor'
`string'
`local static guard'
`typeof'
`vcall'
`vbtable'
`vftable'
operator
 delete
__unaligned
__restrict
__ptr64
__clrcall
__fastcall
__thiscall
__stdcall
__pascal
__cdecl
__based(
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
GAIsProcessorFeaturePresent
KERNEL32
CONOUT$
1#QNAN
1#SNAN
bad allocation
(Array)
(ByRef)
(VT_EMPTY)
(VT_NULL)
(VT_BLOB)
Lucida Sans Unicode
vectorscope indented 
Device
Software
 Control Panel
hLoadsLib
kernel32
mderate ASCII Inherit kudos Nslkup 
PrintDlgBox
eventcoll
map/set<T> too long
deque<T> too long
vector<T> too long
invalid map/set<T> iterator
?uZEeu