Sample details: 11b16764d498c35f100ef8ff4afeb4a3 --

Hashes
MD5: 11b16764d498c35f100ef8ff4afeb4a3
SHA1: 7f24274583211d451da54234746019d9f1782d06
SHA256: a8773f5de9b8813f01bc4519496afb52c3975dc79bca977ed66bfb1b064bbb64
SSDEEP: 384:9trM+eCJWz2NrbwdEJ55GXTkQTq2VTvCTHr:/VE0r8dEaZS
Details
File Type: PE32
Yara Hits
YRP/MingWin32_GCC_V3X | YRP/MingWin32_GCC_3x | YRP/MingWin32_v_h_additional | YRP/MinGW_GCC_3x_additional | YRP/MinGW_GCC_3x | YRP/MingWin32_GCC_3x_additional | YRP/MingWin32_v_h | YRP/MingWin32_v | YRP/MinGWGCC3x | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/MinGW_1 | YRP/domain | YRP/contentis_base64 | YRP/network_tcp_socket | YRP/network_dns | YRP/win_files_operation | YRP/Str_Win32_Winsock2_Library | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings
		!This program cannot be run in DOS mode.
`.data
.rdata
.idata
5f933e22f83305651e7f70374a8ff60283305651e7f70374a8ff602
-LIBGCCW32-EH-2-SJLJ-GTHR-MINGW32
w32_sharedptr->size == sizeof(W32_EH_SHARED)
%s:%u: failed assertion `%s'
../../gcc/gcc/config/i386/w32-shared-ptr.c
GetAtomNameA (atom, s, sizeof(s)) != 0
AddAtomA
CloseHandle
CreateDirectoryA
CreateFileA
CreateProcessA
ExitProcess
FindAtomA
FreeLibrary
GetAtomNameA
GetFileAttributesA
GetFileSize
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetSystemInfo
GetTempPathA
GetVersionExA
GetVolumeInformationA
LoadLibraryA
SetUnhandledExceptionFilter
WaitForSingleObject
WriteFile
_strlwr
__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_onexit
_setmode
atexit
fclose
fflush
fprintf
fwrite
malloc
memcpy
memmove
memset
signal
strcat
strcmp
strcpy
strlen
strncat
ShellExecuteExA
GetSystemMetrics
WSACleanup
WSAStartup
closesocket
connect
gethostbyname
inet_addr
inet_ntoa
socket
KERNEL32.dll
msvcrt.dll
msvcrt.dll
SHELL32.DLL
USER32.dll
WSOCK32.DLL