Sample details: 2cc30c2ae7b6d71557780287f4bff028 --

Hashes
MD5: 2cc30c2ae7b6d71557780287f4bff028
SHA1: 9a71f0c6a22f34bdf1c07a5f22dd29b427758940
SHA256: e0091e1d75b2b8b773aa9bb32aa81e4213b57ac039bc059bd640103a83d80101
SSDEEP: 768:+eNNWfGn00l4I6UOKEeRBzKRO5gsIEDWIwen38iOT66/JJIwxPE78DBX:DNB/6UOKEsFs0rIAx3A66B+wBE78DBX
Details
File Type: PE32
Yara Hits
YRP/contentis_base64 | YRP/domain | YRP/IsPE32 | YRP/IsWindowsGUI |
Strings
		!This program cannot be run in DOS mode.
`.idata
@.rsrc
@.reloc
mspaint.exe
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
KERNEL32.dll
ShellExecuteA
SHELL32.dll
333330
{{{{{{s3
{{{{{{{s
{{{{{{{s
r**"{{{w0
{***+{{{{{s
{z*{{{{{{s
80,!>)()^cxbfkb|njumg`wynsme
d^`w~yccxfdm
Dc}|}ybttoZ~cg}x|`s
D#~=(#! D
PADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADD
(lLc-cS
(lLc/cS]V%~
+??\M=
6zLL!)
V>lfYj
Bpbm3r>
4#4s$p/P
_9ERl/C
N+]3d<
pEioa /R
{Rd9eGU-^
26\B4G:S.
.}Qq8b
AlP(X~G
zINOjk{7
NOzk{7
6Q.W~+
tadyjjR
`(rT/0-'\
3G[!H!h
#H?bgq
#1qBS*
,V{Ih4
]zmS'V
=[fVU,
;]@}*\
+%3'ya
(H`dV	
4uyHBp5
t*$KcE
*7IvF},
)diKWY
9ow^@r
z|an`'
'xdb3A
_e75=?P
n{{tb;
mpT@x2Im
[v;)QI`5
U?)VAbl
I7	s^)
Lg<0}P
TI:E[f
!6e\	2
<]CwjIf
IRE@9f
fhU<Q]f]f
%LuyWX
!YmUY-
QSWSht