Sample details: 44e92c4b5f440b756f8fb0c9eeb460b2 --

Hashes
MD5: 44e92c4b5f440b756f8fb0c9eeb460b2
SHA1: ed5bf6e6e4f2b71ba1e0f73381ee64155f9722c2
SHA256: 876c5cea11bbbcbe4089a3d0e8f95244cf855d3668e9bf06a97d8e20c1ff237c
SSDEEP: 1536:3Qz6R5eAuSLOrx/Zq3ykKmMFb+Yy8yoN4yjNEWt0kaLFb8:3Qz6R5eAuOOX7SMpNjxN4yjNEWt0kae
Details
File Type: PE32
Added: 2018-03-06 20:00:45
Yara Hits
YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/HasModified_DOS_Message | YRP/domain | YRP/contentis_base64 | YRP/keylogger | YRP/win_files_operation |
Parent Files
ff5e1f27193ce51eec318714ef038bef
Strings
		`.data
@.rdata
@.rsrc
h1644R
h4657P
cEdCPEdsP
O.kO.3
cccccc
Ed3PEd#P
O*dSud
;P|<ds
udCud3
ccccu@
cPEd#P
ccc}DC}
O.Cp}l
cccccc
EdCPEds
}drv}#
%sEd3P
       
      
h6284h2455
Rh5473
RWQh163
64471M
h6758S
Qh5218
      
h8668S
Qh5787
Sh8434
QRSRh71
e*0CFY
&x	83;u
`0=fz(
0]hD!"
M*@YP9p
m	[82Gd
=FaCiy1
2lA8`xp
KERNEL32.DLL
SHELL32.DLL
USER32.DLL
LocalFree
ExitProcess
GetCurrentProcessId
QueryPerformanceCounter
LeaveCriticalSection
InterlockedIncrement
SetLastError
GetModuleHandleA
LoadLibraryA
LoadLibraryA
GetCurrentProcessId
GetModuleHandleA
VirtualFree
WriteFile
VirtualAlloc
UnhandledExceptionFilter
HeapFree
GetCurrentThreadId
InitializeCriticalSection
GetProcessHeap
GetCurrentThreadId
ReadFile
LoadLibraryA
GetModuleHandleW
HeapReAlloc
MultiByteToWideChar
CreateThread
GetProcessHeap
SetUnhandledExceptionFilter
GetStartupInfoA
CloseHandle
LocalFree
ExitProcess
HeapFree
GetCurrentProcessId
WaitForSingleObject
GetCommandLineW
SetEvent
GetModuleFileNameA
CreateFileW
CreateFileA
GetCommandLineA
CreateThread
LoadLibraryW
DeleteCriticalSection
VirtualAlloc
SetLastError
ReadFile
WaitForSingleObject
LeaveCriticalSection
GetCurrentProcess
GetCommandLineW
DeleteCriticalSection
GetCommandLineW
GetCommandLineW
SetUnhandledExceptionFilter
HeapDestroy
SetFilePointer
MultiByteToWideChar
GetACP
WaitForSingleObject
FormatMessageW
ExitProcess
LeaveCriticalSection
InterlockedDecrement
GetCommandLineW
SetLastError
VirtualFree
GetStartupInfoA
GetCurrentProcess
GetACP
GetProcessHeap
GetModuleHandleA
GetTickCount
TerminateProcess
lstrcpyW
HeapAlloc
CreateThread
SHGetSpecialFolderPathW
DragAcceptFiles
DragQueryFileW
CommandLineToArgvW
ExtractIconExW
DragAcceptFiles
ExtractIconExW
SHChangeNotify
SHGetDesktopFolder
SHGetDesktopFolder
ExtractIconW
DragAcceptFiles
SHGetDesktopFolder
SHGetDesktopFolder
SHGetPathFromIDListW
DragQueryFileW
SHGetFileInfoW
DragAcceptFiles
SHGetMalloc
SHGetFolderPathW
SHGetMalloc
ShellExecuteExW
SHGetDesktopFolder
ShellAboutW
Shell_NotifyIconW
Shell_NotifyIconW
SHGetSpecialFolderLocation
Shell_NotifyIconW
Shell_NotifyIconW
DragAcceptFiles
CommandLineToArgvW
SHGetPathFromIDListW
CommandLineToArgvW
Shell_NotifyIconW
DragQueryFileW
CommandLineToArgvW
ExtractIconW
ExtractIconW
SHGetMalloc
CommandLineToArgvW
ShellExecuteExW
SHGetFolderPathW
CommandLineToArgvW
DragQueryFileW
SHGetMalloc
ShellAboutW
SHGetFolderPathW
SHGetFolderPathW
SHGetMalloc
SHGetDesktopFolder
SHGetDesktopFolder
SHGetFileInfoW
SHGetSpecialFolderPathW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
ExtractIconW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHChangeNotify
DragFinish
SHGetDesktopFolder
ShellAboutW
SHGetSpecialFolderPathW
SHGetPathFromIDListW
DragQueryFileW
SHGetFolderPathW
ShellAboutW
ShellExecuteExW
ExtractIconExW
SHChangeNotify
SHChangeNotify
SHGetSpecialFolderPathW
SHGetSpecialFolderLocation
SHGetMalloc
Shell_NotifyIconW
SHChangeNotify
SHGetSpecialFolderLocation
GetDesktopWindow
LoadMenuW
MessageBoxA
SendMessageA
SetCursor
GetDlgItem
MessageBoxW
wsprintfW
GetSystemMetrics
IsDialogMessageW
MessageBoxA
DrawTextW
WinHelpW
SetForegroundWindow
DispatchMessageA
SetForegroundWindow
CharNextW
FindWindowW
EndPaint
CallWindowProcW
RegisterClassExW
FillRect
MessageBeep
SetForegroundWindow
EndDialog
SetTimer
ReleaseCapture
CloseClipboard
GetCursorPos
GetClientRect
EndPaint
LoadStringA
SetFocus
TranslateMessage
SendDlgItemMessageW
GetWindowRect
UpdateWindow
SetCapture
wsprintfW
GetDlgItem
GetWindow
GetParent
DispatchMessageW
EndDialog
IsWindowVisible
DefWindowProcW
RegisterClassW
DestroyMenu
SetWindowLongW
GetDlgItem
PeekMessageW
MessageBoxA
IsDialogMessageW
wsprintfW
GetDesktopWindow
GetClientRect
FindWindowW
ShowWindow
IsWindowVisible
GetKeyState
IsWindowVisible
LoadStringA
EnableWindow
CreateDialogParamW
PostQuitMessage
LoadStringA
SendDlgItemMessageW
DestroyMenu
KillTimer
SendMessageA
DispatchMessageA
MapWindowPoints
GetSysColor
GetFocus
GetWindow
DrawTextW
GetCursorPos
MessageBeep
PostQuitMessage
LoadIconW
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
 <trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
 <security>
 <requestedPrivileges><requestedExecutionLevel level="asInvoker" uiAccess="false"/></requestedPrivileges>
 </security>
 </trustInfo>
</assembly>