Sample details: 4f2e3205042e801c90a78546c57452e2 --

Hashes
MD5: 4f2e3205042e801c90a78546c57452e2
SHA1: 4168b02dbadfd118881ab72845e31d19b3d63114
SHA256: ad5cc49b5bb4d3fc19561a99b5da69073c7f400105668780265a689362d782ce
SSDEEP: 1536:rCvd4ranxq5glHyZ1oMEpmmZ+bczncO7zlnz+QnulXF/1AMY:rCHxqJZ5+mm0bgcOflnB4FtAMY
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Cpp_v60_DLL_additional | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/ExportTableIsBad | YRP/HasModified_DOS_Message | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/Str_Win32_Wininet_Library |
Strings
		am must
!dern32
 bThrL
	This pro W
`.rdata
@.data
fffff.
D$ O~3
D$@%ts;
T$,+T$l;T$L
D$ %=@
D$85E*
ffffff.
D$Tg6n
D$x%$e
D$x%F3;
L$t-)2
D$$&|kT
D$ %,2
0CLeeeEer
ttTttttT
ccCccCc
bBweeeeEEE]
hrjWRjerjR
HEHERR
hHWHWrh
HE##@@$#%
!!!@$GEg
kernel32
jhejzetj34#@%!\\LEHK.pdb
DsCrackNamesW
NTDSAPI.dll
SHFileOperationA
SHELL32.dll
CreatePolygonRgn
AngleArc
SelectPalette
GDI32.dll
CryptImportPublicKeyInfo
CryptMsgControl
CertCloseStore
CRYPT32.dll
DrawDibClose
MSVFW32.dll
DeletePrinter
WINSPOOL.DRV
msi.dll
OLEAUT32.dll
iswlower
ntdll.dll
TrackMouseEvent
EndDialog
RegisterDeviceNotificationW
LoadCursorW
UnpackDDElParam
TileWindows
IsMenu
IsCharLowerW
EnumDesktopWindows
GetActiveWindow
GetClipboardOwner
EnableMenuItem
SetCursorPos
DdeDisconnectList
SetFocus
USER32.dll
_time64
msvcrt.dll
UuidCreate
NdrGetUserMarshalInfo
NdrConformantArrayUnmarshall
RPCRT4.dll
RegNotifyChangeKeyValue
CryptDestroyHash
DeleteAce
ADVAPI32.dll
VirtualUnlock
ReadConsoleOutputW
GetCurrentDirectoryW
lstrlenW
LocalUnlock
ProcessIdToSessionId
GetModuleHandleA
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetLastError
GetProcessHeap
GetCommandLineA
FlsFree
FlsGetValue
KERNEL32.dll
SetupDiRemoveDevice
CM_Get_Device_ID_List_ExW
SETUPAPI.dll
MprConfigTransportGetInfo
MPRAPI.dll
QuerySecurityPackageInfoW
MakeSignature
Secur32.dll
StgIsStorageILockBytes
HICON_UserMarshal
ReleaseStgMedium
ole32.dll
CryptCATStoreFromHandle
WINTRUST.dll
mixerGetID
WINMM.dll
RasGetProjectionInfoW
RasGetCustomAuthDataW
RASAPI32.dll
StrDupA
PathMakePrettyW
UrlGetPartA
StrRChrA
StrCpyNW
SHRegGetValueW
SHLWAPI.dll
glTexImage2D
OPENGL32.dll
UnlockUrlCacheEntryStream
DeleteUrlCacheEntryW
WININET.dll
g_rgSCardRawPci
SCardListReaderGroupsA
WinSCard.dll
1""%$+5
Ns2fNV
@*/2S5
K?Sz'K*u
 y%=Q5W
)-)h&zD
T-o<0+
lIGKz&3*u
DKB_|9G,
}IXPR1
}I*PR1
^ U-+;
_ UZ9;
}ISSR1
Qq[/xW
%s[/re
u#/[dP
[Fl+$U
?%raii
[Fl+$U
Wu?/WD^
D{2	J,
)zX8t&(t
qq6Zc%A}
y(+%00
fpd_-(@
Mp:0))&
kMu27}
b{a.ZY
Bqvm	7
Y]Vla#
Ij(a.C
"~8e$s
%6H\t[L
SG&2FDT>
tdl|8p
M:eXL.
ALbI?.u
W@O19QvZ
:~DAF9
Y%xO'J
ap!U2ts
^qFJ&{<
dYD2AOR
/6|W3XC
$q!#GD
].O+9g
&7\&+\QM
~$Kxc?
'Em[w3
K'F3zt
]V{\Jh
G~N~@`
eP8tPJ
D[f#vd{W
Z~g=J1
[o7Qzx?
M09a#=K
]w31p87
@?Elj8
U&t$5O`hZE
V?8SJe
@[Fg:n
V JRiAA
"/I*,h
WzCTQFy
]wH|>r n
E9/1<6
(-KLq1
&XUAX`
=?>!P`
rS~Uo)1
O-b|^}|
"$rJzt
?h,Mc_88
I	by#<
 !pa#;
e6-)$	
pw@tl0
[!Sc?C
E@Wne6
qXD4||'
Z$Lde?
Sa??9i
e]J`~w;T
/u-cEK
?e{K	36
yxq{F((
]] ^.b
@h	A3N
Ev[&be
gP^@H`
<m9_#:L
?pU \_
_HV89Q
;UWH""
XAO19Q
yu{uDb