Sample details: 533ab7d9a1c1d63726f8580f48fdeaf0 --

Hashes
MD5: 533ab7d9a1c1d63726f8580f48fdeaf0
SHA1: 69c0014a6b6e4555bf259356bae7532fb26aadaa
SHA256: 3c9ae80600fb01473d1ce6d92e853a5e46b805cb583c9a88257d943557b7bc90
SSDEEP: 768:rYJJZLJcxnvNceddNyDr2SZ7hy/5F5s0aX7UP8bas0+a1T6tizYcCe:rwi3n0Dr2C7hyBjniUP8bas0fEQ
Details
File Type: PE32
Yara Hits
Source
http://dropbox.com/s/dl/3anvvlpcrt4f7af/joddd.jpg
https://www.dropbox.com/s/dl/3anvvlpcrt4f7af/joddd.jpg?dl=1
Strings
		!This program cannot be run in DOS mode.
`.rsrc
@.reloc
v2.0.50727
#Strings
ThreadSafeObjectProvider`1
get_PropertyGrid1
set_PropertyGrid1
get_SaveFileDialog1
set_SaveFileDialog1
get_OpenFileDialog1
set_OpenFileDialog1
get_ColorDialog1
set_ColorDialog1
m_Form1
get_Form1
set_Form1
get_NotifyIcon1
set_NotifyIcon1
get_Button1
set_Button1
get_RadioButton1
set_RadioButton1
get_NumericUpDown1
set_NumericUpDown1
get_ContextMenuStrip1
set_ContextMenuStrip1
get_ServiceController1
set_ServiceController1
get_SerialPort1
set_SerialPort1
get_DataGridView1
set_DataGridView1
get_CheckBox1
set_CheckBox1
get_ComboBox1
set_ComboBox1
get_CheckedListBox1
set_CheckedListBox1
get_PropertyGrid2
set_PropertyGrid2
get_SaveFileDialog2
set_SaveFileDialog2
get_OpenFileDialog2
set_OpenFileDialog2
get_ColorDialog2
set_ColorDialog2
m_Form2
get_Form2
set_Form2
get_NotifyIcon2
set_NotifyIcon2
get_Button2
set_Button2
get_RadioButton2
set_RadioButton2
get_NumericUpDown2
set_NumericUpDown2
get_ServiceController2
set_ServiceController2
get_DataGridView2
set_DataGridView2
get_CheckBox2
set_CheckBox2
get_ComboBox2
set_ComboBox2
m_Form33213
get_Form33213
set_Form33213
get_NotifyIcon3
set_NotifyIcon3
get_RadioButton3
set_RadioButton3
get_CheckBox3
set_CheckBox3
get_NotifyIcon4
set_NotifyIcon4
get_CheckBox4
set_CheckBox4
get_NotifyIcon5
set_NotifyIcon5
<Module>
oFcRFHcLPKXMQJmDE
qRAPNmLiGF
Dispose__Instance__
Create__Instance__
ProjectData
mscorlib
Microsoft.VisualBasic
Thread
set_FormattingEnabled
Versioned
get_IsDisposed
m_FormBeingCreated
Synchronized
PropertyGrid
CreateInstance
get_GetInstance
defaultInstance
instance
GetHashCode
set_AutoScaleMode
set_ColumnHeadersHeightSizeMode
DataGridViewColumnHeadersHeightSizeMode
get_Message
IDisposable
Hashtable
set_Visible
RuntimeTypeHandle
GetTypeFromHandle
set_Name
set_FileName
CallByName
ToCharArrayRankOne
CallType
GetType
get_Culture
set_Culture
resourceCulture
ConsoleApplicationBase
ButtonBase
ApplicationSettingsBase
Dispose
DebuggerBrowsableState
EditorBrowsableState
ThreadStaticAttribute
STAThreadAttribute
CompilerGeneratedAttribute
DesignerGeneratedAttribute
GuidAttribute
HelpKeywordAttribute
GeneratedCodeAttribute
DebuggerNonUserCodeAttribute
DebuggableAttribute
DebuggerBrowsableAttribute
EditorBrowsableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
StandardModuleAttribute
HideModuleNameAttribute
DebuggerStepThroughAttribute
AssemblyTrademarkAttribute
DebuggerHiddenAttribute
AssemblyFileVersionAttribute
MyGroupCollectionAttribute
AssemblyDescriptionAttribute
CompilationRelaxationsAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
AccessedThroughPropertyAttribute
m_ThreadStaticValue
WithEventsValue
GetObjectValue
GetValue
Remove
jod.exe
CallTye
set_Size
set_AutoSize
set_ClientSize
ISupportInitialize
System.Threading
Encoding
GetResourceString
ToString
disposing
System.Drawing
SaveFileDialog
OpenFileDialog
ColorDialog
get_Length
mahBWleTJRtmmciOl
System.ComponentModel
ContainerControl
ListControl
System
resourceMan
System.ComponentModel.Design
AppDomain
GetDomain
NotifyIcon
get_Application
MyApplication
set_Location
System.Configuration
System.Globalization
System.Reflection
ControlCollection
TargetInvocationException
InvalidOperationException
get_InnerException
ArgumentException
RadioButton
NumericUpDown
morocidadao
MethodInfo
CultureInfo
PropertyInfo
ContextMenuStrip
set_TabStop
m_AppObjectProvider
m_UserObjectProvider
m_ComputerObjectProvider
m_MyWebServicesObjectProvider
m_MyFormsObjectProvider
get_ResourceManager
System.CodeDom.Compiler
ServiceController
IContainer
get_User
get_Computer
MyComputer
set_UseVisualStyleBackColor
SetProjectError
Activator
.cctor
System.Diagnostics
Microsoft.VisualBasic.Devices
get_WebServices
MyWebServices
Microsoft.VisualBasic.ApplicationServices
System.Runtime.InteropServices
Microsoft.VisualBasic.CompilerServices
System.Runtime.CompilerServices
System.Resources
VHF1.My.Resources
VHF1.Form2.resources
VHF1.Form33213.resources
VHF1.Resources.resources
DebuggingModes
GetBytes
Strings
get_Settings
MySettings
ReferenceEquals
get_Controls
System.Windows.Forms
get_Forms
MyForms
set_AutoScaleDimensions
Conversions
System.Collections
RuntimeHelpers
System.ServiceProcess
components
System.IO.Ports
Concat
Object
MyProject
EndInit
BeginInit
get_Default
InitializeComponent
SerialPort
SuspendLayout
ResumeLayout
PerformLayout
System.Text
set_Text
JidcdoHKEBacSqKSZHSehFw
DataGridView
set_TabIndex
CheckBox
ComboBox
CheckedListBox
VHF1.My
ContainsKey
get_Assembly
MySettingsProperty
GetProperty
WrapNonExceptionThrows
	asdfgsgas
waetarfasdgas
weqrwaertfdgsad
sadfasdfawera
sdfsdafsdafds
$28fa7327-c3fb-455a-b361-95d553025fc4
1.0.0.0
Button1
	CheckBox1
	CheckBox2
	CheckBox3
	CheckBox4
Button2
CheckedListBox1
ColorDialog1
ColorDialog2
	ComboBox1
	ComboBox2
ContextMenuStrip1
DataGridView1
DataGridView2
NumericUpDown1
NotifyIcon1
NotifyIcon2
NotifyIcon3
NotifyIcon4
NotifyIcon5
OpenFileDialog1
ServiceController1
SerialPort1
SaveFileDialog1
SaveFileDialog2
ServiceController2
RadioButton1
RadioButton2
RadioButton3
PropertyGrid1
PropertyGrid2
NumericUpDown2
OpenFileDialog2
MyTemplate
11.0.0.0
3System.Resources.Tools.StronglyTypedResourceBuilder
15.0.0.0
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
15.8.0.0
System.Windows.Forms.Form
Create__Instance__
Dispose__Instance__
My.MyProject.Forms
4System.Web.Services.Protocols.SoapHttpClientProtocol
Create__Instance__
Dispose__Instance__
My.Computer
My.Application
My.User
My.Forms
My.WebServices
My.Settings
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
C:\Users\Jod\Desktop\AQ----method revenge\150 KB\WindowsApplication4\obj\Debug\jod.pdb
_CorExeMain
mscoree.dll
<?xml version="1.0" encoding="utf-8"?>
<asmv1:assembly manifestVersion="1.0" xmlns="urn:schemas-microsoft-com:asm.v1" xmlns:asmv1="urn:schemas-microsoft-com:asm.v1" xmlns:asmv2="urn:schemas-microsoft-com:asm.v2" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
  <assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
    <security>
      <requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
        <!-- UAC Manifest Options
            If you want to change the Windows User Account Control level replace the 
            requestedExecutionLevel node with one of the following.
        <requestedExecutionLevel  level="asInvoker" uiAccess="false" />
        <requestedExecutionLevel  level="requireAdministrator" uiAccess="false" />
        <requestedExecutionLevel  level="highestAvailable" uiAccess="false" />
            If you want to utilize File and Registry Virtualization for backward 
            compatibility then delete the requestedExecutionLevel node.
        -->
        <requestedExecutionLevel level="asInvoker" uiAccess="false" />
      </requestedPrivileges>
    </security>
  </trustInfo>
</asmv1:assembly>