Sample details: 59c52768f45a0b97d9e342ea58362aff --

Hashes
MD5: 59c52768f45a0b97d9e342ea58362aff
SHA1: 436cdac95e0f1237c5584bae32482554191c4f0f
SHA256: 702687b92d0def6cd35bf87211a01a6d8ca78eb1403ac6bb661ccde8dd75d4d4
SSDEEP: 1536:h5oXuf61B5gq0CX8/mjO3+Zw6dGDX8scaoWNvR5nVmaONz:noXuf68CNjO3+2uGosrNJiNz
Details
File Type: PE32
Yara Hits
YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain |
Source
http://ajaxtube.com/tFUIADP/
http://www.selphy.co.uk/RFot/
http://zdorovarodyna.com.ua/DGLOy/
http://zdorovarodyna.com.ua/DGLOy
Strings
		!This program cannot be run in DOS mode.
`.data
@.rsrc
fffff.
D$`0{6]
t$d5)(
D$$U+H
D$HiD$,
t$H#D$0i
|$6MZt
L$D-32
7:RJUh
+0]7UQ
dfFkO5
s,#as22
VJEh#&XQ
.#k5>JH
"	6hr@
[5j.HUD
"0m']R
n(r?;c
[>E*hZe
EJEL!a0"GQ{
$s)Q]	
.Cg53bH
FHU8~M
OEw<gtH
nZF.{1f
L>>j7'_>
C-F<_d
Nhxxe?
#WHA,m
?<gX,C
J( -dppp
K7~KqM
X#F.Fw
j::>(t
:gXWsU
pAOQmZ#
\~*j:p
T\I/Z6H
F$'`E+
$%7mS}F
2lTq1a
HH!Qp#"V
nqrfg+
;O"@=o
wny;LA}v
wXP0?W(a
q%'_[],
cyAhIb$
n[5:h'
`j)	;&
ANa59"}
FfP:QW
bBb/[*T
vQ/vU:
~!uG-?
Hw&5Vh,
](Vn:m
oY#$.Wu
?JEY73
qxl0?W
W72@X 
kX?]-CO
lA46;}
Y8Ti5T
^~(0,J4
wppUYJJ
L`nj)>
-{r4	el
97Ri M
I+9v0['
4Uuu}0G
MaoK<t
{>_ z^
8UF"K?
6YkvpY
$#:f.C
D	_[gN3
00bIz6&
;a]?\0
mDtv38
P`&2SC
FGG7?7&
Sn$T6m5B
b:~n@A
LN7e!Kz
J&@s3#
O[;89}
zUT5Nk
$a/T8e5
.(D<m)
nUPpj!
/Yt@d-
*$@8i%
I ZD!5
So9 aD&
AgwwEGhw
HwH#%@
HH@@#RRg
HW@#1GWG^^@D
TSxfRVYdfxrJUrlt
ZRVNTOPJHUKfLNbj
RSDS=H
gWwhwhW324.gFFD
RegSetValueExW
IsTextUnicode
CloseServiceHandle
IsValidSecurityDescriptor
RegCreateKeyW
RegOpenKeyExW
OpenSCManagerW
QueryServiceConfigW
RegQueryValueExW
OpenServiceW
RegCloseKey
ADVAPI32.dll
CallWindowProcW
InSendMessage
GetActiveWindow
USER32.dll
LocalFree
CloseHandle
InterlockedIncrement
ReadConsoleInputA
LocalAlloc
ReadFile
IsProcessInJob
UnhandledExceptionFilter
InterlockedDecrement
GetVersionExW
VirtualQuery
DefineDosDeviceA
KERNEL32.dll
SCardLocateCardsW
WinSCard.dll
AcquireCredentialsHandleA
Secur32.dll
DrawDibBegin
DrawDibSetPalette
MSVFW32.dll
CreatePen
CreateFontA
CreateHatchBrush
GDI32.dll