Sample details: 92153b6f9468353eef0d390e9feee889 --

Hashes
MD5: 92153b6f9468353eef0d390e9feee889
SHA1: 923b2a97fc772a4b66afc822b248064ba2ba0b4e
SHA256: b262c2963e03530ab06caaf94bcc77677aefd1ca19c3830f262e86fcd84cbc9d
SSDEEP: 768:LsUjPp6BghfNUScbbQ8faSjJPEyb9pApQNftE7w8q8TXD7D:L+Sc4GVVE0htZoTX
Details
File Type: MS-DOS
Added: 2018-06-22 15:18:41
Yara Hits
YRP/MPRESS_V200_V20X_MATCODE_Software_20090423 | YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h | YRP/mpress_2_xx_x86 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasModified_DOS_Message | YRP/maldoc_getEIP_method_1 | YRP/domain | YRP/contentis_base64 | YRP/suspicious_packer_section | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings
		!Win32 .EXE.
.MPRESS1
.MPRESS2K
 N);;@"x
c@TIj+
V	$#Jm
H!\:F+:
?W=]Wa
i=T?k-	
WqG1.B9
X8F<7Mi~tc_h
@zIO(B")L
v2^8bW9P
zipaeF
{b4=x	]
LhLHR!
J<:i46
#a3>az
|bdf>RN
jUkat')
}Z_FE2
+IIVb}
VW,7S\
	;n0-Q
t1x@w*
(Y#a\GV*
Btu,ng
o+kpo]q
.,"2Z9~
"ItX[93
{`xkPO
lg{~4O/{h;
YwUj,:z
Xr<o]=l
m[GfOl
7MOh$A
4EHT3$]</
B76ggb
]]`SeOl
6#E$ut
_!<WaS,
0"	a]. 
V/S6-R)f
Os,WE%>D
i\H':Y\
:`uM`Ee
iJTH:H3
|M"n2i
(\Z?g=
c/KKh_
GetModuleHandleA
GetProcAddress
KERNEL32.DLL
shlwapi.dll
UrlHashW
user32.dll
GetPropA
resutils.dll
ClusWorkerStart
odbctrac.dll
TraceSQLError
comsvcs.dll
SafeRef
untfs.dll
Extend
advapi32.dll
LogonUserW
t$t#t$l
D$t#D$h
D$t+D$\
.)D$H+
s`)L$4
D$t+D$\
9l$\w`