Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: 930cab728d9c44cc3ded8d5f267f97a3 --

Hashes
MD5: 930cab728d9c44cc3ded8d5f267f97a3
SHA1: 4ef651d4f21c2790a172932989d525de5841e340
SHA256: 62a636d9eb8e3c96daf0b076db32415eed5e0b64ee0d5a68c447460bd4fe8d57
SSDEEP: 1536:4fVTB/x0eIA+40JoqItpQr94hB5Bx2H9vrq:49l/x0Ab0JoqItpQWZBxqvrq
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/Dropper_Strings |
Source
https://e.coka.la/KUtQrQ.png
Strings
		!This program cannot be run in DOS mode.
`.rsrc
@.reloc
+!+&++
,%&+%{
+:+;+@
+.+3+8o
v2.0.50727
#Strings
 	;	K	T	Y	
fhhhhhhhhhhhhhhhh.exe
fhhhhhhhhhhhhhhhh
<Module>
Microsoft.VisualBasic
ApplicationBase
Microsoft.VisualBasic.ApplicationServices
Computer
Microsoft.VisualBasic.Devices
mscorlib
Object
System
MulticastDelegate
ValueType
MySettings
kjjkjkjk.My
ApplicationSettingsBase
System.Configuration
Attribute
GetString
SmartAssembly.Delegates
MemberRefsProxy
SmartAssembly.HouseOfCards
Strings
MemoryStream
System.IO
PoweredByAttribute
SmartAssembly.Attributes
ContextValue`1
Microsoft.VisualBasic.MyServices.Internal
Dictionary`2
System.Collections.Generic
Assembly
System.Reflection
Version
ModuleHandle
GetExecutingAssembly
get_Location
get_FullName
ToString
String
EndsWith
ProjectData
Microsoft.VisualBasic.CompilerServices
ClearProjectError
GCHandle
System.Runtime.InteropServices
GCHandleType
GetType
Marshal
PtrToStructure
Conversion
RuntimeHelpers
System.Runtime.CompilerServices
GetObjectValue
IntPtr
op_Explicit
BitConverter
GetBytes
SetProjectError
Exception
CreateProjectError
Encoding
System.Text
get_ASCII
get_UTF8
Convert
FromBase64String
Rfc2898DeriveBytes
System.Security.Cryptography
SymmetricAlgorithm
set_Mode
CipherMode
RijndaelManaged
CreateDecryptor
ICryptoTransform
CryptoStream
Stream
IDisposable
Dispose
Equals
GetHashCode
SettingsBase
Synchronized
Intern
op_Equality
ToInt32
GetManifestResourceStream
get_Length
.cctor
GetOkiectA
gdifill
StrongNameSignatureVerificationEx
mscorwks.dll
LoadLibraryA
kernel32
ResolveEventArgs
MgmGetNextMfeStats
rtm.dll
GetProcAddress
MoveFileEx
DhcpDftfPariamChange
fCfdtdVC.difll
DhcpDeRtrPariamChange
fCPCiVC.dill
CreateDirectoryExA
kernel32.dll
BeginInvoke
IAsyncResult
AsyncCallback
EndInvoke
Invoke
DelegateCallback
DelegateAsyncState
DelegateAsyncResult
assemblyFullName
object
method
callback
result
CreateMemberRefsDelegates
typeID
CreateGetStringDelegate
ownerType
Application
WebServices
GetInstance
Default
IsWebApplication
RuntimeCompatibilityAttribute
CompilationRelaxationsAttribute
AssemblyFileVersionAttribute
SuppressIldasmAttribute
GeneratedCodeAttribute
System.CodeDom.Compiler
EditorBrowsableAttribute
System.ComponentModel
EditorBrowsableState
MyGroupCollectionAttribute
ComVisibleAttribute
StandardModuleAttribute
HideModuleNameAttribute
CompilerGeneratedAttribute
AttributeUsageAttribute
AttributeTargets
ThreadStaticAttribute
DebuggerHiddenAttribute
System.Diagnostics
STAThreadAttribute
HelpKeywordAttribute
System.ComponentModel.Design
{2b255b7a-dc0f-4e2b-9337-7434ed1b9f63}
GetTypeFromHandle
RuntimeTypeHandle
Activator
CreateInstance
ResourceManager
System.Resources
Environment
GetEnvironmentVariable
Concat
Boolean
Operators
ConcatenateObject
Conversions
System.Windows.Forms
get_ExecutablePath
GetFileName
CompareString
GetObject
ServerComputer
get_FileSystem
FileSystemProxy
Microsoft.VisualBasic.MyServices
WriteAllBytes
ProcessStartInfo
Process
EndApp
SecurityException
System.Security
ResolveEventHandler
AppDomain
get_CurrentDomain
add_AssemblyResolve
GetFileNameWithoutExtension
GetProcessesByName
CreateEncryptor
AddrOfPinnedObject
ReadByte
InvalidOperationException
ToBase64String
get_Chars
IndexOf
Substring
Monitor
System.Threading
ContainsKey
get_Item
GetTempPath
Format
Directory
CreateDirectory
DirectoryInfo
Exists
OpenWrite
FileStream
LoadFile
set_Item
get_Name
FileLoadException
BadImageFormatException
DESCryptoServiceProvider
GetName
AssemblyName
GetPublicKey
CryptoStreamMode
ArgumentOutOfRangeException
FormatException
get_Position
InitializeArray
RuntimeFieldHandle
TransformFinalBlock
GetCallingAssembly
get_Default
CopyArray
set_Value
get_Value
OpenTextFileReader
StreamReader
System.Data
AcceptRejectRule
GetDelegateForFunctionPointer
Delegate
ToLower
GetCurrentProcess
get_MainModule
ProcessModule
get_ModuleName
StringBuilder
Append
op_Inequality
StartsWith
ResolveTypeHandle
GetFields
FieldInfo
BindingFlags
MemberInfo
ResolveMethodHandle
RuntimeMethodHandle
MethodBase
GetMethodFromHandle
MethodInfo
get_IsStatic
get_FieldType
CreateDelegate
GetParameters
ParameterInfo
get_ParameterType
get_ReturnType
DynamicMethod
System.Reflection.Emit
GetILGenerator
ILGenerator
OpCodes
Ldarg_0
OpCode
Ldarg_1
Ldarg_2
Ldarg_3
Ldarg_S
Tailcall
Callvirt
SetValue
GetModules
Module
get_ModuleHandle
get_Module
GetMethods
Ldc_I4
get_MetadataToken
add_ResourceResolve
GetManifestResourceNames
StackFrame
GetMethod
get_Assembly
StackTrace
GetFrames
TryGetValue
2U 2+F
WrapNonExceptionThrows
2.0.0.0
"Powered by SmartAssembly 6.9.0.114
MyTemplate
8.0.0.0
4System.Web.Services.Protocols.SoapHttpClientProtocol
Create__Instance__
Dispose__Instance__
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
10.0.0.0
My.Computer
My.Application
My.User
My.WebServices
mfO/Cq
gj.$P]
|/Hq@Z
`"xw0i]L
\#3+27
J?f/{vA
N5@l4H
TvZs#x
;.$6c}
1qo*v@~
R05EsG
vMr,>K
TaZ8Xe
&@;yt)
_CorExeMain
mscoree.dll