Sample details: a37cc069254a97c842c8357b717e2a47 --

Hashes
MD5: a37cc069254a97c842c8357b717e2a47
SHA1: d9a8dec8d1598357455f25685206b09a69dd26db
SHA256: 672bfb7f22d1b03ad54477884613e33c3d710e873818c15c7356ec49e86fce9f
SSDEEP: 1536:K3JTNMpnl8+3D7QB6F2+6T8t8dkWJ23yAR0xsxXeI1S1zy+0tEqP:M4DXQQopT8t8dkq23yWteIc1z2EqP
Details
File Type: PE32
Added: 2018-02-20 03:05:29
Yara Hits
YRP/Microsoft_Visual_Cpp_v60_DLL_additional | YRP/Microsoft_Visual_Cpp | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/ExportTableIsBad | YRP/HasModified_DOS_Message | YRP/domain | YRP/contentis_base64 | YRP/DebuggerHiding__Active | YRP/anti_dbg |
Source
http://drniepmann.de/KDymdXE/
Strings
		!dern32
 bThrL
am must
This pro W
`.data
.rdata
@.crt3
@.reloc
\system32\aSSw3.dll
tXHh"?
<xDAL0
Af4+3oM
\K%dyu
IdwW!0-
XU0 GI[
\0"Gy]
1'SvVs
}N""_cR
.edW\5
HTv@<T
sXHH"?
nzvg\yj
dV!hz{g
d~Khz{g
pzvg`|j
NQkNz#
mzvg4~j
OJT"wg
KUwWZu
fzUwW@
gTx&*`C
dc{hzv
Kzvg43*
fUwW$U
cUwWPU
dcGhzvE
zvg,3*
H]9!f5Q?
;Ua3Aem
C+QZ)2$
@Sg.`,~
WH8uC$
*2M= n
xihW>f
vW@W)&9
@A7~7&
	k-!|u^
)#]	gD
FKh&PS8
j8U^6R
hf+:_)
kCXEhJ|
BYtc	|
N%WA*R|\
;{oeEy
a"@*k`
t$h5c x
D$xV^Q 
D$\(#^6
T$<#T$<
L$H;D$Hu
D$Lp1^
D$D5	DlY
D$@6JBS
\$'iT$@
L$'8L$7
ffffff.
D$<xS@^
D$(-t;
b1x>q1x
CopyIcon
GetCursor
GetActiveWindow
OpenIcon
USER32.dll
SHAddToRecentDocs
DragAcceptFiles
SHCreateItemFromParsingName
SHGetFolderPathW
SHGetFileInfoA
SHELL32.dll
ImpersonateLoggedOnUser
ADVAPI32.dll
GetPolyFillMode
GDI32.dll
memset
msvcrt.dll
lstrcatA
GetSystemTimeAdjustment
IsValidCodePage
LocalSize
DebugActiveProcess
GetWindowsDirectoryA
FlsFree
FlsGetValue
GetLastError
KERNEL32.dll
4{5Xu[
K-Xq<T
O7?j<93
IfHC~W(Mi
@)mBwICh
.fyt@:
T M?R-
]S<Y{a
A5f]<E
>FnvS[+
{%S2H_
/~?L7-
,dT4GX
z$[4Zt&
<:TVG1
V8!Fe8
@Yhgv,R
BYW#.e
wV-b/-
ypeBNS\
5MQMY#+
FRv=Jsbg
sbj\,4
Zz6[)e
,c@"g	
7?F|V00Xj
<9i+(h
uJuO0W
^uJuO0W
f3puA_z
KTD8H<
&GMc f
."!<}|
)JgC[K
uJuO0W
w7^'Qj
T~9Vj~U^D
(|4+"*
*Q?aL\
)&}kSA
Uj!$M7
zWFeE(
i@PD85
58bk4>
XmI1vEaO
X_f^)6\
U,<0$!
25_h1;
UjF.sB^L
	U)A8j
? _ll{"
zWeeE(@[
+.Xa*4
H]9!f5Q?
\D{hFBh
,s (Hg
5+696U6
757Q7W7f7
7-8@8d8`9
Y2N4^4
7"7(7.747:7
0$000<0H0T0`0l0x0