Sample details: b3d951251b52ca0b0ef18081e8fb4227 --

Hashes
MD5: b3d951251b52ca0b0ef18081e8fb4227
SHA1: c02adffc68fa537d99fb0f266732d8b9f06e1ffc
SHA256: c1e2df48896b0f1ae502a3e562ebd10fc5574e2e667e03b14cb19a9acc603453
SSDEEP: 192:9KHaKws3ujvUYwxXlgzlYmTkjyFLqU7Dq:8ws+jv9wxVQAeRqeW
Details
File Type: PE32
Yara Hits
YRP/MingWin32_Dev_Cpp_v4991_h | YRP/MingWin32_GCC_3x | YRP/Microsoft_Visual_Cpp_v71_DLL_Debug_additional | YRP/MingWin32_v_h_additional | YRP/MinGW_GCC_3x_additional | YRP/Dev_Cpp_4992_Bloodshed_Software_ | YRP/Dev_Cpp_4992_Bloodshed_Software | YRP/Microsoft_Visual_Cpp_v71_DLL_Debug | YRP/MinGW_GCC_3x | YRP/MingWin32_GCC_3x_additional | YRP/MingWin32_v_h | YRP/Dev_Cue_4992_Bloodshed_Software | YRP/MingWin32_Dev_Cpp_v4x_h_additional | YRP/MingWin32_Dev_Cpp_v4991 | YRP/MingWin32_v | YRP/MingWin32_Dev_Cpp_v4991_h_additional | YRP/MingWin32_Dev_Cpp_v4x_h | YRP/MinGWGCC3x | YRP/DevC4992BloodshedSoftware | YRP/IsPE32 | YRP/IsConsole | YRP/HasOverlay | YRP/MinGW_1 | YRP/domain | YRP/contentis_base64 | YRP/spyeye | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings
		!This program cannot be run in DOS mode.
`.data
.rdata
.idata
c:/python/au1.txt
zastaveno
-LIBGCCW32-EH-2-SJLJ-GTHR-MINGW32
w32_sharedptr->size == sizeof(W32_EH_SHARED)
%s:%u: failed assertion `%s'
../../gcc/gcc/config/i386/w32-shared-ptr.c
GetAtomNameA (atom, s, sizeof(s)) != 0
AddAtomA
ExitProcess
FindAtomA
GetAtomNameA
SetUnhandledExceptionFilter
_getch
__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_onexit
_setmode
atexit
fflush
fprintf
fscanf
malloc
printf
signal
KERNEL32.dll
msvcrt.dll
msvcrt.dll
crt1.c
_atexit
__onexitp
crtstuff.c
Untitled1.cpp
.rdata
CRTglob.c
CRTfmode.c
txtmode.c
pseudo-reloc.c
CRT_fp10.c
_fpreset
gccmain.c
___main
.rdata
.idata$7
.idata$5
.idata$4p
.idata$6
fthunk
.idata$2
.idata$5
.idata$4l
.idata$4t
.idata$5
.idata$7
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$58
.idata$4
.idata$6t
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4|
.idata$6
.idata$7
.idata$54
.idata$4
.idata$6h
.idata$7
.idata$5,
.idata$4
.idata$6P
.idata$7
.idata$5 
.idata$4
.idata$64
.idata$7
.idata$5(
.idata$4
.idata$6H
.idata$7
.idata$50
.idata$4
.idata$6\
.idata$7
.idata$5
.idata$4
.idata$6
.idata$7
.idata$5
.idata$4
.idata$6(
.idata$7
.idata$5$
.idata$4
.idata$6<
fthunk
.idata$2(
.idata$5
.idata$4x
.idata$4
.idata$5<
.idata$7
.idata$7
.idata$5
.idata$4d
.idata$6x
.idata$7
.idata$5
.idata$4X
.idata$6L
.idata$7
.idata$5
.idata$4`
.idata$6h
.idata$7
.idata$5
.idata$4\
.idata$6\
.idata$7
.idata$5
.idata$4T
.idata$6@
fthunk
.idata$2
.idata$5
.idata$4P
.idata$4h
.idata$5
.idata$7
crtstuff.c
.ctors
__cexit
__dll__
__argc
_fflush
_fprintf
__alloca
__argv
_fopen
__fmode
_getch
__end__
_signal
_malloc
_abort
_printf
_fscanf
__gnu_exception_handler@4
___mingw_CRTStartup
_mainCRTStartup
_WinMainCRTStartup
___do_sjlj_init
__pei386_runtime_relocator
__fpreset
_initialized
___do_global_dtors
___do_global_ctors
pseudo-reloc-list.c
_w32_atom_suffix
___w32_sharedptr_default_unexpected
___w32_sharedptr_get
dw2_object_mutex.0
dw2_once.1
sjl_fc_key.2
sjl_once.3
___w32_sharedptr_initialize
___eprintf
___sjlj_init_ctor
___RUNTIME_PSEUDO_RELOC_LIST__
__imp___setmode
__data_start__
___DTOR_LIST__
__imp___onexit
___p__fmode
_SetUnhandledExceptionFilter@4
___w32_sharedptr_terminate
___tls_start__
__libmsvcrt_a_iname
__imp__FindAtomA@4
__imp__abort
__size_of_stack_commit__
__size_of_stack_reserve__
__major_subsystem_version__
___crt_xl_start__
_AddAtomA@4
___crt_xi_start__
___chkstk
___crt_xi_end__
__imp____p__environ
__imp___iob
__libmoldname_a_iname
__bss_start__
___RUNTIME_PSEUDO_RELOC_LIST_END__
__size_of_heap_commit__
___p__environ
___crt_xp_start__
__imp__getch
___crt_xp_end__
__imp__signal
__minor_os_version__
__imp__atexit
__head_libmsvcrt_a
__image_base__
__section_alignment__
__head_libmoldname_a
__RUNTIME_PSEUDO_RELOC_LIST__
__imp____p__fmode
_ExitProcess@4
__data_end__
___getmainargs
___w32_sharedptr
__CTOR_LIST__
___set_app_type
__bss_end__
__CRT_fmode
___crt_xc_end__
___crt_xc_start__
___CTOR_LIST__
__imp__GetAtomNameA@12
__file_alignment__
__imp__malloc
__major_os_version__
__DTOR_LIST__
__imp__fprintf
__size_of_heap_reserve__
___crt_xt_start__
__subsystem__
__imp__fflush
___w32_sharedptr_unexpected
__imp__fopen
__imp____getmainargs
___tls_end__
__imp__fscanf
__imp__ExitProcess@4
__imp__free
__imp__SetUnhandledExceptionFilter@4
__major_image_version__
__loader_flags__
__CRT_glob
__setmode
__imp__printf
__imp__AddAtomA@4
__head_libkernel32_a
__imp___cexit
__minor_subsystem_version__
__minor_image_version__
__imp____set_app_type
_FindAtomA@4
_GetAtomNameA@12
__RUNTIME_PSEUDO_RELOC_LIST_END__
__libkernel32_a_iname
___crt_xt_end__