Sample details: bda7aee52ef9f9a54dfb7a7de7d1d85d --

Hashes
MD5: bda7aee52ef9f9a54dfb7a7de7d1d85d
SHA1: f1f16b0ca760824cefc08f2353deadc936b44379
SHA256: 0ec6338f1307a7b38ea7e2366e4b9a174cfa5190c6d7705d7760f6d992f9d0ea
SSDEEP: 6144:uMajcqOYwjfR1oSPXlm4+nHvMirfaxEHnrEnBL:JajcNvjfRzPXlmHUir+2nu
Details
File Type: PE32
Yara Hits
YRP/Armadillo_v171 | YRP/Microsoft_Visual_Cpp_v60 | YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional | YRP/Microsoft_Visual_Cpp_50 | YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/Armadillo_v171_additional | YRP/Armadillo_v4x | YRP/Microsoft_Visual_Cpp | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/screenshot | YRP/keylogger | YRP/win_registry | YRP/win_files_operation | YRP/win_hook |
Parent Files
6c8a2d24b8c4ad02da1bd4ccbbb76a51
Strings
		!This program cannot be run in DOS mode.
`.rdata
@.data
t_hD2B
tNh42B
t=h 2B
HtYHt6H
9G4_^d
9x u	f
F8+N,+F0
FLRh`TB
N8+F,+N0
9u ^t	
9^@t53
V@W@PQ
9^Htd3
9~@St99~8~
VVVPQR
t*Ht"Ht
Zt(Ht Ht
@u+;t$
QQSVWd
t.;t$$t(
uRFGHt
t	BBFFf
uf9=`9C
VC20XC00U
sO;>|C;~
E VVVV
QQSVWj
>:uNFV
>:u#FV
Qf9=@:C
tPhxRB
PPPPPPPP
PPPPPPPP
HSVHWtgHHtF
+ttHHtd
u.hhSB
t/WWUPj
_9=`MC
G;=`MC
Y95`MC
YYF;5`MC
QQSVW3
D$0f9D$,t
T$ PQR
E;-<OC
E;-<OC
SVWUu	3
uo=`<A
SVWUu	3
SVWUu	3
\$XRSVP
T$XPRV
T$ )L$$j
L$4+D$$
L$,+D$ Q+
SVWu	3
D$49D$ u
tSf@f=
t$4SWV
\$4USWVj
l$8USWVj
\$8USWV
\$4USWVj
\$4USWVP
L$0QSWPV
D$,+D$$PSQRV
T$(QRV
T$$PQRV
D$,+D$$PQRV
\$<PQSV
D$8+D$0+D$(
D$$+D$
L$DPQSV
;D$0u,
D$8QRPV
D$D+D$<PQRV
D$HSQRPVW
T$dPQRV
L$TPQhH
T$lQRV
D$LQPV
T$lQRV
T$dPQRV
D$P+D$H+D$@
t$dSWV
\$dPSWVj
\$dPSWVj
\$dPSWVj
D$h]_^[
t$PWUj
L$DhX[B
D$H+D$@
D$$UPS
\$,PWVSVt
|$4QRVW
T$@PQVWRW
T$@PQVWRW
L$8PQVWSW
T$@QPVWRW
L$(9L$
D$<_^[
t$ WUj
t$XSWV
\$XPSWVj
\$XPSWVj
D$\_^[
jWj@_;
QSUVWj
n0SSSSU
_SSSSU
Ph_^][Y
tD9_Pt?
(wqt\HHtS
t>Ht Ht
PQQQQQ
t	9p$u
WWWWhd
tvWWWWU
F,_^][
t	9A8u
Ht#HHt
@t4Ht1Ht_Ht
^$_^[]
PWVWWW
N(;N,r
tq9w(tlSj
^,_^][
CWinApp
CWinThread
CCmdTarget
CDialog
CTempWnd
GetMonitorInfoW
EnumDisplayMonitors
MonitorFromPoint
MonitorFromRect
MonitorFromWindow
GetSystemMetrics
InitCommonControlsEx
COMCTL32.DLL
CTempMenu
CTempGdiObject
CTempDC
CGdiObject
CWindowDC
CClientDC
CUserException
CResourceException
CNotSupportedException
CMemoryException
CException
CObject
CMapPtrToPtr
CMemFile
CPtrList
COleDispatchException
CFileException
COleException
COleBusyDialog
COleDialog
__GLOBAL_HEAP_SELECTED
__MSVCRT_HEAP_SELECT
runtime error 
TLOSS error
SING error
DOMAIN error
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
abnormal program termination
- not enough space for environment
- not enough space for arguments
- floating point not loaded
Microsoft Visual C++ Runtime Library
Runtime Error!
Program: 
<program name unknown>
GAIsProcessorFeaturePresent
KERNEL32
_hypot
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
H:mm:ss
dddd, MMMM dd, yyyy
M/d/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
GetLastActivePopup
GetActiveWindow
MessageBoxA
user32.dll
`h````
ppxxxx
(null)
1#QNAN
1#SNAN
Dw=|:s
Dw=U:s
Dw=}:s
Dw=~:s
Dw=m:s
Dw=	:s
Dw=c:s
Dw=&:s
Dw=y:s
Dw=':s
Dw=d:s
Dw=]:s
Dw=z:s
Dw=h:s
Dw=i:s
Dw={:s
Dw=g:s
Dw=f:s
Dw=t:s
Dw=u:s
Dw=_:s
Dw=^:s
Dw=`:s
Button
ListBox
ComboBox
Static
ComboLBox
CreateFileA
GetModuleFileNameA
GetEnvironmentVariableW
GetCurrentThread
GetLocaleInfoW
GetModuleFileNameW
GetStdHandle
GetEnvironmentVariableA
FindClose
GetEnvironmentStringsW
HeapDestroy
GetTimeFormatW
InterlockedIncrement
InterlockedDecrement
lstrlenW
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
GetCurrentThreadId
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
lstrcmpW
GlobalLock
CloseHandle
LoadResource
FindResourceW
LockResource
GlobalFree
GlobalUnlock
GetProcAddress
GetModuleHandleW
lstrcpyW
GlobalFindAtomW
GlobalAddAtomW
lstrcatW
GetVersion
FreeLibrary
LoadLibraryA
GetModuleHandleA
SetLastError
MulDiv
GetLastError
lstrcpynW
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LocalAlloc
LocalFree
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
lstrcmpiW
GlobalFlags
WritePrivateProfileStringW
GetProcessVersion
SizeofResource
GetThreadLocale
SetErrorMode
DuplicateHandle
GetCurrentProcess
CreateFileW
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindFirstFileW
GetVolumeInformationW
GetFullPathNameW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
GetFileAttributesW
GetFileSize
GetFileTime
FormatMessageW
GetStartupInfoW
ExitProcess
RtlUnwind
TerminateProcess
HeapAlloc
HeapFree
RaiseException
HeapReAlloc
HeapSize
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
GetVersionExA
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
KERNEL32.DLL
LoadIconW
SendMessageW
AppendMenuW
GetSystemMenu
OpenClipboard
GetWindowTextLengthW
SetClipboardData
SendMessageA
SystemParametersInfoW
PostQuitMessage
WinHelpA
EnableWindow
PostMessageW
SetCursor
MessageBoxW
GetWindowLongW
IsWindowEnabled
GetLastActivePopup
GetParent
SetWindowsHookExW
GetCursorPos
PeekMessageW
IsWindowVisible
ValidateRect
CallNextHookEx
GetKeyState
GetActiveWindow
DispatchMessageW
TranslateMessage
GetMessageW
GetNextDlgTabItem
GetFocus
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuW
GetMenuState
LoadBitmapW
GetMenuCheckMarkDimensions
GetDlgItem
DestroyWindow
CreateDialogIndirectParamW
GetSystemMetrics
IsWindow
SetActiveWindow
EndDialog
SetWindowContextHelpId
GetWindow
SetWindowPos
MapDialogRect
GetWindowRect
GetWindowPlacement
IsIconic
IntersectRect
OffsetRect
RegisterWindowMessageW
SetWindowLongW
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
UnhookWindowsHookEx
SetPropW
CreateWindowExW
GetDlgCtrlID
GetWindowTextW
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassW
GetClassInfoW
wsprintfW
WinHelpW
GetCapture
IsChild
GetTopWindow
CopyRect
GetClientRect
ScreenToClient
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
SendDlgItemMessageW
UpdateWindow
IsDialogMessageW
SetWindowTextW
MoveWindow
ShowWindow
LoadStringW
DestroyMenu
ClientToScreen
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutW
DrawTextW
GrayStringW
LoadCursorW
GetDesktopWindow
GetClassNameW
PtInRect
GetSysColorBrush
CharNextW
CopyAcceleratorTableW
SetRect
GetNextDlgGroupItem
MessageBeep
InvalidateRect
CharUpperW
InflateRect
RegisterClipboardFormatW
PostThreadMessageW
USER32.dll
CreateCompatibleDC
GetObjectW
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
GDI32.dll
GetFileTitleW
comdlg32.dll
ClosePrinter
DocumentPropertiesW
OpenPrinterW
WINSPOOL.DRV
RegCreateKeyW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
ADVAPI32.dll
SHELL32.dll
COMCTL32.dll
OleUIBusyW
oledlg.dll
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
ole32.dll
OLEPRO32.DLL
OLEAUT32.dll
GetProfileStringA
GlobalAddAtomA
FindResourceA
GetPropA
SetPropA
SetWindowLongA
GetClassNameA
IsWindowUnicode
GetWindowLongA
SetWindowsHookExA
RemovePropA
CallWindowProcA
CharNextA
DefWindowProcA
DefDlgProcA
GetClassInfoA
DrawFocusRect
DrawTextA
GetWindowTextA
ExcludeUpdateRgn
ShowCaret
HideCaret
GetWindowTextLengthA
UnregisterClassW
ExtTextOutA
GetTextExtentPointA
BitBlt
CreateDIBitmap
2T@GD	
ETEEiETEE
FyETEE7
.?AVCNoTrackObject@@
.?AV_AFX_WIN_STATE@@
.?AVCObject@@
.?AVCCmdTarget@@
.?AVCWinThread@@
.?AVCWinApp@@
.PAVCException@@
.?AV_AFX_CTL3D_STATE@@
.?AV_AFX_CTL3D_THREAD@@
.?AVCCmdUI@@
.?AVCWnd@@
.?AVCDialog@@
.?AVCOccManager@@
.?AVCTestCmdUI@@
.PAVCUserException@@
.?AVCTempWnd@@
.?AV_AFX_THREAD_STATE@@
.?AVAFX_MODULE_STATE@@
.?AVAFX_MODULE_THREAD_STATE@@
.?AV_AFX_BASE_MODULE_STATE@@
.?AVCMenu@@
.?AVCTempMenu@@
.?AVCDC@@
.?AVCClientDC@@
.?AVCWindowDC@@
.?AVCGdiObject@@
.?AVCTempDC@@
.?AVCTempGdiObject@@
.PAVCObject@@
.PAVCSimpleException@@
.PAVCResourceException@@
.?AVCException@@
.?AVCSimpleException@@
.?AVCResourceException@@
.?AVCUserException@@
.PAVCMemoryException@@
.PAVCNotSupportedException@@
.?AVCMemoryException@@
.?AVCNotSupportedException@@
.?AUCThreadData@@
.?AVCHandleMap@@
.?AUIParseDisplayName@@
.?AUIOleContainer@@
.?AVXOleContainer@COleControlContainer@@
.?AUIUnknown@@
.?AUIOleWindow@@
.?AUIOleInPlaceUIWindow@@
.?AUIOleInPlaceFrame@@
.?AVXOleIPFrame@COleControlContainer@@
.?AVCOleControlContainer@@
.?AVCFont@@
.?AVCEnumArray@@
.?AVCEnumUnknown@@
.?AUIPropertyNotifySink@@
.?AVXPropertyNotifySink@COleControlSite@@
.?AVXAmbientProps@COleControlSite@@
.?AVCOleControlSite@@
.?AUIOleControlSite@@
.?AVXOleControlSite@COleControlSite@@
.?AUIRowsetNotify@@
.?AVXRowsetNotify@COleControlSite@@
.?AUIOleInPlaceSite@@
.?AVXOleIPSite@COleControlSite@@
.?AUINotifyDBEvents@@
.?AVXNotifyDBEvents@COleControlSite@@
.?AUIOleClientSite@@
.?AVXOleClientSite@COleControlSite@@
.?AUIBoundObjectSite@@
.?AVXBoundObjectSite@COleControlSite@@
.?AUIDispatch@@
.?AVXEventSink@COleControlSite@@
.?AVCDataSourceControl@@
.?AVCMapPtrToPtr@@
.?AVCFile@@
.?AVCMemFile@@
.?AVCPtrList@@
.?AVCFileException@@
.PAVCOleException@@
.?AVCOleDispatchException@@
.PAVCOleDispatchException@@
.?AUIEnumVOID@@
.?AVXEnumVOID@CEnumArray@@
.?AUISequentialStream@@
.?AUIStream@@
.?AVCArchiveStream@@
.PAVCFileException@@
.?AVCOleException@@
.?AUIMessageFilter@@
.?AVXMessageFilter@COleMessageFilter@@
.?AVCOleMessageFilter@@
.?AVCCommonDialog@@
.?AVCOleDialog@@
.?AVCOleBusyDialog@@
.?AV_AFX_OLE_STATE@@
.?AVtype_info@@
hangeul
english
hangeulmenu
kanjimenu
windows
C3dHNew
C3dLNew
C3dNew
#32770
DisableThreadLibraryCalls
KERNEL32.DLL
.drectve
.rdata
@@.text
`.text$x
0`.rdata
0@.bss
.xdata$x
@@.text
`.debug$F
B.text
`.text$x
0`.xdata$x
@@.text
`.debug$F
B.text
`.debug$F
B.text
`.debug$F
B.text
`.debug$F
B.text
`.debug$F
B.text
`.debug$F
B.text
5fs,m=
Y#X,^k
^@uW&X
(Y6%aC
q@:]lEx
L	!Txh
M$W8hWS
#Fs;kJ
4\]UL|
`=CWNr
}kd<N?
gKZ}NH
yz^qFP
#ttTno
g}XWR:R
]`A":B^
W\R`Q.
A ==uo
idC\"y
1|vl*W
"/eSg(`
s)?"R!
bw8N)o:tA
(&.FV8
-c-y.8
'"|)*9
e7w?7/p9{
#ja3{>~
BjI^&bt
OCf@Rx
	jj|cm
]#pR7Pu
Ld0{4t
zn,yO:
*W=%lx
l>aSJkW
;c*QbM
mcMa6J
'-GS)xP
_:Z"=cT
W{$9H)
K.c^rOB
B+dfB$
2Z`&Ug
svX4=|`
OF$+3.
ql=^n*S
c$EZI.
K=ofqs
dgJ@YF>Z
x@Q@'j
l7qujg
Z9w-t)
'k{\oN
ocKk5E
VBPs&	A"
_yM2uBJ
xeqdW?l
C7G@?P
fc_]H.
Xv[Zp/T
PqfnH>
k643^^
b/BA#8
:+)2$-
N~F78	j
Mn0D4E
\clx1e
umr}#SC
"@<Pv3
$rB>PG
(~)	hp!{
Tn}$5q
=c+PPz
K	Z<6_
z/#i}j?7
)k]`1l
11/Z*m
^6?Ku2
K@DQ\5
sa]*U-,~
I=@;xn#
%"$VUP
G\HBAK
DV;x.+D	
}30 rdG
jyps.Mg
BcHIf7
Dl3DD}
I/FbG\+
KH(~L$	
F^RW|S
hm-<a&%
/K+1a?A
151J[$
/UzG$v
7Ts-={j8
VXGhq``<
>X`XHb
OVcJ<cW=
sJv<.BR
i@`5{w
4a@z8O
QIO]$"V
(/dX5H4W
IE05I6
L?"oFr
i[\Qy}+$
JT9,1<
-|`	QH
t[st=O*
n"#cr@
*jxOSX
G]b9cY
L5%2&F
)F}"=S\
FZ4>z!i
Iy'Z3I2>
X02.VX
}Fnu!?O
bkt^%JD
Hd6y"T
?E9oxN
-s&(+{
#@q<Jy
"&:6^&
uvXV;:
"cWpOh
yK^#':
!KV"]`
E`]w4}
d}(uW.
I;48ui
wwwwww
wwwwww
wwwwww
wwwwww
wwwwww
wwwwww
wwwwww
wwwwww
ech1Y%
ech1Y%
OX[0R 
ech1Y%
RSbpS\O
QX[gbL
YX[(W	
N/f@b	g
l	g~b0Rdk
-N"N1Y
0dk:ghV
N*Ntepe
N*N(W%
N*N(W%
N*N(W0
N*Ncktepe
T/f&Tcknx
l	g~b0R 
[/fS_MR
g~b1Y%