Sample details: c6d6860f37bea43e0669846fcf5e394c --

Hashes
MD5: c6d6860f37bea43e0669846fcf5e394c
SHA1: b10560b4bdbb1b9516a8884f5a77292f30f67faa
SHA256: ae6aa166ed4b78ad4fb7a1267b3fd338da0bd28714d9f221af8f628aad766d9e
SSDEEP: 768:YJ7wg5UEfRGEKJB1hPvr7NC7+Z+XvJ+7GOhxguNYfOh1ceOEGtQeN:YJ0g+6Ra/1hH/ik7GO7guNYfOHcCGtp
Details
File Type: PE32
Yara Hits
YRP/Armadillo_v171 | YRP/Microsoft_Visual_Cpp_v60 | YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional | YRP/Microsoft_Visual_Cpp_50 | YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/Install_Shield_2000 | YRP/Armadillo_v171_additional | YRP/Armadillo_v4x | YRP/Microsoft_Visual_Cpp | YRP/InstallShield_2000_additional | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasOverlay | YRP/FASM | YRP/domain | YRP/contentis_base64 | YRP/win_files_operation | YRP/Big_Numbers3 |
Strings
		!This program cannot be run in DOS mode.
`.rdata
@.data
BB_NBB
@Wh e@
Pj#PWh
PjAPWh
HSUVWh
mJ0-?*
JOD)+b
WD+e?y
nI7Wb]
OD	+b0
#SoWS:
WuBhTh@
tSh8h@
0B=xu@
D$ _^]
t.;t$$t(
VC20XC00U
?-%A	+?$=	&,
"GG,"$4
1)0F4<
28A-EB4
 :46G'
:$:!20'()
/>%	,# 
A+#4%(
>+&)&>
'A:.+,
@>A=8D>
/B6$F6
=#38E-=
runtime error 
TLOSS error
SING error
DOMAIN error
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
abnormal program termination
- not enough space for environment
- not enough space for arguments
- floating point not loaded
Microsoft Visual C++ Runtime Library
Runtime Error!
Program: 
<program name unknown>
GetLastActivePopup
GetActiveWindow
MessageBoxA
user32.dll
CreateWindowExW
EndDialog
SetFocus
PostQuitMessage
EndPaint
DrawTextW
BeginPaint
DialogBoxParamW
DestroyWindow
SendMessageW
DefWindowProcW
DispatchMessageW
TranslateMessage
GetMessageW
RegisterClassExW
LoadCursorW
LoadIconW
USER32.dll
ReadFile
GetTickCount
LoadLibraryA
CreateFileA
GetSystemDirectoryW
CloseHandle
CreateFileW
LoadLibraryW
GetCommandLineW
KERNEL32.dll
SetTextAlign
CreateSolidBrush
DeleteObject
GetStockObject
GDI32.dll
InitCommonControlsEx
COMCTL32.dll
ExtractIconA
DragFinish
CommandLineToArgvW
SHELL32.dll
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapAlloc
HeapFree
VirtualAlloc
GetProcAddress
iiiiiii
iiiiiii
iiiiiii
<?xml version="1.0" encoding="UTF-8" standalone="yes"?><assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"><trustInfo xmlns="urn:schemas-microsoft-com:asm.v3"><security>    <requestedPrivileges>     <requestedExecutionLevel  level="asInvoker" uiAccess="false"/></requestedPrivileges></security></trustInfo></assembly>