Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: cf6ecd5fa9dcc04f1aaabdd1fe7e3023 --

Hashes
MD5: cf6ecd5fa9dcc04f1aaabdd1fe7e3023
SHA1: 51caebebb3cc45b1cd46c2496519d325f1630265
SHA256: 9e8cc1f0f9dad27f4d334f08ba4dadd0f7adb86d5f2c079c494ca906f0824907
SSDEEP: 1536:nmUX/jb9EvIPj+upXNxN8jcJOAPBXbxzL7KF/0fenhxvkvDjw5:7X/jyojLpXNxQcJOAZXbx4/znAC
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Cpp_v60_DLL_additional | YRP/IsPE32 | YRP/IsDLL | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/domain | YRP/contentis_base64 | YRP/screenshot | YRP/keylogger | YRP/win_registry |
Parent Files
714a658c266c2a4e644e42d4a983a500
Strings
		!This program cannot be run in DOS mode.
`.rdata
@.data
.idata
.reloc
HHtoHtOHt6Ht
W$SShF
W$SShN
Fpj0PW
HtlHtUH
9^8~gj
f9X.vZ
Gf;x.r
f9X,vg
@0@u8f
Gf;x,r
WtPf90tK
W$VVVVj
t1Hu7V
qj [9]
W$uQh(
W$VVVVVVh
W$f9XHu'
GPSSSSS
Pp_^[]
CT;{Pu
t79KhtT
sPQQQP
W$f9x>t
W$f9H<
<<You should never see this>>
d$V$n$V$x$V$
FV$&GV$
V$[\V$
\V$"]V$
_V$j_V$
V$97V$
V$TFV$
V$-$V$H
d$V$n$V$x$V$
FV$&GV$
V$[\V$
\V$"]V$
_V$j_V$
V$97V$
'V$1&V$
$V$s-V$TFV$A(V$6
d$V$n$V$x$V$
FV$&GV$
V$[\V$
\V$"]V$
_V$j_V$
V$97V$
/V${/V$TFV$<.V$6
V$A.V$;
.V$b/V$)/V$@
d$V$n$V$x$V$
FV$&GV$
V$[\V$
\V$"]V$
_V$j_V$
V$97V$
$V$IFV$TFV$<.V$6
V$A.V$;
V$~FV$H
CtlFrameWork_ReflectWindow
/[V$F[V$V[V$[\V$
\V$"]V$
_V$j_V$
hhctrl.ocx
CLSID\{ADB880A6-D8FF-11CF-9377-00AA003B7A11}\InprocServer32
MSStkPrp.DLL
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MS Stock Picture Property Page
MS Stock Font Property Page
MS Stock Color Property Page
DISPLAY
CtlFrameWork_Parking
VBFrameworkMapClassObject
>LangRef
{%08lX-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}
CLSID\%s
%s Object
InprocServer32
Apartment
ThreadingModel
ThreadingModel
%s Object
CurVer
%s.%s.%ld
%s Object
CLSID\%s
VersionIndependentProgID
ProgID
%s.%s.%ld
TypeLib
Version
%ld.%ld
CLSID\%s
Control
MiscStatus
ToolboxBitmap32
\InprocServer32
%s.%s.%ld
%s.%s\CurVer
%s.%s.%ld
TypeLib
%s.%s.%ld
%s.%s.%ld
CLSID\%s
Implemented Categories
%s\InprocServer
%s%s.DLL
%s%s.DLL
%u\%s.dll
VERSION.DLL
GetFileVersionInfoSizeA
VERSION.DLL
GetFileVersionInfoA
VERSION.DLL
VerQueryValueA
CtlFrameWork_Parking
CtlFrameWork_Parking
DISPLAY
HeapAlloc
GetProcessHeap
HeapFree
lstrlenA
WideCharToMultiByte
lstrlenW
MulDiv
LeaveCriticalSection
EnterCriticalSection
lstrcpyA
lstrcmpiA
HeapReAlloc
MultiByteToWideChar
IsDBCSLeadByte
CloseHandle
GlobalFree
GlobalUnlock
ReadFile
GlobalLock
GlobalAlloc
GetFileSize
CreateFileA
lstrcpynA
FreeLibrary
DeleteCriticalSection
DisableThreadLibraryCalls
InitializeCriticalSection
GetVersion
GetProcAddress
GetFileAttributesA
lstrcatA
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
GetLastError
LockResource
LoadResource
FindResourceA
GetWindowsDirectoryA
LoadLibraryA
GetLocaleInfoA
KERNEL32.dll
SendMessageA
ScreenToClient
GetWindowRect
GetDlgItem
ValidateRect
ReleaseDC
DrawTextA
DrawEdge
FillRect
GetSysColor
EnableWindow
IsDlgButtonChecked
MapDialogRect
LoadBitmapA
DrawFocusRect
SetRect
SetWindowTextA
GetWindowTextA
CheckDlgButton
IsWindowEnabled
UpdateWindow
InvalidateRect
wsprintfA
LoadStringA
InflateRect
MessageBoxA
MessageBeep
IsWindow
GetDlgItemTextA
SetDlgItemTextA
GetSystemMetrics
CharNextA
DestroyWindow
UnregisterClassA
SetWindowLongA
ShowWindow
SetParent
SetWindowPos
WinHelpA
IsDialogMessageA
GetWindow
GetNextDlgTabItem
IsChild
GetKeyState
GetWindowLongA
GetParent
CreateDialogIndirectParamA
CreateWindowExA
RegisterClassA
DefWindowProcA
IsWindowVisible
EndPaint
GetClientRect
BeginPaint
SetFocus
MoveWindow
GetActiveWindow
ClientToScreen
OffsetRect
EqualRect
IntersectRect
SetWindowRgn
CallWindowProcA
PtInRect
GetFocus
ReleaseCapture
SetCapture
GetCapture
ScrollWindowEx
USER32.dll
CoTaskMemFree
CreateStreamOnHGlobal
CoTaskMemAlloc
CoCreateInstance
CreateOleAdviseHolder
ole32.dll
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
ADVAPI32.dll
OLEAUT32.dll
ChooseColorA
GetOpenFileNameA
comdlg32.dll
DeleteObject
DeleteDC
GetDeviceCaps
CreateICA
SelectObject
SetBkColor
SetTextColor
CreateSolidBrush
GetObjectA
ExtTextOutA
GetTextExtentPoint32A
CreateFontIndirectA
EnumFontFamiliesA
BitBlt
CreateCompatibleDC
GetPixel
CreateBitmap
CreateRectRgnIndirect
GetViewportExtEx
GetWindowExtEx
LPtoDP
SetMapMode
SetViewportExtEx
SetWindowExtEx
SetViewportOrgEx
SetWindowOrgEx
CreateDCA
GDI32.dll
0!0Q0q0{0
2$2*2i2
3"3>3]3p3x3
535I5_5
= =W=f=
?E?J?P?
5 5,535:5R5
5>6e6n6
7-757s7y7
919?9O9Z9
9$:U:c:p:
>$>+>2>^>d>s>z>
203<3A3W3
3$474`4
7L7\7p7|7
<<<O<|<
%0C0I0i0
6@7L9R9
:h;n;4<r<
>%>G>S>}>
?*?M?S?h?
1U1q1}1
2H3h3z3
4,444:4?4E4J4T4[4k4q4y4~4
5!5'5-535;5D5I5Q5
6.7=7B7z7
7A8X8q8
9/9@9G9L9
9+:1:L:R:
=J=b=}=
010F0Q0^0t0
151B1W1u1{1
1&2>2X2q2~2
3+3T3j3u3
4%4,43494F4L4R4Z4f4
6"6+6E6N6
727M7Z7x7
9,939\9b9}9
97:F:Q:t:
;P;d;j;s;
<,<c<i<r<
=!=*=C=J=y=
>E>Y>_>h>z>
0?0E0N0g0n0~0
111W1_1e1r1
4"4:4C4t4
646M6x6
7!7G7a7|7
8,8d8k8
9#949l9
;-;3;S;s;
;)<0<b<l<|<
=	>=>C>S>Z>`>h>q>w>~>
?!?(?.?6???E?L?S?Z?a?n?
0$0/0E0U0d0z0
1"141:1@1P1Y1h1q1
2 2&23292D2J2z2
3@3J3P3]3c3n3
5&525<5D5P5z5
6	6E6e6l6s6z6
8 8'8.858<8C8J8Q8X8_8f8m8t8{8
8h9o9u9
9,:<:i:y:
: ;4;y;
<'<T<h<
>/>h>l>p>t>x>|>
?^?e?o?
1!1@1g1
1.2;2_2
9]:c:k:p:w:
;:<I<X<
=	>*>7>J>Y>_>
?)?;?B?_?
3090O0d0v0
6%7A7R7n7
0$0/0:0C0|0
6;6]6c6v6~6
6]7c7p7
898?8`8f8y8
:.:5:T:j:
;Q<W<i<p<
=*=6=j=p=
1=1C1`1
4@5H5y5
596e6r6
7I7P7d7m7
9$969<9E9Q9X9e9l9t9
:.:4:=:I:P:]:d:l:
:%;K;e;l;p;t;x;|;
;J<U<p<w<|<
= =j=p=t=x=|=
>">(>.>4>:>@>F>L>R>X>^>d>j>p>v>|>
?$?*?0?6?<?B?H?N?T?Z?`?f?l?r?x?~?
0 0&0,02080>0D0J0P0V0\0b0h0n0t0z0
1"1(1.141:1@1F1L1R1X1^1d1j1p1v1|1
4 4$4(4,4044484<4@4D4H4P4T4X4\4`4h4l4p4t4x4|4
5 5$5(5,5054585<5@5D5H5L5P5X5\5`5d5h5l5p5t5x5|5
6 6(6,6064686<6@6D6H6L6P6T6X6\6`6d6h6l6p6t6x6
687<7@7D7H7L7P7T7X7\7`7d7h7l7p7t7x7|7
8 8$8(8,8084888<8@8H8L8P8T8X8\8`8d8h8l8p8t8x8|8
9 9$9(9,90989<9@9D9H9L9P9T9X9\9`9d9h9l9p9t9x9|9
: :$:(:,:0:4:8:<:@:D:H:L:P:T:X:\:`:d:h:p:t:x:|:
; ;(;,;0;4;8;<;@;H;L;P;T;X;\;`;d;h;l;p;t;x;|;
; <$<(<,<0<4<8<<<@<D<H<L<P<X<\<`<d<h<p<t<x<|<
= =$=(=,=0=
0 0(0,080H0P0T0`0p0
dll\MSStkPrp.dbg