Sample details: e43994b994a165a8703ad446ed5436b9 --

Hashes
MD5: e43994b994a165a8703ad446ed5436b9
SHA1: 711afe9569540696a2f35468c3d5f0d7c1a7b9ae
SHA256: ef09654c57afe3b776e340a8498eb0a19943489b0765d14f122257d3fcfb0682
SSDEEP: 384:eMYEoPXJ1h7iiJBOfUN6rwZbPMYEoPXJ:eMY7fJP9HPMY7fJ
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Basic_v50v60 | YRP/Microsoft_Visual_Basic_v50 | YRP/Microsoft_Visual_Basic_v50_v60 | YRP/Microsoft_Visual_Basic_v50_additional | YRP/Microsoft_Visual_Basic_v50v60_additional | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/SEH__vba | FlorianRoth/DragonFly_APT_Sep17_3 |
Parent Files
030e3acd97690e70c071f8792e5d261b
Strings
		!This program cannot be run in DOS mode.
`.data
3S3SS3qSFFF0@
v\Nvvv
vv555~
Combo1
timerMouse
Label2
Label1
VB5!6&vb6chs.dll
mdlXPfrm
ModHotKey
ModMouse
timerMouse
F:\VB98\VB6.OLB
Label1
Combo1
Label2
user32
CallWindowProcA
RegisterHotKey
UnregisterHotKey
GetWindowLongA
SetWindowLongA
SetWindowPos
VBA6.DLL
comctl32.dll
InitCommonControlsEx
mouse_event
MSVBVM60.DLL
MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
3S3SS3qSFFF0@
v\Nvvv
vv555~