Sample details: f7c09674e116b621b265cc8509a4294e --

Hashes
MD5: f7c09674e116b621b265cc8509a4294e
SHA1: b6438860dfd1d6cd467698a8c0c9129cb35638d8
SHA256: 38cc8c6df632bd0b1f34510973f6317c5c5cffc1b8475f3407bd9b285bb79c04
SSDEEP: 24:ZHGStt611Qw1jSULsMeiu6DhBJQnQWUiiOfsXYk8gKNnGsHPtqB0Au/:ZvttLw1jYMe9CjcQWUXksX1BGZHK0B
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Basic_v50 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasOverlay | YRP/FASM | YRP/domain | YRP/contentis_base64 | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings
		!This program cannot be run in DOS mode.
carmapi
shell32.dll
ShellExecuteA
R|tyj>
R|wwj>
Uqu|FU
kernel32.dll
GetComputerNameA
GetModuleFileNameA
GetProcAddress
GetShortPathNameA
LoadLibraryA
VirtualAlloc
lstrcatA
lstrlenA