Sample details: c95eebf0848b9b8e6d66d3dd2a1b9afb --

Hashes
MD5: c95eebf0848b9b8e6d66d3dd2a1b9afb
SHA1: 885d69faf282e42dc6bc36ce0667f5b58cacc6a3
SHA256: 97c4a4004195da56f86d5551bc62da7cfe8cacb72c4973a7af26a0e4e485ee2d
SSDEEP: 12288:J8oJ/gHcYzNF/uSbBYyyaPwVmBYmd8Ll8PAADYfal01+n0xvMD5oRGeI27EP2uo9:J8+EcmwKb34vnPPEcFQ
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/contentis_base64 |
Source
http://ssrdevelopments.co.za/a/att.exe
http://ssrdevelopments.co.za/a/att.exe
Strings
		!This program cannot be run in DOS mode.
`.rsrc
@.reloc
rt!	po)
rI#	po)
rH%	po)
r_'	po)
rr5	po)
lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
hSystem.Drawing.Bitmap, System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3aPADPAD
QSystem.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
System.Drawing.Bitmap
IDATx^
iYS([Y
JE_^a]
4Ay,)P
}YnJrS
(gF}/'
Dt#_:|
04)'UWCr9
ukr#`8
\#-ZPi
K3Ml.1Z
1),921
uBx"#L
OI3tkSO
fz|]|m
 #u/s,
c4)u`#
Rt8&vs
P>R`tl`w
(b7ojQc
iYS7~-
	MK6hc(
.8_Agq,U>
GxEWOY
;Da5$W(
\2G9,B/$
y9,7mGu
j7j1Ea
o G2'R
IZ"s)P^
4U]5$r
v9-W\|
E$WTV6MR
gSj{w4
+a	o^s
u>w7t}
>/P!"P
f6{a#/]
q]964?
vyJ*7C=
jh!E\L
{#uu4gk
`QIaRI?
+L-g.7`
1&MGhw"
l^p&^bj
O(hcp>
QyQE]BN	
82jQ@n
a@';P~a#
_Wu7LLdy
 Nb/+PJs
C?bU.`
-8dGS(h
*^V6ma
}`d1!-
uZE\m`
=n.'B 
Yz+B0R+|
`mB4c.
*}UQ1S
A/	9n9
%fr]*h
v%BVOD
PPoAx8
}{wdQW_
2FynM\
$rz|0NE"
X8_O\g
[\II	W:
;5:61$>
Zyfht|
gXf3^ue
Q$!NTs
QVq9l%mX
Q4lc7k
|j]l]$
TwU/Iw
3 ;$?xFP>3
=SPz9'
G>%}! 
$pvw}q
^.^e~X
FwRxDe,p
HbjIx_L~
ck~ib-
r*.l~+
Dr(L 8^K
#$is;#K
Z<<yZ|
W0=m~+-
_a+on:
!N&?QC
m(!7A7
wz@~4q
wn`y@^
;g+;&5
.IDAT3
l8`orl
DR*u}?T
^O1[NT
qN9AFb>
J>fpK	
l@J/]`B
C$pN<D
HIcN/X
z%jqW[
&s'C)x8'*
d7^Sr(
(y"y(5`
kfcmRS
@0^Lc7P
eD'Vsp
#OS#b+
Y`chBX=
^#Fx1+^
9C$Q?u
ECYo1Q
GPN#<'	.6
&!}*?E>J
=|U-(\
7,Tm1uLq
VSLy(eP
S`dD[;
:Vnk'o
^O<`H+U
ur_!	G
W?LK?i
G#n|Blq
JD8'EI
A-In; Q`}YI
8^UW~LsH"/
[1F/Zo
^jh(&O
_ZB(%-qc
MN-uo<
J6j.IE)z
 ^$f-br:P
(	;GAn
~SEHg+
Lh>Kzm
aFTWrC
U!kYBKVit
BjF%u]
&KAlM`
G}	9(zI
s,(o=z
F}2(tub`
#r4v<a
[iSiy9
L/t635
b)aef`
n*`{%O
`f+I]m
HTVuCh@
h7z\QsAP
_[(jjP
.\.PhR
WsT|;H
qdL;5&Mo"
7`(pVsT
C;qn"96Q
I+D4&>
Jbr_FD
 rQC0u
ncM(%jQGk
nRB&B5
vCg 6"
&(5DJ^Z
$v;-` K
QBcPoa
R;fPi~o)
w7#y0k_
RB=GR2
g	xN~QV
ByF6hLoP
7an8)<c
L]E%N2
lwVt%QE
2Z1l 8
8klpwVD
d;s:3"
;8~r5W
U\lVc&s
0+'iOgp"
uU'n;<m
.<R.dr
$r8?){
YL[e)m
<ta'G8
QSystem.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
System.Drawing.Bitmap
-EIDATx^
Md)[X|
-X'V2@G
HnHi)2b
mA}|j/
i7^{_AK
EdiieMr
x}.D8))$D
&)>v?.
t'}&}(
syZ[Z;
=~yM'&
X<%o'5
T ^`!U
!Up#'R
g9C|.7Z
IA_:rQ
c#^J[:?
RYR{(W
,zMN;'
j]x9TA
v4.0.30319
#Strings
<Module>
mscorlib
Microsoft.VisualBasic
MyApplication
MyComputer
MyProject
MyWebServices
ThreadSafeObjectProvider`1
Microsoft.VisualBasic.ApplicationServices
ApplicationBase
Microsoft.VisualBasic.Devices
Computer
System
Object
.cctor
get_Computer
m_ComputerObjectProvider
get_Application
m_AppObjectProvider
get_User
m_UserObjectProvider
get_WebServices
m_MyWebServicesObjectProvider
Application
WebServices
Equals
GetHashCode
GetType
ToString
Create__Instance__
instance
Dispose__Instance__
get_GetInstance
m_ThreadStaticValue
GetInstance
System.ComponentModel
EditorBrowsableAttribute
EditorBrowsableState
System.CodeDom.Compiler
GeneratedCodeAttribute
System.Diagnostics
DebuggerHiddenAttribute
Microsoft.VisualBasic.CompilerServices
StandardModuleAttribute
HideModuleNameAttribute
System.ComponentModel.Design
HelpKeywordAttribute
System.Runtime.CompilerServices
RuntimeHelpers
GetObjectValue
RuntimeTypeHandle
GetTypeFromHandle
Activator
CreateInstance
MyGroupCollectionAttribute
System.Runtime.InteropServices
ComVisibleAttribute
ThreadStaticAttribute
CompilerGeneratedAttribute
NewLateBinding
LateGet
Operators
MultiplyObject
SubtractObject
Conversions
ToInteger
ToByte
LateIndexGet
LateIndexSet
ModObject
System.Collections.Generic
List`1
System.Text
Encoding
get_Default
GetString
String
Concat
Boolean
ChangeType
STAThreadAttribute
RY.Resources.resources
CompilationRelaxationsAttribute
RuntimeCompatibilityAttribute
System.Reflection
AssemblyFileVersionAttribute
AssemblyCopyrightAttribute
AssemblyProductAttribute
AssemblyCompanyAttribute
AssemblyDescriptionAttribute
AssemblyTitleAttribute
att.exe
MyTemplate
11.0.0.0
My.User
My.Computer
My.Application
My.WebServices
4System.Web.Services.Protocols.SoapHttpClientProtocol
Create__Instance__
Dispose__Instance__
WrapNonExceptionThrows
	14.10.8.6
(c) Community Health Systems
 Community Health Systems starter
 Community Health Systems Company
!Community Health Systems Launcher
Community Health Systems
_CorExeMain
mscoree.dll
"XV$_O
2@([CL
z`Xmdv
hh $y=
d0A)sm.
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
  <assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
    <security>
      <requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
        <requestedExecutionLevel level="asInvoker" uiAccess="false"/>
      </requestedPrivileges>
    </security>
  </trustInfo>
</assembly>