Sample details: 02e1b2db3b3826330f608a5d2405d177

Hashes
MD5: 02e1b2db3b3826330f608a5d2405d177
SHA1: 7fff0c8da31cd0de2d1aa410c7172c37b61f707e
SHA256: dd8f82cf0e9c354715cb2ab5ffcab9af5232abf94af2d2ede195c999b084e587
SSDEEP: 12288:FPRmPkhjZOlSwKBbQ9g2zHjxDoeOIRh02ZNX8Nv1btFmQ0oMl:FZjhE6BOgYjpoeLlZxqBtFioU
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/domain | YRP/contentis_base64 | YRP/anti_dbg | YRP/screenshot | YRP/win_token | YRP/win_files_operation | YRP/Str_Win32_Winsock2_Library | YRP/suspicious_packer_section |
Source
http://telosbeauty.ru/files/HVNC.exe
http://telosbeauty.ru/files/HVNC.exe