Sample details: 16b37e1c485c94e3d1250e878d393b1f

Hashes
MD5: 16b37e1c485c94e3d1250e878d393b1f
SHA1: 29686051a447d45294c79e8b150c484b9d5df412
SHA256: 359440df1e4a2a524982d61b525e45aee7c32bf267a634c2ae150ebf88e9e646
SSDEEP: 12288:r/c6xTgK8nyl7B3ubmmFuzKb7LSKQ2KfKH/A7qg+esTCm:7lmKN3Am34Sl2kq/AQ2m
Details
File Type: PE32
Yara Hits
YRP/ASProtect_v123_RC1 | YRP/ASProtect_v12x_New_Strain_additional | YRP/Microsoft_Visual_Basic_v50 | YRP/ASProtect_v12x_New_Strain | YRP/ASProtect_v11_BRS | YRP/ASProtect_V2X_Registered_Alexey_Solodovnikov | YRP/ASProtect_133_21_Registered_Alexey_Solodovnikov | YRP/VMProtect_1704_phpbb3 | YRP/ASProtect_v12_additional | YRP/ASProtect_123_RC4_130824_Solodovnikov_Alexey | YRP/ASProtect_133_21_Registered_Alexey_Solodovnikov_additional | YRP/ASProtectSKE21xexeAlexeySolodovnikov | YRP/ASProtect13321RegisteredAlexeySolodovnikov | YRP/ASProtectv12xNewStrain | YRP/ASProtectv123RC1 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/keylogger | YRP/win_registry | YRP/suspicious_packer_section |
Source
http://plantatulapiz.cl/images/11FB.exe
http://plantatulapiz.cl/images/11FB.exe