Sample details: 19d617f11c04dd60e3a2ec8c7e131b7f

Hashes
MD5: 19d617f11c04dd60e3a2ec8c7e131b7f
SHA1: bb335acf068e323e86198ffccddd1902fba208f6
SHA256: de86b3ba045b70bdba9e39c4e5479ff2493916395c693cade519a654d8633ec3
SSDEEP: 12288:B8G9J3KRDt4VgbKP8IaMRhB9qc5Nb8zMkTry8vvyhFZ1PzdnL0ey6C4Du8eH7W8e:Bdfep3YU6X10eFCcU7U9iO
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/NETexecutableMicrosoft | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/HasOverlay | YRP/domain | YRP/IP | YRP/contentis_base64 |
Source
http://cayenehost.com/.major/EmberComing.exe