Sample details: 226304e20308e8ec2bc56efc741a2e83

Hashes
MD5: 226304e20308e8ec2bc56efc741a2e83
SHA1: f7e6636a5d88c65631186de6089872c15e28b1f7
SHA256: d1827fad319320d481eff65f95d75bfb0c579a6dee1a32a922a772feb8b3a981
SSDEEP: 6144:cwHyshtzRrjozYsmac5IknegLtYHQ5uI7:HhtzRozZTjKeghYwMI7
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://5.101.149.8/ugobuild.exe
http://5.101.149.8/ugobuild.exe