Sample details: 22cb34813e874ed5b069bcfa4cadee23

Hashes
MD5: 22cb34813e874ed5b069bcfa4cadee23
SHA1: d0f08f2e82c2bf6ab901be133d69e6b106202949
SHA256: 2b331ff5b9eddddcb363c2cd31a8c06ac1732424cc4d59f05a37f838b05c32e8
SSDEEP: 6144:1ZmJZVWxhCoCqm3hyk7fDkxHq8ryP62m4wh/T:OIxooMxLkxHB92m4wR
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/NETexecutableMicrosoft | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsPacked | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/suspicious_packer_section |
Source
http://gg.usdipc.com/godfcryp.exe
http://gg.usdipc.com/godfcryp.exe