Sample details: 272b9bea0642285add74ffb95eccaccb

Hashes
MD5: 272b9bea0642285add74ffb95eccaccb
SHA1: 5bc72df47d20965e1d93d739f78f169082e4565f
SHA256: 0f17d27a1c4e9ff28dd3155a3e622f1638f7e55738e589afbfb5d3d730d4368b
SSDEEP: 24576:w5SwSuCeHKhRhkPB+sdSlpZkB1NTm7/boLlmhO6k3/0:wIBhP2B1SBkB1hm7/cLlmh3kM
Details
File Type: PE32
Yara Hits
YRP/Borland | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/borland_delphi | YRP/domain | YRP/contentis_base64 | YRP/screenshot | YRP/keylogger | YRP/win_registry | YRP/win_files_operation | YRP/win_hook | YRP/Delphi_FormShow | YRP/Delphi_CompareCall | YRP/Delphi_Copy | YRP/Delphi_StrToInt |
Source
http://smartera.myhostpoint.ch/qs.exe
http://smartera.myhostpoint.ch/qs.exe