Sample details: 294627d41f386d432991851ec89e7834

Hashes
MD5: 294627d41f386d432991851ec89e7834
SHA1: 868a29b933791263c8e304a58e18f6af17d28937
SHA256: d9893b78bc95a055882927917a808446a6c384915bec3d220f9aa739b88fe096
SSDEEP: 1536:yKpMj1IqTTa2KFvqMX62gauIksceskOT4uATvoEKRkzmI:FpmSX1gavOlJEKNI
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/maldoc_find_kernel32_base_method_1 | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Browsers | YRP/escalate_priv | YRP/cred_local | YRP/cred_ff | YRP/win_token | YRP/win_files_operation | YRP/MD5_Constants | YRP/RIPEMD160_Constants | YRP/SHA1_Constants | YRP/DES_sbox | YRP/with_sqlite | YRP/pony |
Source
http://svit-zer.com/microsoft2018/opening_updatingemryssv.exe