Sample details: 2a3d53360353f4f53ea3288f226b0175

Hashes
MD5: 2a3d53360353f4f53ea3288f226b0175
SHA1: d81d52d2de33c5fc7c9d5a54aa00628cd2c6bdcf
SHA256: 9318464898b7706a30f76510370880e1bbc67a6af720cf440db7612be145bd47
SSDEEP: 3072:VwJ52Y7ZoH5XJayrWZ8ko/vgRZSliv0lOycQjIVpD9y7fuYQHdAM1xyZXkoBHANE:VwHyspZ8aPiNODSIVrO2YPZXkoBHANyf
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://securedownload2.duckdns.org:7373/docs/RFQ5.exe