Sample details: 2e25c80b1c762a857663659815d15599

Hashes
MD5: 2e25c80b1c762a857663659815d15599
SHA1: 2fb070f1552d554cbcfcebbdd6b437b6d65b79c7
SHA256: 0903708fdd086963efc84921148e57516dc7d11611bf380f2b5ea149ca990320
SSDEEP: 768:AcBqCgwZ7UFRZa9R0wHuOviegAoMT1TXxAxTDkn6W0rt5fLB8J6aL0vBYHixGyT/:0EgAoMT1zxCY6W0rtdB8JruBYHGGy7
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/NETexecutableMicrosoft | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Dropper_Strings |
Source
http://ih803741.myihor.ru/svhost.exe
http://ih803741.myihor.ru/svhost.exe