Sample details: 47ad8aabf1c725cc69b9d772484bea02

Hashes
MD5: 47ad8aabf1c725cc69b9d772484bea02
SHA1: a9d73601b9501963c735bccb1932147fe68e17e0
SHA256: 7eb33cf0df25bba6c23b5de4ddf804679af0b91b8b10057dca54dc38d7eefc38
SSDEEP: 6144:jlDnQeS2nwwuD4bNSZGeDgIBEb1tzbMAS9zWssHjBWFgC:jtnQsnTuDhseDP2RbDS9zP4MFg
Details
File Type: PE32
Yara Hits
YRP/Armadillo_v171 | YRP/Microsoft_Visual_Cpp_v60 | YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional | YRP/Microsoft_Visual_Cpp_50 | YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/Armadillo_v171_additional | YRP/Armadillo_v4x | YRP/Microsoft_Visual_Cpp | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/screenshot | YRP/keylogger | YRP/win_registry | YRP/win_private_profile | YRP/win_files_operation | YRP/win_hook |
Source
http://103.59.167.38:3952/csrss.exe