Sample details: 4a4e72fdfc9737aa7f68de4848ecda5f

Hashes
MD5: 4a4e72fdfc9737aa7f68de4848ecda5f
SHA1: 49db51bf7cd702c0ace5677619941f4f42cf9d0e
SHA256: ee0209d8c77565a96c265881fa3b0aef4191fd77877afa4e5eae9807d3585da5
SSDEEP: 3072:xwJ52Y7ZoH5XJaXroVKWbYDx7Pq4GcYhYgEMHNrVmZOkZs5jZqcy05NJhWOZca0L:xwHys0LbYl7qKg9xvOsTNgPXjR5b
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://5.101.149.8/ugobuild.exe