Sample details: 4ccb714b9ff388e289fa24ae757eeaff

Hashes
MD5: 4ccb714b9ff388e289fa24ae757eeaff
SHA1: 51a0e0d04e3a82a3afab703fa4c545014f12fc37
SHA256: c9c760fb373c7fda5dffdacd3f6878f886b2f5da62113871b438c25be660c324
SSDEEP: 6144:WwHysCaCRz7/pDqz4g6lZxBjBCM7fCPkJlNTIxV5Z8a:tCaCB9mzgj8M7fCP0NTIl
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://securedownload2.duckdns.org:7373/docs/RFQ6.exe