Sample details: 4ff11e5ea3b715e21908bb1eacccf27c

Hashes
MD5: 4ff11e5ea3b715e21908bb1eacccf27c
SHA1: 4f7c5a15b8f52259027c84445eb7ff27e6f2ca3e
SHA256: 713a6bb4a9caa633172340c2a765e209d4974e7d30a5e25095b853e08bb68eb6
SSDEEP: 6144:GKMJx4pweP7kJS3iGYkZBvA9HY7Fk6vetZ/mz+b9cUqMSoCnbm9S:GKoShY4Y94Bk6mDuzzUjMnbm9S
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/NETexecutableMicrosoft | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Browsers | YRP/Dropper_Strings | YRP/WMI_strings | YRP/network_dns | YRP/screenshot | YRP/keylogger | YRP/win_hook | YRP/Advapi_Hash_API | FlorianRoth/Quasar_RAT_1 | FlorianRoth/Quasar_RAT_2 |
Source
http://hdhjeuehujwghqjejfejd.club/LXX.exe