Sample details: 50a652b21941da40d9fca80d12bd35f8

Hashes
MD5: 50a652b21941da40d9fca80d12bd35f8
SHA1: b7cf2f941503dcb9167e9fcaf8a159c741161fbd
SHA256: 666a8dbc172bcf7cd698bf95e5b58de17535121fed7de5ce1349db4446a1fa5c
SSDEEP: 6144:8Pb+JB1nuNURlRBOipj5W01NSVsJipfBDNcjat9w44ml5:pYMjF+V7hBDm+934Y
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsPacked | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/CRC32_poly_Constant | YRP/CRC32_table |
Source
http://123.57.77.130/wp-includes/pomo/tttttt.exe
http://123.57.77.130/wp-includes/pomo/tttttt.exe