Sample details: 57dc1364a65766445c1c555f5695b0ee

Hashes
MD5: 57dc1364a65766445c1c555f5695b0ee
SHA1: 9dd8cfd214cd7f646055bd0d7f3166fd7de04da4
SHA256: e856fe30116bf9ec623c7591a8be9c11513ebfcf9c9061f74f6433e2f451632b
SSDEEP: 24576:IN/BiRuPU7CuA/BDPPSZbE1tG59WDj4a+lLmzG:IxBiRygCj56ZbE7G5U/4aW6G
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Misc_Suspicious_Strings | YRP/CRC32_poly_Constant | YRP/CRC32_table |
Source
http://camosun.ga/Fremontod.exe
http://camosun.ga/Fremontod.exe