Sample details: 5f9f71708cc554d022aa8200dfb7d5f8

Hashes
MD5: 5f9f71708cc554d022aa8200dfb7d5f8
SHA1: 517a9b7d42f73755cf6d4b69307eb126cf0bc3ac
SHA256: c617f9330be2690c872f29bdf035410ac6bd571bb6d4794bc97049924c0fded8
SSDEEP: 12288:TMXli5rmjZ5CO7JpHqZ/+H7npFHI9TIGV:Tbmj5JpKZc7pFHJGV
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/url | YRP/contentis_base64 | YRP/anti_dbg | YRP/keylogger | YRP/win_mutex | YRP/win_registry | YRP/win_files_operation | YRP/win_hook |
Source
http://134.0.117.224/1300/red.php
http://134.0.117.224/1300/1300.exe
http://www.kfzgutachten-berlin.eu/TempCont/r13.php
http://134.0.117.224/1300/1300.exe