Sample details: 62999f624ca152b24c4a426884b7ddd7

Hashes
MD5: 62999f624ca152b24c4a426884b7ddd7
SHA1: 50dde90d88a8e2b500f93b64a35bd490d09ab3ff
SHA256: a8dbccf07aee77f19fed98b671b0e57a7a711e427d4063e89c2d481184e50683
SSDEEP: 6144:OX6HSq6r+g2edNFhWU6J2OcbguwuH6oGFfcWJltVSyOdMAsnKTVrt4:U+g2erWJhcsuwuaZEMTVSNGAsKTVrt4
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasOverlay | YRP/HasDigitalSignature | YRP/HasDebugData | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Dropper_Strings | YRP/DebuggerException__SetConsoleCtrl | YRP/anti_dbg | YRP/create_service | YRP/network_tcp_listen | YRP/network_tcp_socket | YRP/escalate_priv | YRP/screenshot | YRP/win_mutex | YRP/win_registry | YRP/win_token | YRP/win_files_operation | YRP/Str_Win32_Winsock2_Library |
Source
http://mdksimon.su/panel/exec/120131015025101862.exe