Sample details: 63f4929f8235534761b9c6daac48ac1d

Hashes
MD5: 63f4929f8235534761b9c6daac48ac1d
SHA1: a220b7266f65de941883e460c61a2c4e52ef5b0b
SHA256: 46f1198d35e453b44af373ec794ff208d06d84c7e46eaf44f1bbdca620b0357a
SSDEEP: 12288:DqF3TNDBl9pxz10/JVsgxIrrB6IzQ44aRXt9QViG8h5mS2MPYsxxPU7gDwtmfWPB:DchtzB0/JVnu9s4Pn9QD8DmS2jsTx3WZ
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/anti_dbg | YRP/network_tcp_socket | YRP/screenshot | YRP/win_files_operation | YRP/Str_Win32_Winsock2_Library |
Source
http://31.31.203.14/au.exe
http://31.31.203.14/au.exe