Sample details: 8dde6ae8991612c769a66608dd50fe8f

Hashes
MD5: 8dde6ae8991612c769a66608dd50fe8f
SHA1: acff562f6e60abf3cfb0dccc2097bc0576bade70
SHA256: 5acf23f0835e6330dff92f9e57225d3540aa333cde58e3044b926dcc6929cd53
SSDEEP: 6144:WwHys3ZBUrjRv1bCiEanB0o4op+rSB1Iqykg:t3Z0RvNpEanyrSBip
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://securedownload2.duckdns.org:7373/docs/RFQ7.exe