Sample details: 9922db76e6d1c4e6f673da5ac3ac4a1f

Hashes
MD5: 9922db76e6d1c4e6f673da5ac3ac4a1f
SHA1: 57dc2ab7935d0d9fcbb4d729baffa829e31eea0c
SHA256: 018d8c0d1568867fdb041b3b29e1de53f9b0c6c5024f9b1aeba9aed766117f56
SSDEEP: 3072:WwJ52Y7ZoH5XJaxO8Z2VSZ94KSsiw+eayllnVxPx80BmXCdhM2zomo1zTV5ZPJ9e:WwHystlbVJn/VbLVMGQV5Z8J
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://securedownload2.duckdns.org:7373/docs/RFQ6.exe