Sample details: a38ad704ae67462e8890bbd7738c58e2

Hashes
MD5: a38ad704ae67462e8890bbd7738c58e2
SHA1: 0345707df4df630de7520c6901a08a39332c7731
SHA256: 0f7061b3e130e6e74d13a7c11fe4d6fb210c0fc4d26ec98b576169cbe5527cd9
SSDEEP: 6144:Fr/BPeMTuxDmJh6YGdFWSSb/0zCPwFqz0JYnbN2FGU7pnMV2l0kEB1e:F9LIm76YG/WSSb/0QRbgF77pMcaB1
Details
File Type: PE32
Yara Hits
YRP/possible_includes_base64_packed_functions | YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Dropper_Strings | YRP/anti_dbg | YRP/screenshot | YRP/rat_webcam | YRP/win_private_profile | YRP/win_files_operation | YRP/Big_Numbers0 | YRP/VC8_Random | YRP/Str_Win32_Winsock2_Library |
Source
http://193.124.0.151/crypt/sv.bin
http://193.124.0.151/crypt/sv.bin