Sample details: ab7ffc52f8c7b009be6bfd2690fe0602

Hashes
MD5: ab7ffc52f8c7b009be6bfd2690fe0602
SHA1: 0f5f440b18df0907e2b884334b8e4fa70391c908
SHA256: dedd8cda0a1ac18443fd30e46565012a528a54ba232644156e23e9a68e09a302
SSDEEP: 12288:Kbgsp8U5X85450qdiUed/Gpdnhaqb0SJKBAFlf7rxCwDs9krrum0PbRl4qek0v5k:Kblp8UF6450qdiUed/Gpj9n17r8XMb0b
Details
File Type: PE32+
Yara Hits
YRP/Microsoft_Visual_Cpp_80_DLL | YRP/IsPE64 | YRP/IsConsole | YRP/IsBeyondImageSize | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/VM_Generic_Detection | YRP/DebuggerException__SetConsoleCtrl | YRP/ThreadControl__Context | YRP/SEH__vectored | YRP/Check_OutputDebugStringA_iat | YRP/anti_dbg | YRP/network_udp_sock | YRP/network_tcp_listen | YRP/network_tcp_socket | YRP/network_dns | YRP/escalate_priv | YRP/win_registry | YRP/win_token | YRP/win_files_operation | YRP/RijnDael_AES_CHAR | YRP/RijnDael_AES_LONG | YRP/Str_Win32_Winsock2_Library | FlorianRoth/BTC_Miner_lsass1_chrome_2 |
Source
http://dd0s.xyz/mr/audiodg.exe
http://159.224.138.20/panel/mr/audiodg.exe
http://iniosmiaw.pw/pm1a/mr/audiodg.exe
http://dd0s.xyz/mr/audiodg.exe
http://iniosmiaw.pw/pm1a/mr/audiodg.exe
http://159.224.138.20/panel/mr/audiodg.exe