Sample details: b0397e1d413cdd0eafd0310d53655e72

Hashes
MD5: b0397e1d413cdd0eafd0310d53655e72
SHA1: 3619412b2bc85b837417b4b0c4b35be6a7d6f647
SHA256: a6fff3725874c935f9abb5fc7e494ed86e4022564ac67650d8b1f1b464e59297
SSDEEP: 3072:1nZ+ItuIMaxTGdTCnbkaI1wVa/vjZKe/gjTVo3rRLGdyZVwFa5YrV6OEgYEZ42:1x8roKduWCqZR/2S3rRSwVycyZZL
Details
File Type: PE32
Yara Hits
YRP/maldoc_find_kernel32_base_method_1 | YRP/contentis_base64 | YRP/url | YRP/domain | YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsConsole | YRP/IsPacked | YRP/HasOverlay | YRP/HasDigitalSignature | YRP/HasDebugData | YRP/HasRichSignature | YRP/anti_dbg | YRP/win_mutex | YRP/win_files_operation |
Source
http://facoplast.com/oxavpiu.exe
http://facoplast.com/oxavpiu.exe