Sample details: b10aae7e3a1dc493c91dc66704d5a14a

Hashes
MD5: b10aae7e3a1dc493c91dc66704d5a14a
SHA1: cb072d8ffa43ceff47763e17bad3f3a270412803
SHA256: d83741b2198da0eb27e3fdfd05dbff06d99510e07b67c59bc5e9dd3700fc3e56
SSDEEP: 6144:WwHysI/G6ulsvPMEtvlWZ0UC2V2v4nj/ANyJ:tI/G6ulsHMEtGxVtjoQ
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://securedownload2.duckdns.org:7373/docs/RFQ6.exe