Sample details: b16f719f27def752e31254bc68a90721

Hashes
MD5: b16f719f27def752e31254bc68a90721
SHA1: b8350d8bc2dac8bab60b908212750d20c2a32269
SHA256: 6292b0ab3be5f82c65b40e7b49d75ec9688077ef1b7e673cda44e52ec4526680
SSDEEP: 6144:io0VbNnyaXKfPWHa4baDJd6n2j8m6MT/X5G65DIxaCa+wYde4g8OIuAuErqqD163:yVXX5baDJd6n2hCxaCanYde4XOIAEGq
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/Borland_Delphi_30_additional | YRP/Borland_Delphi_30_ | YRP/Borland_Delphi_v40_v50 | YRP/Borland_Delphi_v30 | YRP/Borland_Delphi_DLL | YRP/IsPE32 | YRP/IsDLL | YRP/IsConsole | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/DebuggerException__SetConsoleCtrl | YRP/anti_dbg | YRP/network_udp_sock | YRP/network_tcp_listen | YRP/network_tcp_socket | YRP/network_dns | YRP/escalate_priv | YRP/keylogger | YRP/win_mutex | YRP/win_token | YRP/win_files_operation | YRP/Big_Numbers1 | YRP/RijnDael_AES_CHAR | YRP/RijnDael_AES_LONG | YRP/Str_Win32_Winsock2_Library | FlorianRoth/BTC_Miner_lsass1_chrome_2 |
Source
http://www.eeme7j.win/mule.dll
http://www.eeme7j.win/mule.dll