Sample details: b90c66125ce9bc6bac55fd8ad8b3d99c

Hashes
MD5: b90c66125ce9bc6bac55fd8ad8b3d99c
SHA1: 251c7ec1a0651da89c6b587ab94ce14e505da04e
SHA256: e5bcda20b975a77d5041047a14137a348347be386940e24e3c407ac97cf238e1
SSDEEP: 3072:BwJ52Y7ZoH5XJahw3Wt0lB1+wGwZpcuTynCEIVqCJGmP6NS83ZXwNgz1LLRDfJTg:BwHysBt0lBoCJuBs8mPwSkZXUifJ7sX
Details
File Type: PE32
Yara Hits
YRP/Nullsoft_PiMP_Stub_SFX | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_private_profile | YRP/win_files_operation | YRP/CRC32_poly_Constant |
Source
http://securedownload2.duckdns.org:7373/docs/RFQ5.exe