Sample details: da647220b453c0d921ca47143e60a812

Hashes
MD5: da647220b453c0d921ca47143e60a812
SHA1: 6f7deb88f61eb6d2bcc68f9dde237eed740c21b2
SHA256: 64c7e5aca3d059fff975f688868cd90ae6d30bdc538f8a3bad6f06903a4f7337
SSDEEP: 3072:KLD8OFpa6tmp+R2Z1QCetCOPARZqvqcPttac/yXzClRNa5DeCl8oyBZRJQXuefBH:24Qpqp+Qu5U8AR50ttf/yjR598oy4uy
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Basic_v50v60 | YRP/Microsoft_Visual_Basic_v50 | YRP/Microsoft_Visual_Basic_v50_v60 | YRP/Microsoft_Visual_Basic_v50_additional | YRP/Microsoft_Visual_Basic_v50v60_additional | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasDigitalSignature | YRP/HasRichSignature | YRP/maldoc_find_kernel32_base_method_1 | YRP/domain | YRP/url | YRP/contentis_base64 | YRP/SEH__vba |
Source
http://phoenixcomtact.com/temp/powermannna.exe
http://phoenixcomtact.com/temp/powermannna.exe