Sample details: e3ba718a23fdbe943ddb133f1b828df0

Hashes
MD5: e3ba718a23fdbe943ddb133f1b828df0
SHA1: 6f3b1ba9591b0cb24d0e35c6d50be997f4549384
SHA256: 11ea6e48e567a737c589e5fd664af8a9fe8aa2de72d8971b39f4b7802ba48b0f
SSDEEP: 384:jyDyq0z2U5v9R/zQ8kn8INMdX9gugoL2RHuD902u1:Ayq82Ud7/zfkn8I+ilc90f1
Details
File Type: PE32
Yara Hits
YRP/Visual_Cpp_2005_Release_Microsoft | YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/Check_OutputDebugStringA_iat | YRP/anti_dbg | FlorianRoth/DragonFly_APT_Sep17_3 |
Source
http://newew.whatisthis988.5gbfree.com/Task.exe
http://newew.whatisthis988.5gbfree.com/Task.exe