Sample details: 2c3100b76672746691dc6db0d9d78541 --

Hashes
MD5: 2c3100b76672746691dc6db0d9d78541
SHA1: e9a1bf0a38e3097b93d91cf31e0d040d9e6a7423
SHA256: 99433530e582cc7ffac86b5ecb6931db40cbdff4af7114014e056587d5fc3886
SSDEEP: 12288:J5AEoj0wSTOH5UV+VNl46qjBQ+e6wqfKz:vAEojQOCk4ljBQDZ
Details
File Type: PE32+
Yara Hits
YRP/Microsoft_Visual_Cpp_80 | YRP/Microsoft_Visual_Cpp_80_DLL | YRP/IsPE64 | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/Check_OutputDebugStringA_iat | YRP/anti_dbg | YRP/screenshot | YRP/keylogger | YRP/win_registry | YRP/win_files_operation | YRP/win_hook | FlorianRoth/Dropper_MyWScript |
Source
http://stahlke.ca/svchost.exe
Strings