Sample details: 841f389b00c4e754a63c4aba65e0fa67 --

Hashes
MD5: 841f389b00c4e754a63c4aba65e0fa67
SHA1: 693508285e25f020dfcfd7e71da8e3ba0b6bfad2
SHA256: 937f8106f8f2c3920bc3a72c86687c1a146b4f73a99bfaeca05373a005213b43
SSDEEP: 1536:UnSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEIkkzmt2l:2SnMuGc/CfZDap6COU45EIotm
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/maldoc_find_kernel32_base_method_1 | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Browsers | YRP/escalate_priv | YRP/cred_local | YRP/cred_ff | YRP/win_token | YRP/MD5_Constants | YRP/RIPEMD160_Constants | YRP/SHA1_Constants | YRP/DES_sbox | YRP/with_sqlite | YRP/pony |
Source
http://hectikweek.ga:4663/adaesng/shit.exe