Sample details: deac6c1d261149f4b415e875cc1aaef1 --

Hashes
MD5: deac6c1d261149f4b415e875cc1aaef1
SHA1: 25f889f385e3dc6bca7f33acadc5d10b56aafe6f
SHA256: 00c56dff20aadfebdde69d7bb268398145ddfcfa3617f4ad8df9ad2902e58be5
SSDEEP: 384:Gfk4JZrcbcVVbnLf45KQfjbeb8/VwXBpUU1JO:z4JGO/KXypUUXO
Details
File Type: PE32
Yara Hits
YRP/contentis_base64 | YRP/domain | YRP/IP | YRP/NETexecutableMicrosoft | YRP/Microsoft_Visual_Studio_NET | YRP/Microsoft_Visual_C_v70_Basic_NET_additional | YRP/Microsoft_Visual_C_Basic_NET | YRP/Microsoft_Visual_Studio_NET_additional | YRP/Microsoft_Visual_C_v70_Basic_NET | YRP/NET_executable_ | YRP/NET_executable | YRP/IsPE32 | YRP/IsNET_EXE | YRP/IsWindowsGUI | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/network_smtp_dotNet |
Source
http://80.208.230.159/windowsupdate.exe
Strings