Sample details: e90c3177cadd8213f4cd074fb1f0cebb --

Hashes
MD5: e90c3177cadd8213f4cd074fb1f0cebb
SHA1: 71fd1c1b47990efc4bdef32912443879c6bd68a5
SHA256: 74328cd76613c31fbedc9f8601783c72557405bb893fbc594229ad619ff6cbc7
SSDEEP: 3072:e1embD6hH2ys9yR3Nwy8jKOaqaCw42BxtsAt9c/:e1ZIH2yJR3qy8OIwLuIw
Details
File Type: PE32
Yara Hits
YRP/Armadillo_v171 | YRP/Microsoft_Visual_Cpp_v60 | YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional | YRP/Microsoft_Visual_Cpp_50 | YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/Armadillo_v171_additional | YRP/Armadillo_v4x | YRP/Microsoft_Visual_Cpp | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasRichSignature | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/Check_OutputDebugStringA_iat | YRP/anti_dbg | YRP/screenshot | YRP/keylogger | YRP/win_registry | YRP/win_private_profile | YRP/win_files_operation | YRP/win_hook | YRP/Big_Numbers1 | YRP/Str_Win32_Wininet_Library | YRP/Str_Win32_Internet_API |
Source
http://112.30.128.73:81/ups.exe