Sample details: f0296cf398efd8af5823f56af8825e2f --

Hashes
MD5: f0296cf398efd8af5823f56af8825e2f
SHA1: 1ef0fe0d107b86a7b6a88ce7f9b12aa1e623a754
SHA256: 082da28aa4e04257530e7deec15a493add1790a57194039630e5ab37bff755d1
SSDEEP: 49152:Skwkn9IMHealBT2N/DuAwC6coe2tlfjUj3aPCS:RdnV9BTGuAf2Tf7PC
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/AutoIt_2 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasDebugData | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/AutoIt | YRP/domain | YRP/IP | YRP/contentis_base64 | YRP/AutoIT_compiled_script | YRP/anti_dbg | YRP/inject_thread | YRP/network_http | YRP/escalate_priv | YRP/screenshot | YRP/keylogger | YRP/win_registry | YRP/win_token | YRP/win_files_operation | YRP/CRC32_poly_Constant | YRP/CRC32_table | YRP/Str_Win32_Winsock2_Library | YRP/Str_Win32_Wininet_Library | YRP/Str_Win32_Internet_API | YRP/Str_Win32_Http_API | YRP/suspicious_packer_section |
Source
http://seliodrones.info/logo.exe