Sample details: 0b1d47c379699918eb4458b05533c981 --

Hashes
MD5: 0b1d47c379699918eb4458b05533c981
SHA1: b0ea5b2ac92ffed4faa1801b6a334646723490d3
SHA256: ebaec8fcbbff44bc0b777793901e64e44db2dcf99540c65fe19c653049db0d78
SSDEEP: 3072:Ux1DwgIU9i3DUY5AbU6ij4qpXqnnDibAJBVkXVY8z2L9rQn4J9+3Z5yOV2n3:U7DwgW3DUY5AbTqp4nwEyN
Details
File Type: Composite
Yara Hits
CuckooSandbox/shellcode | CuckooSandbox/embedded_pe | CuckooSandbox/embedded_win_api | YRP/domain | YRP/IP | YRP/url | YRP/contentis_base64 | YRP/maldoc_OLE_file_magic_number | YRP/Misc_Suspicious_Strings | YRP/network_tcp_socket | YRP/escalate_priv | YRP/screenshot | YRP/win_registry | YRP/win_token | YRP/win_files_operation | YRP/android_meterpreter | YRP/Str_Win32_Winsock2_Library | YRP/Str_Win32_Wininet_Library | YRP/Str_Win32_Internet_API |
Source
http://willipostcopa.com/realidade?E4O38AK65I5M38AL62C3M27DRYDWI/PDF_NF-e257478
Strings