Sample details: 38b7a602861b699df1429862a4fbfb91 --

Hashes
MD5: 38b7a602861b699df1429862a4fbfb91
SHA1: 3ee11ce9f5137e6123fef977988b2df833540d8a
SHA256: dfb8c4d98a37419287bd52ba3a04b27633dee64df54ab8fefa62913fbe19d59b
SSDEEP: 384:GEZkcWTC5RXE3Bv4G7NSJYtB/culz7TTc3YlzDcnkRwOw6mO66QOhKJUVE4pDBtQ:GEZkcHRXKhN28Cul/rzDzRw13JoE4pb
Details
File Type: PE32
Yara Hits
YRP/Microsoft_Visual_Cpp_v50v60_MFC | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsPacked | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/Check_OutputDebugStringA_iat | YRP/anti_dbg | FlorianRoth/DragonFly_APT_Sep17_3 |
Strings