Malicious
Malicious

1039cdffea6f6ab28d4d61344c75de6a

VBScript
|
MD5: 1039cdffea6f6ab28d4d61344c75de6a
|
Size: 83.73 KB
|
text/vbscript

Html
PowerShell
Batch Command
PowerShell Call
WScript.Shell
VBScript
DeObfuscated
Print
General
Structural Analysis
Config.0
Yara Rules99+
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
1039cdffea6f6ab28d4d61344c75de6a
Sha1
0c0af7508bd2ee5b29505850ce3d3f76c69eb901
Sha256
24ae7aabd5f99e7a163be53165d9df8d1e8532ab76351b4bec633d293d8a92c1
Sha384
204f57a67c0149106852e8292cbee408888e8409de2bb30e90754c04d35b70dcb0b951c75d5629190e868dd5db940a80
Sha512
1456e2a065d743d2dc02743c9dea8650960a1cdfad0527d864b6e65040989e2d243fea54f0ea5e785c5792704c88d4ef0bed6de830cc37b7e67addc8f2286a60
SSDeep
384:49zD+nXuu/XBc8G+GO8Z/9ATqp4N6GOnlPwYbwGO9OtBXE2YsLCovX:49H+nNfG+oZFA2plPwYbwGPtB02YseoP
TLSH
E483B7B07B5AE95ADEB17F01E5590434DE5953D3F9CA39BE288A175AE33343823C3848
File Structure
1039cdffea6f6ab28d4d61344c75de6a
Html
PowerShell
Batch Command
PowerShell Call
WScript.Shell
VBScript
DeObfuscated
Malicious
1039cdffea6f6ab28d4d61344c75de6a.deobfuscated.vbs
Malicious
[Command #0]
PowerShell
Batch Command
PowerShell Call
Powershell: Hidden Execution
Contains Base64 Block
Base64 Block
DeObfuscated
Malicious
[PowerShell Command]
PowerShell
DeObfuscated
Contains Base64 Block
Base64 Block
Malicious
[Deobfuscated PS]
DeObfuscated
PowerShell
Contains Base64 Block
Base64 Block
Malicious
[Base64-Block]
Base64 Block
PowerShell
DeObfuscated
Malicious
[Deobfuscated PS]
DeObfuscated
PowerShell
Malicious
[Deobfuscated PS]
DeObfuscated
PowerShell
Contains Base64 Block
Base64 Block
Malicious
[PowerShell Command]
PowerShell
Contains Base64 Block
Base64 Block
Malicious
Artefacts
Name
 Value
URLs in VB Code - #1

https://www.javascriptfreecode.com
URLs in VB Code - #2

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css
URLs in VB Code - #3

https://fonts.googleapis.com
URLs in VB Code - #4

https://fonts.gstatic.com
URLs in VB Code - #5

https://fonts.googleapis.com/css2?family=Inter:wght@400
URLs in VB Code - #6

http://www.javascriptfreecode.com
URLs in VB Code - #7

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css
URLs in VB Code - #8

http://www.javascriptfreecode.com/files/video_player_manipulation_with_intersecting_observer/Water
1039cdffea6f6ab28d4d61344c75de6a (83.73 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙