Malicious
General
Structural Analysis
Config.0
Yara Rules62
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 1e75c4e1497e410cf938c78a67f02e1d
|
| Sha1 | 913043f8f78c11158acf74e2ec15d6dfa5d54685
|
| Sha256 | a918dfa76f811bfa56fe08f95c10f86feced075f8acc3bbb873b7c92163e4134
|
| Sha384 | 64b2af3d18c01b4ef7dc7876e0b7e24989adcbfcc13a4b10c65f70563ec7af1cbca8c383fcae806cb964bfe665e8a7e0
|
| Sha512 | 0fa1c086d73541a78aaf2760ae3f532f8822faccb763ee650f51c618bc016af24464193a50e260846f7748d2998491edcd925d6b0bd82a7936b21a773a281ac6
|
| SSDeep | 192:WI+cBMKlEOhPV2hHytLZwMi1pNfamBvt1pZlz2OfpmsOJ:WIiKlZPVKHyPOp9amd/pZlGJ
|
| TLSH | 15F1BFD5C09B479BE87022FB62DDC94ECD061F83643F00AADD2D926284790A9C1B77BD
|
File Structure
60c5ca33dc92605155f114d650afb778a4dcae618eeda691b74e27ae5958c23c.zip
Zip Archive
WSF File
DeObfuscated
VBScript
WScript.Shell
VBScript.RegExp
Obfuscated
Malicious
60c5ca33dc92605155f114d650afb778a4dcae618eeda691b74e27ae5958c23c.wsf
Archive Entry
WSF File
DeObfuscated
VBScript
WScript.Shell
VBScript.RegExp
Obfuscated
Malicious
[Job Id=Wienerinders Name=No Name]
Malicious
[VBScript] #0
DeObfuscated
VBScript
WScript.Shell
VBScript.RegExp
Obfuscated
Malicious
[VBScript] #0.deobfuscated.vbs
DeObfuscated
VBScript
Malicious
60c5ca33dc92605155f114d650afb778a4dcae618eeda691b74e27ae5958c23c.zip (7.92 KB)
File Structure
60c5ca33dc92605155f114d650afb778a4dcae618eeda691b74e27ae5958c23c.zip
Zip Archive
WSF File
DeObfuscated
VBScript
WScript.Shell
VBScript.RegExp
Obfuscated
Malicious
60c5ca33dc92605155f114d650afb778a4dcae618eeda691b74e27ae5958c23c.wsf
Archive Entry
WSF File
DeObfuscated
VBScript
WScript.Shell
VBScript.RegExp
Obfuscated
Malicious
[Job Id=Wienerinders Name=No Name]
Malicious
[VBScript] #0
DeObfuscated
VBScript
WScript.Shell
VBScript.RegExp
Obfuscated
Malicious
[VBScript] #0.deobfuscated.vbs
DeObfuscated
VBScript
Malicious
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.