General
Structural Analysis
Config.0
Yara Rules26
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 38bb81c81be570d40adefd736dc2512e
|
| Sha1 | fcf2397a8f8218eec1721fad0947ca35efdd9b3f
|
| Sha256 | c22808c338b7dd266338752fd419f82d8761e9920dc99467ca2bf9683948ed96
|
| Sha384 | ad3eb68ac4cb634e91b1e3cdc305239f53f8b0cee1fb99110ca169ffe4d9ac615beba983bdd985f6a6881be387dd6325
|
| Sha512 | 0f6175fc45271562f22844050ba0625ae171c2eec2b0d1bd44f0eca268bee643f914f4dfc70d3b89c2ad82ae7b97310d6fd6db4e8b0884fd2792b972847f0bfc
|
| SSDeep | 48:9dLMEurU3hGtH+DSsTAjmiDsQtqyg8WQYGvxaQa8bvh5Xkf8pZLMy:xOUOH+uldsQtPgA5aQa8hKyh
|
| TLSH | 5631E6E9DA70C1B0F66D113CA90389C38DC40745960AD2A2BBB17F97531022ACBBE2E1
|
File Structure
38bb81c81be570d40adefd736dc2512e
Malicious
ZoomInstallerUpdate8.3.vbs
Malicious
Artefacts
|
Name0 | Value |
|---|---|
| URLs in VB Code - #1 | http://timesync.verisign.com/ts |
| URLs in VB Code - #2 | https://dl.dropboxusercontent.com/scl/fi/7skctqxj1674j1ukx9asw/MeetingApp.msi?rlkey=u68yv32nxibdkihng2czzx093&st=uxpkiieu&dl=1 |
38bb81c81be570d40adefd736dc2512e (1.81 KB)
File Structure
38bb81c81be570d40adefd736dc2512e
Malicious
ZoomInstallerUpdate8.3.vbs
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| URLs in VB Code - #1 | http://timesync.verisign.com/ts |
38bb81c81be570d40adefd736dc2512e > ZoomInstallerUpdate8.3.vbs |
| URLs in VB Code - #2 | https://dl.dropboxusercontent.com/scl/fi/7skctqxj1674j1ukx9asw/MeetingApp.msi?rlkey=u68yv32nxibdkihng2czzx093&st=uxpkiieu&dl=1 |
38bb81c81be570d40adefd736dc2512e > ZoomInstallerUpdate8.3.vbs |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.