General
Structural Analysis
Config.0
Yara Rules5
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 3d7df620bad89f7ecd3a8aa2766370b6
|
| Sha1 | 3c6785360922fa65f330586273935361d64edac0
|
| Sha256 | 4a963fbb32bdb04b6611a2d624464f19115b78f780c883f4989776e05d02dbfa
|
| Sha384 | 3f0a3f40acdcd19f7c593fc90f08f7f295987d6b5b1bf0188c8f9ca3482a90ef0a9049992da4fa061520748b77a85c62
|
| Sha512 | 1f4471404ea43c5a2228b669519393b167a63df1bafe334c577cf9d50f7929f105339493c6fe910cb4f6cf2a2e1b83b6ddcbed6c77173720914f3a6a093801c2
|
| SSDeep | 6:jt2clFsDuwZH1j0IQHjo5xrvny1R3KbQO0c+EkjAuBn2nK4sKm3ZX5d8ZX5WOcqB:jZfsVVj0ingkbQpc++e2qZz8ZAqZ7
|
| TLSH | 79E0AB00B91442B8CAD2B420C381BAB0CA77C64C33381201336FCB0FF20862B547D3A6
|
File Structure
Artefacts
|
Name0 | Value |
|---|---|
| Deobfuscated PowerShell | ". "C:\Users\Admin\AppData\LocalLow\LocalLow Windows\Program Rules\Program Rules NVIDEO\Program Rules\Program Rules NVIDEO\skywz.ps1" """ exit -propertytype string -force ; exit |
3d7df620bad89f7ecd3a8aa2766370b6 (418 B)
File Structure
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| Deobfuscated PowerShell | ". "C:\Users\Admin\AppData\LocalLow\LocalLow Windows\Program Rules\Program Rules NVIDEO\Program Rules\Program Rules NVIDEO\skywz.ps1" """ exit -propertytype string -force ; exit Malicious |
3d7df620bad89f7ecd3a8aa2766370b6 > [PowerShell Command] |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.