Malicious
General
Structural Analysis
Config.0
Yara Rules62
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 806d988c2f992c1d8aa3fb372518adaa
|
| Sha1 | bc67d8a503dd72f53535eff33a94dba77201169e
|
| Sha256 | aafbab484419f163b06d00ae86e07c6769d1fe12c5e10b3af313bfb67a0802dc
|
| Sha384 | e8e998e11a135041aeee514115af94792ed3c8bf03737cd4f6a4d651e3157c4beaead7d5bc07d6857e7e38590a4a5470
|
| Sha512 | 094e5a8bb163080d388ce8bca24bf226b17fe1e105f8c531720446f4eccfd3fe12e6eaaada314a2157619c933ca17a0457e46d701d9e62f90b8ef28fec84bf69
|
| SSDeep | 192:voQKPXpL6S6a8A+lL0cVmA+3aG40+unf4s5fiid4yG4pxGXO6l:voQAN61lfIj+uQshXlG+6l
|
| TLSH | DEF1AE32CB8A631ED191124F53ADB7D49E21E5CE3C337D056A9C4C2BCAB27836669D03
|
File Structure
55d2f245a0b7975884b7e5bbf284bcb72cc1514a726eb6988a1ca1e1e429cfb4.zip
Zip Archive
WSF File
VBScript
T1059.005
WScript.Shell
VBScript.RegExp
DeObfuscated
Obfuscated
Malicious
55d2f245a0b7975884b7e5bbf284bcb72cc1514a726eb6988a1ca1e1e429cfb4.wsf
Archive Entry
WSF File
VBScript
T1059.005
WScript.Shell
VBScript.RegExp
DeObfuscated
Obfuscated
Malicious
[Job Id=Objektiverendes Name=No Name]
Malicious
[VBScript] #0
VBScript
T1059.005
WScript.Shell
VBScript.RegExp
DeObfuscated
Obfuscated
Malicious
[VBScript] #0.deobfuscated.vbs
DeObfuscated
VBScript
T1059.005
Malicious
55d2f245a0b7975884b7e5bbf284bcb72cc1514a726eb6988a1ca1e1e429cfb4.zip (8.08 KB)
File Structure
55d2f245a0b7975884b7e5bbf284bcb72cc1514a726eb6988a1ca1e1e429cfb4.zip
Zip Archive
WSF File
VBScript
T1059.005
WScript.Shell
VBScript.RegExp
DeObfuscated
Obfuscated
Malicious
55d2f245a0b7975884b7e5bbf284bcb72cc1514a726eb6988a1ca1e1e429cfb4.wsf
Archive Entry
WSF File
VBScript
T1059.005
WScript.Shell
VBScript.RegExp
DeObfuscated
Obfuscated
Malicious
[Job Id=Objektiverendes Name=No Name]
Malicious
[VBScript] #0
VBScript
T1059.005
WScript.Shell
VBScript.RegExp
DeObfuscated
Obfuscated
Malicious
[VBScript] #0.deobfuscated.vbs
DeObfuscated
VBScript
T1059.005
Malicious
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.