Malicious
Malicious

a696e0de07ecc7887f55a6b9c66b45ff

PowerShell
|
MD5: a696e0de07ecc7887f55a6b9c66b45ff
|
Size: 418 B
|
application/x-powershell

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
a696e0de07ecc7887f55a6b9c66b45ff
Sha1
6796279bfe05dd857d78d781b642d860080716fb
Sha256
7310d39ddfa206b416cd78984de03a3d1f8ebc49a8d12cf2e1b30c9dcd125aa1
Sha384
de14b55d240f7d09f4d8798733a2664810220dd111b3b78de77baa4ad282938c94488381e2702d11c1ebe18629d39a63
Sha512
30bff24d260e559f57cec437583fe8ba7b4df60d1f35b2a8042db1f5662756f52bae7ac14373cd67d6a715c4b6445f565e84c8e00e58a7a2ce089955146c3deb
SSDeep
6:jt2clFsDuwZH1j0IQHjo5kjQrvny1R3KbQO0c+EkjAuBn2nK4sKm3ZX5d8ZX5OMZ:jZfsVVj02ngkbQpc++e2qZz8ZJjV7
TLSH
19E0AB00BA5456B8CAD2A4208385BAB0CA77C25C33390201336FCB0FF20861B407D3B6
File Structure
a696e0de07ecc7887f55a6b9c66b45ff
Malicious
[PowerShell Command]
Malicious
[Deobfuscated PS]
Malicious
Artefacts
Name
 Value
Deobfuscated PowerShell

". "C:\Users\Admin\AppData\LocalLow\LocalLow Windows\Program Rules\Program Rules NVIDEO\Program Rules\Program Rules NVIDEO\kirtf.ps1" """ exit -propertytype string -force ; exit
a696e0de07ecc7887f55a6b9c66b45ff (418 B)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙