General
Structural Analysis
Config.0
Yara Rules7
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | b73d8db360a729d215c12509a8ab1800
|
| Sha1 | 20aa56ee60d798b6dccabdc3fe2f58313e27238b
|
| Sha256 | b6928d89c300d9d317a8ea884f382acba1af0237d93ae4d88d9821c780b41a0f
|
| Sha384 | ad79a89bebe5de7cc877e630e2a6f87ab90cb52ec3a489d8a2fd5c522c7a8bb16790bdca4fb5835a91e7704603fe7b3b
|
| Sha512 | 2d79e865d7be01d176f922ed9e6a24ead2133f643fb4d671cf45ddc4f765598898cb19fc505f7e4c72b8d1c3a2b37ffc563ef1d3ee28aef6f688e89723558cdc
|
| SSDeep | 24:9LPhC3H7jMbn5SKUv2wQhJV1olzaKJBca/wvY4j5vx5vew1Uy+CUedG+n740QhIl:986nJ4J3ca/whv+CUaG+n7AY
|
| TLSH | 1B4156DAFC0651585B7102D3A42A545EDF39553F4A621030F998CCAE4F212B963FC1E7
|
File Structure
b73d8db360a729d215c12509a8ab1800
Malicious
Artefacts
|
Name0 | Value |
|---|---|
| URLs in VB Code - #1 | https://screencon.site/Bin/ScreenConnect.ClientSetup.msi?e=Access&y=Guest |
| URLs in VB Code - #2 | https://api.telegram.org/bot |
| URLs in VB Code - #3 | https://api.telegram.org/bot8414449796:AAHB9UExgRE6QegO90Fqdbn7siZ3DPjJQAI/sendMessage?chat_id=7986841610&text= |
b73d8db360a729d215c12509a8ab1800 (2.02 KB)
File Structure
b73d8db360a729d215c12509a8ab1800
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| URLs in VB Code - #1 | https://screencon.site/Bin/ScreenConnect.ClientSetup.msi?e=Access&y=Guest |
b73d8db360a729d215c12509a8ab1800 |
| URLs in VB Code - #2 | https://api.telegram.org/bot |
b73d8db360a729d215c12509a8ab1800 |
| URLs in VB Code - #3 | https://api.telegram.org/bot8414449796:AAHB9UExgRE6QegO90Fqdbn7siZ3DPjJQAI/sendMessage?chat_id=7986841610&text= |
b73d8db360a729d215c12509a8ab1800 |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.