Static task
static1
Behavioral task
behavioral1
Sample
_.msi
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
_.msi
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
Behavioral task
behavioral3
Sample
fhoffa-n11163nkd.vbs
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral4
Sample
fhoffa-n11163nkd.vbs
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
fhoffa-n11163nkd.zip.zip
-
Size
8.2MB
-
MD5
857c0c4be8e506a491a85d06cc3f52b8
-
SHA1
a67db996c93f78092a8552eb8ab3ba47607fb255
-
SHA256
7998cca7210729d57d154d5aa5045d8929759766799e8791b38a77867a375282
-
SHA512
ae3c7d24f0c0d392db6b1f91765f1705bc74c29c863d2698265bc35c28be4aca62590362f3cfbb3d37e4786ed177cb6b7c0709cf6c477d34e250dd425b8a83e6
Score
6/10
Malware Config
Signatures
-
JavaScript code in executable 1 IoCs
Processes:
resource yara_rule static1/unpack002/_ js
Files
-
fhoffa-n11163nkd.zip.zip.zip
Password: infected
-
fhoffa-n11163nkd.zip.zip
-
_.msi
-
fhoffa-n11163nkd.vbs.vbs