Overview

overview

1

Static

static

1

sess/block.ps1

windows7-x64

1

sess/block.ps1

windows10-2004-x64

1

sess/log/index.ps1

windows7-x64

1

sess/log/index.ps1

windows10-2004-x64

1

index.ps1

windows7-x64

1

index.ps1

windows10-2004-x64

1

sess/s/Goo...min.js

windows7-x64

1

sess/s/Goo...min.js

windows10-2004-x64

1

sess/s/Goo...min.js

windows7-x64

1

sess/s/Goo...min.js

windows10-2004-x64

1

sess/s/Spr...ord.js

windows7-x64

1

sess/s/Spr...ord.js

windows10-2004-x64

1

sess/s/Spr...eld.js

windows7-x64

1

sess/s/Spr...eld.js

windows10-2004-x64

1

sess/s/block.ps1

windows7-x64

1

sess/s/block.ps1

windows10-2004-x64

1

sess/s/geo...ass.js

windows7-x64

1

sess/s/geo...ass.js

windows10-2004-x64

1

sess/s/index.js

windows7-x64

1

sess/s/index.js

windows10-2004-x64

1

sess/s/ss.ps1

windows7-x64

1

sess/s/ss.ps1

windows10-2004-x64

1

sess/s/ver...ion.js

windows7-x64

1

sess/s/ver...ion.js

windows10-2004-x64

1

sess/wso-nbl.js

windows7-x64

1

sess/wso-nbl.js

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    23a4dbb909539e4c083b5762598d13d6a0e1678ee605ed4dc257b1c1a14f4465.zip.zip

  • Size

    646KB

  • MD5

    619df9e104518c7e92d42062b113dd8e

  • SHA1

    73d313534240bb86426adb075f07d0c94e61cc31

  • SHA256

    82cbd8154a02c5d568a7bfeb2721d934ca33e6873c12ede5c7c312ece86d57d5

  • SHA512

    eeab55078547efe54fae4a9759e044f958c32732b57077e80e15f4cf42d97e3c4fff24f40f08719a440041432253e078b955edd21cd87d9b686269bdfc9e2d9a

  • SSDEEP

    12288:w1ojCjcDoOuwEtoOnuDwWtEzUM0HBz0rVgK/B6eTFagNf0nN0ZEVjRfQk:wO07nuDfET0HFbK/B62uS2j

Score
1/10

Malware Config

Signatures

Files

  • 23a4dbb909539e4c083b5762598d13d6a0e1678ee605ed4dc257b1c1a14f4465.zip.zip
    .zip

    Password: infected

  • 23a4dbb909539e4c083b5762598d13d6a0e1678ee605ed4dc257b1c1a14f4465.zip
    .zip
  • sess/block.php
    .ps1
  • sess/index.php
  • sess/log/browser.php
  • sess/log/index.php
    .ps1
  • sess/log/log.php
  • sess/log/log.zip
    .zip
  • browser.php
  • index.php
    .ps1
  • log.php
  • os.php
  • sess/log/logs.txt
  • sess/log/os.php
  • sess/log/xml.php
  • sess/robots.txt
  • sess/s/Google_docs_files/DXI1ORHCpsQm3Vp6mXoaTXhCUOGz7vYGh680lGh-uXM.woff
  • sess/s/Google_docs_files/Google Docs.png
    .png
  • sess/s/Google_docs_files/Thumbs.db
  • sess/s/Google_docs_files/_notes/dwsync.xml
    .xml
  • sess/s/Google_docs_files/aol.png
    .png
  • sess/s/Google_docs_files/avatar_2x.png
    .png
  • sess/s/Google_docs_files/cJZKeOuBrn4kERxqtaUH3T8E0i7KZn-EPnyo3HZu7kw.woff
  • sess/s/Google_docs_files/checkmark.png
    .png
  • sess/s/Google_docs_files/docs-icon.png
    .png
  • sess/s/Google_docs_files/email.png
    .png
  • sess/s/Google_docs_files/favicon.ico
    .png
  • sess/s/Google_docs_files/google.png
    .png
  • sess/s/Google_docs_files/googledocs.jpg
    .jpg
  • sess/s/Google_docs_files/jquery.ddslick.min.js
    .js
  • sess/s/Google_docs_files/jquery.min.js
    .js
  • sess/s/Google_docs_files/live_hotmail.png
    .png
  • sess/s/Google_docs_files/logo_2x.png
    .png
  • sess/s/Google_docs_files/logo_strip.png
    .png
  • sess/s/Google_docs_files/logo_strip_2x.png
    .png
  • sess/s/Google_docs_files/mail_gmail.png
    .png
  • sess/s/Google_docs_files/universal_language_settings-21.png
    .png
  • sess/s/Google_docs_files/x_8px.png
    .png
  • sess/s/Google_docs_files/yahoo.png
    .png
  • sess/s/SpryAssets/SpryValidationPassword.css
  • sess/s/SpryAssets/SpryValidationPassword.js
    .js
  • sess/s/SpryAssets/SpryValidationTextField.css
  • sess/s/SpryAssets/SpryValidationTextField.js
    .js
  • sess/s/block.php
    .ps1
  • sess/s/favicon.ico
    .png
  • sess/s/geoplugin.class.php
    .js
  • sess/s/index.php
    .js
  • sess/s/robots.txt
  • sess/s/ss.php
    .ps1
  • sess/s/verification.php
    .js
  • sess/wso-nbl.php
    .js