Overview

overview

10

Static

static

10

4a7f7b1c42...18.ps1

windows7-x64

3

4a7f7b1c42...18.ps1

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    4a7f7b1c42ae7ca60fc0f65958ff46c9_JaffaCakes118

  • Size

    54KB

  • MD5

    4a7f7b1c42ae7ca60fc0f65958ff46c9

  • SHA1

    0c6d6a4c6189867f7bbce2814707bd3d05578a45

  • SHA256

    e9370092f017c015aa5a135df459b2ec6c9815230df5a529017a3cdde3911923

  • SHA512

    fcaf88faad1613cb9562d9982c927816acf67c8be7b4b9f2224b8b243a2d4c2de52c2e98bdfee0a33a0c21c50eb925ba6d5c966a70fe265de6a1417ff36cc28a

  • SSDEEP

    768:R2miy0DhCi6I+Na+27PN7Y22IDDndJfvCNEQUEl61Lvpgmwhs07XR5LM:Rxko1N92bdY22IDDnXfvCNEpENsA5LM

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://legalref.ru/config/id.txt?
exe.dropper

http://legalref.ru/config/logs/scanlogger.php?
exe.dropper

http://legalref.ru/config/putshell.txt?
exe.dropper

http://legalref.ru/config/putpsy.txt?
exe.dropper

http://legalref.ru/config/logs/target.txt
exe.dropper

http://localhost/toolz/phpbot/fxscanbot-id.txt?
exe.dropper

http://localhost/toolz/phpbot/fxscanlogger.php?
exe.dropper

http://localhost/toolz/putshell.txt?
exe.dropper

http://localhost/toolz/putpsy.txt?
exe.dropper

http://localhost/toolz/target.txt

Signatures

Files

  • 4a7f7b1c42ae7ca60fc0f65958ff46c9_JaffaCakes118
    .ps1