Overview

overview

5

Static

static

1

AFSHandler.msg

windows7-x64

5

AFSHandler.msg

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AFSHandler.ashx

  • Size

    117KB

  • MD5

    7693eb696ffcb9a0f148c06b85b91d6c

  • SHA1

    ac2aef8b71b06ca6c711fe9c26b3c4d88c976e82

  • SHA256

    38ec6ba398874aa2da5950f591186ae20349d0a1f4306c07eeae29621fb39a44

  • SHA512

    5cf7e50df5365639688757b3727a0b8f84f776ba3e0269b4c414ddac15d7c4ad389cd19d8e69147985c1898f8f7c0697c5304336a1f6bf8f507556ef2281a2d7

  • SSDEEP

    1536:ULwPItNSC6YC+9zwC35jdHKLrDoPFs3g0ttPaRf0mTEY3wdi:AV6Y19zwC35RHorDoPW3g0ttXvdi

Score
1/10

Malware Config

Signatures

Files

  • AFSHandler.ashx
    .msg

    • http://legops.com

    • http://reincorporacion.gov.co

    • http://www.reincorporacion.gov.co

    • https://app.legops.com/apiAlertas/img/logo-signio.png?noresize

    • https://click.pstmrk.it/3/www.reincorporacion.gov.co%2F/R4lh/Wyi3AQ/AQ/f81d765e-12da-40e1-a312-57b99dbc0a71/3/-LqydUVv0g

    • https://click.pstmrk.it/3s/app.legops.com%2Fsignio%2Fes%2Fdocumentos%2FfirmasPtes%2FeyJpdiI6ImZqeHpJNExMYmZvZnVISG5IN1QwWmc9PSIsInZhbHVlIjoiWXJSb3NwTXFvZHFtNlo0TTkvc2VZS0dwVFkwL081bWxZSGdJcThJKzZCdUFhT01HT3hUS2lMN0g4SlZiVDB1WWtYVUJKMUYzVWVWWkdBUkZIZS91QzVYTFZnOXppdzQreUUxUEI3M1hYZS9HRVEyWnQ2KzFEYnFjeVRpdkxLcG10YUtxQVRFbTRYcXBSWXNIQ1FiMnBHVGMwTllrdVA4TVhjVmg2dExxY2k4PSIsIm1hYyI6ImIxMGEzZDZjNWQ5MzQ1YTQ0ODAxZmE0MThmNjlhMTZlOTI1NWNmNTRiZTA2ZDFjZTE0OWUzN2NjNzBjZTcxZDUiLCJ0YWciOiIifQ%3D%3D%3Fexpires%3D1723209267%26signature%3D603578077bc129f5f13af2cee08e56b7bffa7101a2bb442ba3a1defeb0178a7d/R4lh/Wyi3AQ/AQ/f81d765e-12da-40e1-a312-57b99dbc0a71/4/XbfF30K44c

    • https://click.pstmrk.it/3s/drive.google.com%2Fdrive%2Fu%2F0%2Ffolders%2F1AQHmpNDi-ihSYONvXoLVhXyl8j0yd54_/R4lh/Wyi3AQ/AQ/f81d765e-12da-40e1-a312-57b99dbc0a71/2/Q3V9PPCMrz

    • https://click.pstmrk.it/3s/www.reincorporacion.gov.co%2Fes%2Fatencion%2FPaginas%2Fpolitica-de-privacidad.aspx/R4lh/Wyi3AQ/AQ/f81d765e-12da-40e1-a312-57b99dbc0a71/1/3b4y_Wci83

    • https://ea.pstmrk.it/open?m=v3_1.4z_QAAD477D2BNjW1kZu7A.uh9cmXIIAT18nC4CkgxTMTmAzrfIjtqmy2jMc_x12_dF3FdTVSVaFGV0A-KMuX5hkatJYoWJVDTTjKw1dyC4IV1_VbWwckXCRwLHWwCgsMoXSVThLrwjCKROlqQdaM9vIRiZgz1zD-3JkyJA-16UgO3JkGB_AKVL8iy1JIkBSkTHHdbjEDnBPza1evagrFos0P4kKDdSWb2ncea4YIDQacDikdBMnsks6O7pb_sLJPpQTYZqiRCopkFrxYOygy1KsKIioOv6204p71q5LpxGmYc7xWcG--HA6tCdLFKaPlrwqSVTyvz4-pq8ys6dV3aW7jES3h8o9ot1j43omS90GdJdevI1uyQ74JLofSsRWdk5X7OZ5odglpJQc-7LTx2xhk8x8ixOJmJwE1HTiNxQB6st_Uz5ymqIBIFDvdOljaZYs6Z9KzZ8yPv8l8Ytw3pzrsKu8tCO6BGIvUxtfzRr5gJphj6cK0pMuUKu6yR85vC5chF5aYoDli0VoSNE_lwmENZrR0dk3R7l0V7IKE3Olue8a6MpZt3dD3f8VjA937w

    • Show all
  • image001.png
    .png
  • image003.png
    .png