popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

COM.ps1

Formbook Hide_EXE
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6402 June 27, 2023, 7:32 a.m. June 27, 2023, 7:33 a.m.
Size 2.9MB
Type ASCII text, with very long lines, with no line terminators
MD5 52b6d554e3a0a708055b700b763448c0
SHA256 fba47b643703ec34afed20e3cad2eeb2a62697be9f2e957e538075b1f8bfdf58
CRC32 7880899F
ssdeep 49152:kY1wOeTfeinwRg0Yd0YtWdR2++BqkPiblNmBZOqsHtL3rdyW6JKHINYMpnkq/3+O:g
Yara
  • Win_Trojan_Formbook_Zero - Used Formbook
  • hide_executable_file - Hide executable file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

ESET-NOD32 a variant of MSIL/Kryptik.AGQQ