Report - b.jpg.vbs

Hide_EXE

ScreenShot

Info
Location map


Created	2023.07.13 11:19	Machine	s1_win7_x6401
Filename	b.jpg.vbs
Type	ASCII text, with very long lines, with CRLF line terminators
AI Score	Not founds	Behavior Score	0.8
ZERO API	file : mailcious
VT API (file)	11 detected (Save, PowerShell, Runner, Kryptik, Umhl, GenericKD, Casdet, Z3IBSD, TOPIS, zyVglk3iKlG)
md5	92589da336f8a80a34a764cb763c7e01
sha256	4060c26b29e027bae9a3932df65e21d619d235fe6988bef53fe22ce5d2926513
ssdeep	3072:0lpNVyYnJt0WOUkX6U1O315T3Apmf+QIQJ:IpmYnz03Uk2315T3Apmf+QIA
imphash
impfuzzy

Network IP location

Signature (2cnts)

Level	Description
watch	File has been identified by 11 AntiVirus engines on VirusTotal as malicious
info	One or more processes crashed

Rules (1cnts)

Level	Name	Description	Collection
warning	hide_executable_file	Hide executable file	binaries (upload)

Network (0cnts) ?

Request	CC	ASN Co	IP4	Rule ?	ZERO ?

Suricata ids

Similarity measure (PE file only) - Checking for service failure