ScreenShot
| Created | 2023.08.11 16:10 | Machine | s1_win7_x6401 |
| Filename | Install Updater (win-stable)-compatibility(mac).lnk | ||
| Type | MS Windows shortcut, Item id list present, Has Description string, Has Relative path, Has command li | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | f1c8a94d79296f81464b3ebd5c84450e | ||
| sha256 | bd57ea615b78f9f5232d8019274b4015aa1527ba5ce50e260a1a669baf05ece0 | ||
| ssdeep | 12:8MFm/3BVSXvk4RnK9hRNSyW+UcZRNSD8Ded6aVcdSrKrxl7DiN37+lbYql4HXTr:8t/ByKne+/lkIyXVqpl7arab/2XT | ||
| imphash | |||
| impfuzzy | |||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| watch | Harvests credentials from local email clients |
| notice | Creates a shortcut to an executable file |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| info | Command line console output was observed |
Rules (2cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| info | Lnk_Format_Zero | LNK Format | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|