ScreenShot
| Created | 2024.07.29 16:51 | Machine | s1_win7_x6403_us |
| Filename | Monetary_Funding_Sheet_2024.js | ||
| Type | ASCII text, with very long lines, with no line terminators | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 19 detected (GenericKD, Kryptik, jsggck, TOPIS, HtiyJ0HQfSP, Detected, ai score=83, Wacatac, HBPPU0, Ddhl, Javascript) | ||
| md5 | 71b47c3b941616d457f0edc4234a91a0 | ||
| sha256 | 35fe092e603725bfbc916c503e2cd94c84f907a7f1b4a8d16d3dc46aa41eab73 | ||
| ssdeep | 3072:a1ypfxlBitFQeQW8mXec2/JdjHKj2fn+Aq22Dp//fAeP76T/rmIKj8:a1ypfxGtFQGOc2/LOon+AKp//dIM8 | ||
| imphash | |||
| impfuzzy | |||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| watch | File has been identified by 19 AntiVirus engines on VirusTotal as malicious |
| watch | Network communications indicative of a potential document or script payload download was initiated by the process wscript.exe |
| watch | Wscript.exe initiated network communications indicative of a script based payload download |
| watch | wscript.exe-based dropper (JScript |
Rules (0cnts)
| Level | Name | Description | Collection |
|---|
