ScreenShot
| Created | 2024.09.27 13:57 | Machine | s1_win7_x6401 |
| Filename | cabbage.lnk | ||
| Type | MS Windows shortcut, Item id list present, Has Relative path, ctime=Sun Dec 31 15:32:08 1600, mtime=Sun Dec 31 15:32:08 1600, atime=Sun Dec 31 15:32:08 1600, length=0, window=hide | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | fce2c10e8b773dd027f5b909026a4fbd | ||
| sha256 | 6473e829358b01099be5b01a16efcdc8ef26f04b5b065a4e2bfed1f3963e5b70 | ||
| ssdeep | 12:8gl0SsXoc7HyRwc/nR/iagJN1mZ7+lbYtrl918:8pWsaYoabAr | ||
| imphash | |||
| impfuzzy | |||
Network IP location
Signature (3cnts)
| Level | Description |
|---|---|
| notice | Creates a shortcut to an executable file |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| info | Command line console output was observed |
Rules (2cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| info | lnk_file_format | Microsoft Windows Shortcut File Format | binaries (upload) |
| info | Lnk_Format_Zero | LNK Format | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|