Engine | Download Report | Detection | Info |
---|---|---|---|
|
malicious
|
||
|
malicious
Score: 100
|
System: unknown
|
IP | Country | Detection |
---|---|---|
185.140.53.30 | Sweden | |
185.242.105.116 | Latvia |
Name | IP | Detection |
---|---|---|
servr.banif1abused.xyz | 185.140.53.30 |
Name | Detection |
---|---|
http://185.242.105.116/utnl/Attack.jpg | |
http://185.242.105.116/utnl/e-remit.vbs |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\audiodialog.vbs |
ASCII text, with very long lines, with CRLF line terminators | # | |
C:\Users\user\Desktop\~$Invoice Copies.xls |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P7KPGJ6U\Attack[1].jpg |
ASCII text, with very long lines, with no line terminators | # | |
Click to see the 9 hidden entries | |||
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\6950274E.jpg |
PNG image data, 1243 x 610, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Temp\audiodialog.vbs |
ASCII text, with very long lines, with CRLF line terminators | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\4BN1FDK59AO77MBNAJI7.temp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\BT5RB8OQ6PZ41IMDZOBD.temp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\DN1QKZ84TVL7OGNY5AOD.temp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\SGZ30ARGGT08J3R5BBYR.temp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\SXB5WS5ZJ39SNOQUWLT1.temp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\U0EZYYNM10Z6MXJ83PJN.temp |
data | # | |
C:\Users\user\AppData\Roaming\rem\logs.dat |
ASCII text, with CRLF line terminators | # |