IYhAQFCrF1sk.vbs

Status: finished

Submission Time: 2020-09-15 20:47:55 +02:00

Malicious

Trojan

Evader

Ursnif

Comments

Details

Analysis ID:
285943
API (Web) ID:
467056
Analysis Started:

2020-09-15 20:47:56 +02:00
Analysis Finished:

2020-09-15 21:01:10 +02:00
MD5:
88d06f971fb46ed7164bbaeec852cbb2
SHA1:
d8c80137b3ed1168a3a08f15a7bbdd33e5b38fdb
SHA256:
29b80298cbd5f207bedb6bdf997cefe1d99ea64b391e8b465661c498dd06c49c
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
	Full Report Management Report IOC Report	malicious Score: 100	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report

malicious

Score: 28/67

malicious

Score: 13/48

malicious

IPs

IP	Country	Detection
8.208.101.13	Singapore

Domains

Name	IP	Detection
api10.laptok.at	8.208.101.13
cdn.onenote.net	0.0.0.0

URLs

Name	Detection
http://api10.laptok.at/api1/MHNewQWU4TN/oFwdVVblAWldph/Q3aIHM5zo_2Ft0LLIwG0K/XFQjeVBHQWvNmCAB/aR4FiL
http://api10.laptok.at/api1/yohkX3BcoIJOj/gvL9oZTc/921HTS_2B7UaQJI2tWmlQF0/kjJwwEkNT6/pz2jpCOgFRtqcZ09L/mKSRYIvFHA0x/Lkbx1SeuQPe/dunrmMUkDBPObk/LkIYTPZEcI24zfB_2BbH0/BWf6z_2Bs4fRU9Ks/0VEeMWHLxMkkjBb/SQNm_2BQI0QtrF2XEs/EK5H7m9y2/L22W2o0fEjIG7QPSAAdX/O_2FHfGKsS2VhvZRM63/HzKqpVIaNmnNkhvWObi4kQ/19Nwkv3e9qZYr/g_0A_0D5/VEEFEucqCllTfisKJxGDGbe/CFM7rGedzm/iX2h2eKWGQAhpP5kb/vy0fFVVUgvWid/JjmJ
http://api10.laptok.at/api1/s5_2BHurSXZzz/PgTwgMtb/dPOszIW_2FBty1qNU2bR14z/r2Dn1oAtWP/RxNZDKrmdeD7FpyWP/vPsMwngfRxSb/YUlsJixBiCl/EBFT11djPtwQUG/yXtitlQd0Xv3ftuapYQIo/le_2BTxaWWqGzWTl/blGbapWyoAtn9VX/7ZPA681S4hKdwkcz1p/JFxmmoQFy/l3ogSM_2BHSz5rwFiJ_2/F17PYIOFi9FfoT23gJd/l_2Ba3H7CNyl_2BeLJTuyM/ytxj4M_2F1G3r/MHmymzq_/0A_0D8bBZx23GoUIKak6yeS/NejDBvTCFy/TRPB47ewvK3QfeYMe/vH_2FMqe4myj/ov_2FAVu/fOwJL3i
Click to see the 21 hidden entries
http://api10.laptok.at/api1/uqVUG_2BN9jfAO_2FcVdw/ygFH3GlO5WLQz_2B/5KhVmm5h26QMSlL/B5e4y0_2F3CmP1xEzr/cScw7AMxR/c2D3beGVKQSyeAM5x7Hp/Hj899ldQzADV4jrYEaU/Z7QINYNfjtjzbmpfyh0d1y/drobXyDpI2jNC/CuzQL_2B/Ve2M8ljWAdR_2BYNbdMGtu3/vZRj0mQ7Ac/kytZzgwC5vrfKvCwK/C33Ftwg4liFu/cRcyzjnoN7M/mPpr_2Bp5oLZMW/dvHnLp4MTfZhQdJjSv_0A/_0Dkok7fiJT5R9uY/7fypdn4zSg0UIVp/Cix972ymjKNJhwyLZ_/2F_2B6oUe/bYr4605uqYzC/8WNk6
http://api10.laptok.at/api1/Fkd4DPUY1ovb6BbGZMblZ/rSslZFNH74zZovlb/Jo2wugMV6Fg0y8n/6bRCV_2F_2B0N4NpTo/qA6ETFLL2/Qnq1dpnxZpYJf2cXsT8I/tQTyAIrvQQXn7yH6sUA/OdkHtHCoXSSw9ZnWI8t4PH/7Vy_2B_2BED6f/S0aDCzgh/vPK9EIE7YzgsKcQ3m53uFeY/JLrUZwDLlo/4mmnr_2B7yAlIAzOH/hhDNV5i3BOAx/sOT1TL96eb8/bZFja4e68DkX6z/JStAfEMYG1DZbB_0A_0Dr/O89eHQlA9v7_2B9V/tKGGH0wZoALe0e6/rs1wa48IcU5_2BUs12/FuVDQsAnH/aeHRKo_2BKVM/iNp
http://api10.laptok.at/api1/fJ6c2Fa3dA/3CKfLzNor8pqk4Jmg/t6nhaoaQzgIh/iB9KATHxKvZ/TpfZcnDlgVk4zj/7_2
http://api10.laptok.at/api1/nN0_2BeZiAm3pJ/2NdO2sNQQ3yCjAL_2BMbb/1whhYZYBPNFVmI_2/Fhken1SilfZJ8mr/FmDedERFn50ZKI0qfP/YjUgjm84S/cyXy6i3geV7SxqTdgkPt/m9JpI0UGTFgdJR97L7V/I9AyNLFyKWcdJAdN7A_2B_/2BKrMrY_2BTxL/fiQOKnqH/sR5pJhU0U6FiEHV4J6dARBw/csixOb8fvh/E_2FtMFTPegEvbN_2/BjW7CGMiRZ15/GR1M_2FsW6Q/mzTrsWLNoTsJyj/oGKgUtbn_0A_0Dws7Dp8B/ybixm6DhQ9u32m07/iLlFM7OITv7vBD0/NoKxgVZDuOTMFJXs7F/kFjRE64Ft/JKS
http://api10.laptok.at/api1/vpB6SFrd2r1zi/Pa8XSGRT/EoCxEQKkUcgs_2F6Qlc7nXQ/ztKXRXAL2Y/3eUDp8C_2BcfhM
http://api10.laptok.at/api1/Z45zPA2Opq8WIL/_2FlG20hkkX5qgn42kWvu/ZWFVtFnrc67_2BjZ/k0BG4bX0fx1KYgV/kH63JcsD3P0xwq_2BX/f23OMVTt4/y14wZq36Oug_2BwmJaiU/JEw1iWxDCp5Xo013A5h/PliBLnDm0NCJ0c11cX_2Bd/MRleSWh1pSVJT/M97uRbcb/9W4Oe_2Fjg_2FIG2tR_2BG4/MeLfWZo_2B/kABRi0AGK3BoxE9Ga/5lOznJDyT_2F/Tm2S99vbEPY/3aW3lH_2F4Hp_2/FP57HTQ8VLf_2BLR_0A_0/DL8zw9B7PA7N4MLC/SycVV9Tm3vgifvz/uk_2FuKWantVazPMVg/P_2FsGupi/VMmgPSo9hQ4k/EMS
http://api10.laptok.at/api1/sUVWCqj7KUgEKzmg/zJusMkP0zxX6k4N/13wQSxnPRkeQLnzWcu/uPya8SbnP/Qgf7OmsyQXuEhHk53NtV/1TODPRQZw4Eq6kGmZ03/NGWZzbGANLl4tgdkqPAXRG/TX4yHF8KQpbCO/vkrUyHSe/pFpjdrOYhrjtMfD4T_2Fcw_/2FwPEfySvR/EN_2FOFWvgcMGy4ie/38kSnuXG8IYw/xzEoebb5kH1/uYzizSlVUQl3DA/Vw3y046mIPZD4LKF9s6us/ojM7AG1FKL_0A_0D/L4KnYjKzh0k7YLp/JMOUMLf2rSsTfTfZGs/LSQja6Hh4/UGeB8luYBN2rqklbwKch/7tivWN
http://api10.laptok.at/api1/pnyPKrKyWn/YCs_2BdKAk1nNhptr/4REunxu4Qu5G/DvcNG5W4SIQ/AZBtRqDLZmxMiX/XXa
http://api10.laptok.at/api1/Yj_2BtQKkAqsBl4lyD5/Oyal3WWnv3KsyVQSQlLXtL/j1MJHDAacwTd0/WMG1Rl_2/BXWPBVU_2Bfmqpfo3Og5tmy/Wqw_2Bjo_2/FP4ZYJaDBDzh7F3eK/4yDujwST5gzI/qflE7VLrCRD/vCCbJu5oD29uwH/5coI6wMN8h5LPoaF1tpqK/tAOoEfm_2FH2IV0a/T1vuOtI3fHOpKnu/gaZbbVI9_2BIIKoEIs/_2FGEoDfz/OeYD6MHXs57nsWR4N3SU/AXWMua_2Bar4L0a2Q6N/VAZ_0A_0Df2Lai3MsNOotF/804yCEb9uZ81n/NgJpR9PcklG6Z/inorx0xX
http://api10.laptok.at/api1/fJ6c2Fa3dA/3CKfLzNor8pqk4Jmg/t6nhaoaQzgIh/iB9KATHxKvZ/TpfZcnDlgVk4zj/7_2F8pgK_2Btw2bEYC0Pu/Z0q_2BTwj2iuZfEd/2UKb6HcV6mA10yN/9cNNl6oo51ZMuw0QxW/XuFC2V6xR/s29kjyEAyfaPl092fqca/evEoUeuS_2FQKcm6_2B/7S9pT5_2B5qgMHA3BU7cA7/rwOp_2B1R6PtE/tF5v0xu9/uYDeuA44rSmxcYtWj0QVX8V/nfjabypDeJ/r7lbuvEF_0A_0DaTm/qzLY9Z7hvBkE/HH_2FzFwcc6/L6ik_2BRZOkCox/9YTDAEzacnC_2B5e5SrCC/HAfhFGe_/2B60tWg
http://api10.laptok.at/api1/pnyPKrKyWn/YCs_2BdKAk1nNhptr/4REunxu4Qu5G/DvcNG5W4SIQ/AZBtRqDLZmxMiX/XXaKgp_2BwveiKrj1ubfr/2uNFyUYoN_2BiJRR/Ildd_2BkZBoDkif/IOXAG7dk1tu8E_2FGP/qgyAjnD1Z/pBRl4kqJZDyqd2KGrPBu/xGR2L1sSFtHg_2FBktK/IXb8Hd4fbNuq2OloYS1pLY/PY7lbW9OVGb_2/FNm9Ae8O/OV0e501bBeTJCA9USafT_2F/E7u_2FMxK_/2Fz6VWc_2FHnsrVk_/0A_0DLiQ70Am/o5ZOpu55gSG/MLfkzpndFcG2zA/lNu8EPK9BE5s/fH5
http://api10.laptok.at/api1/us2m5mZ_2BL/AjntphCyYzffLl/PJB8r0XZsTPdx4dwRu_2B/7dJq4Ns7GFEkw0XX/9Fx3VKuhGK_2F2e/YeBbDT4KIFjg_2F8i6/AQHVr2MgH/Uscbq8UTMkAqEj4wapH6/SjfAQryGdxhD97JZnD3/_2FaxDyr9J5RL21biWhJPF/U6G_2FdaTFKoW/Yodly0OB/lrvyC_2Bf1mNR_2BXJq0W0Q/GgaX2ea7Ky/GMLBQGM8Gw_2FCJy9/IDSLWjV4GoV1/b4aWv_2FlSx/Qq74fi_2BzGCsw/_2F_0A_0Dda7oB_2BnuFH/N8Wz8ZTEJOzxw81B/W0yhrzIrJCdhtG_/2FvxJqAXzdyg5AYVpj/fxjr5Jpu/bav
http://api10.laptok.at/api1/T6gyfC8mKJMrT_2BJOYUw/pPyXJG84WW4BRuJV/cYDDVfgdDKfi0gW/UtgFnrfi5_2FuCBFIc/e79LvQ72_/2BcI6mIbhc0NcDwn_2BH/7Xstf4s90K9Ko95gwbg/VluZJjlHReL0ltyhjOwnUT/TZs4Z1i7HPhGC/FiA1n06M/qD2CeJAb7WpAkO5aOTlGPOm/8PrRmeRkN7/Whngp0zhjA_2BWkqr/gabe9aav4mFS/LP3DTAttWLF/hoOOpjwD4_2BIu/KAC3b9PGq7HyyaZH_0A_0/DLhYXZfPhf9fc_2F/3qHC3sCINHfdWdP/RHamgk4ellnNNQvwAe/XyST2GdDcmS6o/LixVy1XR/U
http://api10.laptok.at/api1/vpB6SFrd2r1zi/Pa8XSGRT/EoCxEQKkUcgs_2F6Qlc7nXQ/ztKXRXAL2Y/3eUDp8C_2BcfhMelM/ETlLSXbJPV4s/AnRYDNdt7c3/okUDBbmp8EDMHY/HKaSxQrDUBBwpmmhYHzn0/QvyFKTYOflE40cBo/DkKh1_2FhlMcC6L/7fOXL4lAI_2FGBfbDb/HduDMtTOL/_2BhAVYvxUr9gr_2FzM1/9nkZeY3iyQ8txctpsj7/thhkhTfFGLs8AZhUw8UDWN/1AzFLH4pNPSK4/3_2Fp_0A/_0DK1_2F3cZN_2F1Mzyeo3y/KTaLJRmT4O/0zvZXIEogwyXOoYW3/nZy6Unc86cj4/nTcqCFX3vwyP/p
http://www.youtube.com/
http://www.wikipedia.com/
http://www.amazon.com/
http://www.live.com/
http://www.nytimes.com/
http://www.reddit.com/
http://www.twitter.com/

Dropped files

Name	File Type	Hashes
C:\Users\user\AppData\Local\Temp\Kaplan.zip	Zip archive data, at least v2.0 to extract	#
C:\Users\user\AppData\Local\Temp\irritable.docx	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\http_404[1]	HTML document, UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators	#
Click to see the 62 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\info_48[1]	PNG image data, 47 x 48, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\errorPageStrings[2]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\bullet[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\background_gradient[1]	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1x800, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\ErrorPageTemplate[2]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\ErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\info_48[1]	PNG image data, 47 x 48, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\bullet[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\background_gradient[1]	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1x800, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X2GCHJOK\http_404[2]	HTML document, UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\OHV7M0FR\ErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\Ayers.mpg	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Temp\Low\JavaDeployReg.log	ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\adobe.url	MS Windows 95 Internet shortcut text (URL=<https://adobe.com/>), ASCII text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Temp\embedder.mp4	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Temp\impound.aac	ASCII text, with no line terminators	#
C:\Users\user\AppData\Local\Temp\~DF13AA7F6DD01F3DF4.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF21B796AAB807049E.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF2DA4AA8F51329EB3.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF33CE763D0D4F4B60.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF3AC3410430CD164E.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DF4E9A49728C4EAD4C.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFBA1E9F3D928C8B3B.TMP	data	#
C:\Users\user\AppData\Local\Temp\~DFE8580C2B9652D5AD.TMP	data	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\RecoveryStore.{C24EDA0A-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\RecoveryStore.{D082B5AA-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\RecoveryStore.{DE716D29-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\{A820A091-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\{C24EDA0C-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\{D082B5AC-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\{DE716D2B-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-314712940\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\Active\RecoveryStore.{A820A08F-F7CF-11EA-90E2-ECF4BB862DED}.dat	Microsoft Word Document	#
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\ErrorPageTemplate[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\background_gradient[1]	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1x800, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\bullet[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\http_404[1]	HTML document, UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\86B850Z5\info_48[1]	PNG image data, 47 x 48, 8-bit/color RGBA, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\background_gradient[1]	JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1x800, frames 3	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\bullet[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\down[1]	PNG image data, 15 x 15, 8-bit colormap, non-interlaced	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\errorPageStrings[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\httpErrorPagesScripts[1]	UTF-8 Unicode (with BOM) text, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\http_404[1]	HTML document, UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators	#
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\KD8PQN1H\info_48[1]	PNG image data, 47 x 48, 8-bit/color RGBA, non-interlaced	#

IYhAQFCrF1sk.vbs

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

IYhAQFCrF1sk.vbs Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

IYhAQFCrF1sk.vbs