Covid19-Min-Saude-Comuinicado-STIBY-11-01-21-224.vbs
| Engine | Download Report | Detection | Info |
|---|---|---|---|
|
malicious
|
||
|
malicious
Score: 92
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
|
| IP | Country | Detection |
|---|---|---|
| 108.177.96.128 | United States |  |
| 8.8.8.8 | United States |  |
| Name | Detection |
|---|---|
| http://pki.goog/gsr2/GTS1O1.crt0 | |
| http://crl.pki.goog/gsr2/gsr2.crl0? | |
| http://ocsp.pki.goog/gsr202 | |
| Click to see the 5 hidden entries | |
| https://pki.goog/repository/0 | |
| http://ocsp.pki.goog/gts1o1core0 | |
| http://crl.pki.goog/GTS1O1core.crl0 | |
| http://ocsp.pki.goog/gts1 | |
| http://ocsp.pki.goog/ | |
| Name | File Type | Hashes | Detection |
|---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\P-16-5[1].dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Roaming\0.zip |
Zip archive data, at least v2.0 to extract | # | |
C:\Users\user\AppData\Roaming\64317583203315\wkoyrphebhxonpimm60602927029132.dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
| Click to see the 3 hidden entries | |||
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tgwpxyohqm .lnk |
MS Windows shortcut, Item id list present, Has Relative path, Has Working directory, Has command line arguments, ctime=Sun Dec 31 23:06:32 1600, mtime=Sun Dec 31 23:06:32 1600, atime=Sun Dec 31 23:06:32 1600, length=0, window=hide | # | |
C:\Users\user\AppData\Roaming\phewmqhjwxh.vbs |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\0[1].zip |
Zip archive data, at least v2.0 to extract | # | |
