Windows Analysis Report
0wQAKXU1Qj.lnk

Overview

General Information

Sample name: 0wQAKXU1Qj.lnk
renamed because original name is a hash value
Original sample name: 34cf21083fdb0d85a6cd4a3291b356d1.lnk
Analysis ID: 1527269
MD5: 34cf21083fdb0d85a6cd4a3291b356d1
SHA1: 4b09b86eebe56ca114e1a44723940a14485a99df
SHA256: a3631238cc42d9937f0ea4a3422bc65ab38d063616f754798e01a4abfa434981
Tags: lnkuser-abuse_ch
Errors
  • No process behavior to analyse as no analysis process or sample was found

Detection

Score: 48
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Multi AV Scanner detection for submitted file

Classification

AV Detection
barindex
Multi AV Scanner detection for submitted file
Source: 0wQAKXU1Qj.lnk ReversingLabs: Detection: 18%
Source: classification engine Classification label: mal48.winLNK@0/0@0/0
Source: 0wQAKXU1Qj.lnk ReversingLabs: Detection: 18%
Source: 0wQAKXU1Qj.lnk LNK file: ..\..\..\..\Windows\System32\conhost.exe
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1527269 Sample: 0wQAKXU1Qj.lnk Startdate: 06/10/2024 Architecture: WINDOWS Score: 48 5 Multi AV Scanner detection for submitted file 2->5
No contacted IP infos