Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: d7b91d0379da8dbba90e4dcc64a89ad2 --

Hashes
MD5: d7b91d0379da8dbba90e4dcc64a89ad2
SHA1: d101f1b8a4905a7e7d417c5c584d1427cdccccd1
SHA256: aecdce91c1352ac80ec0a8bcb6f0b7125423a3c71d23c2110909a566573cb17e
SSDEEP: 12:4Zh3McpfJqxjcD0Fr9+OumqJmr5t7fJqxjcD0Fr9+Od23JA7Fz4AEdeRmral0wcO:YxM2fJqxd9+O+4t7fJqxd9+OiARNEIvb
Details
File Type: HTML
Yara Hits
Source
http://up-loads.ml/x/crypt1.exe
Strings
		<html> 
  <head>
    <title>up-loads.ml</title>
    <meta http-equiv="refresh" content="1; URL=http://domain.dot.tk/p/?d=UP-LOADS.ML&i=173.254.233.139&c=1&ro=0&ref=unknown&_=1550002810112"/>
    <script type="text/javascript">
    <!--
      function redir(){ var $fwd = 'http://domain.dot.tk/p/?d=UP-LOADS.ML&i=173.254.233.139&c=1&ro=0&ref=unknown&_=1550002810112'; if(window.parent){ window.parent.location=$fwd; }else{ window.location=$fwd; }}
    //-->
    </script>
  </head>
  <body onload="redir()">
    <script language="text/javascript">
    <!--
      window.setTimeout('redir();', 50 * 1);
    //-->
    </script>
  </body>
</html>