Behavioral task
behavioral1
Sample
06d21e223a68a6d8771c84255d3175eb.pdf
Resource
win7-en-20211104
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
06d21e223a68a6d8771c84255d3175eb.pdf
Resource
win10-en-20211014
windows10_x64
0 signatures
0 seconds
General
-
Target
06d21e223a68a6d8771c84255d3175eb.zip
-
Size
185KB
-
MD5
51b889042907083586c14209b8aac7a7
-
SHA1
94d4c3191f76f76f0dbbc205a7cd5cdf522643bc
-
SHA256
8f6690984c3c2234a8fa04272e5c0791e7a5796e4565fb2011aba53b5256a721
-
SHA512
2816b22f530f0ce01a84b2d53f9f425e0a7c34717f6849eebd588df1ffe46ac3791c1f77b9f5e822b65cd6f3e0a4a7b2f79864b5a9f57dfb8f169e2700dbf7c1
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
Processes:
resource yara_rule static1/unpack001/06d21e223a68a6d8771c84255d3175eb pdf_with_link_action
Files
-
06d21e223a68a6d8771c84255d3175eb.zip.zip
Password: infected
-
06d21e223a68a6d8771c84255d3175eb.pdf
-
https://fighting40s.com/OpenUpload/files/offi/index.html
-