Behavioral task
behavioral1
Sample
2f7c6e5fda750265c601817bb9ceb93e.pdf
Resource
win7-en-20211208
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
2f7c6e5fda750265c601817bb9ceb93e.pdf
Resource
win10-en-20211208
windows10_x64
0 signatures
0 seconds
General
-
Target
2f7c6e5fda750265c601817bb9ceb93e.zip
-
Size
267KB
-
MD5
b4baeb4db6ab673ab65e85a10394784e
-
SHA1
be67ee4dd4ca812cc2cccf06d1aaef844f50122d
-
SHA256
12f592c23114f965b36354a65c4dce1fdfb6b2bd56f4e9cce6667f9523125722
-
SHA512
304cd70a1a4ddfe20136f675c9f0ac37ff3364bf045037a6a7f49671b480c435c3e3196718e4aba5ac04c01f38ab8c0a9203b27e5d07835e238e291adc271d67
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
Processes:
resource yara_rule static1/unpack001/2f7c6e5fda750265c601817bb9ceb93e pdf_with_link_action
Files
-
2f7c6e5fda750265c601817bb9ceb93e.zip.zip
Password: infected
-
2f7c6e5fda750265c601817bb9ceb93e.pdf
-
https://openbids-dolgov.com/738347jdsjdf8373484
-
http://www.dol.gov/
-