General
-
Target
9e108549627ab274d3af492004b4ca19374fcc2b770bd45c55612f3385351746
-
Size
334KB
-
MD5
0f4cd9e8111d4eeda89dbe2ce08f6573
-
SHA1
8871ef1da741a5391d84128608e0297cc2a6aaff
-
SHA256
9e108549627ab274d3af492004b4ca19374fcc2b770bd45c55612f3385351746
-
SHA512
0c559f04d03c51745b5d5c5a35a1286499882b041ac29781615822c5ccba7c96cc838e2f33f0bdf082016cbeffbbf4d80bcc251a4be6c548b80fd85230389056
-
SSDEEP
6144:b1pikHuEsh8Pn+mxXtIkGFFceq2KH96d1v+YAOA1z1GJSjUeAirtft8kSRuNjX2j:b1piHEj+MXt4vvq2pd1v+FDd1GJSjGkc
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
9e108549627ab274d3af492004b4ca19374fcc2b770bd45c55612f3385351746
-
https://we.tl/t-39SvbwCY2E
-
https://we.tl/t-1yLti4IfaN
-
https://jtcqatar-my.sharepoint.com/:f:/g/personal/romy_delavina_jtc-qa_com/EnHcou7_1HFIvjYwJtIOcGsBpC50mSv_4T8zXnajb8dO4w?e=HBcv7N
-
https://we.tl/t-39SvbwCY2Een-GB
-
https://we.tl/t-1yLti4IfaNen-GB
-
http://tuta.io
-