General
-
Target
6b973e515e6c2031844ba1f4e4635bb3ae126f7d352ef2135daffd112d30bf2f
-
Size
200KB
-
MD5
3ce6cc6dee4563eb752e55103cdb84d4
-
SHA1
07c0fc91beb28aa895339509f112a738d3231e97
-
SHA256
6b973e515e6c2031844ba1f4e4635bb3ae126f7d352ef2135daffd112d30bf2f
-
SHA512
1d0db3b5658bea57556588f140825e239e84d7be0ee8944ccd775056fc2105a2c57ad51f0268c8b33dc76bf785bf604a5d12a092058fe66c6f71843bab999351
-
SSDEEP
6144:gykokHuEsy8Pn+mxFmiVW8t0aXkqumLXe:pkoHEq+MFmiltRXZxLXe
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
6b973e515e6c2031844ba1f4e4635bb3ae126f7d352ef2135daffd112d30bf2f
-
https://we.tl/t-2L7ajlJSCG
-
https://we.tl/t-ikxwkPtSBi
-
https://jtcqatar-my.sharepoint.com/:f:/g/personal/romy_delavina_jtc-qa_com/EnHcou7_1HFIvjYwJtIOcGsBpC50mSv_4T8zXnajb8dO4w?e=HBcv7N
-
https://we.tl/t-2L7ajlJSCGen-GB
-
https://we.tl/t-ikxwkPtSBien-GB
-
http://tuta.io
-