General
-
Target
cffa2e23219aa4d4d9f2a9dc0c9ea6e3572afdede730e151d380ea9f9dcd792f
-
Size
203KB
-
MD5
80149a26ee10786d6f7deaf9fb840314
-
SHA1
17a6b980489fa05ad51ebcaa480213e2e9ae73c2
-
SHA256
cffa2e23219aa4d4d9f2a9dc0c9ea6e3572afdede730e151d380ea9f9dcd792f
-
SHA512
330678ae868ea8f5ad696f668b61dd2b5559735068831a9723a8715c6679c0c93ea95079f88f5920e6ba2e8e8999261e2a7541cf4eb0f74785f30c7d3d322b23
-
SSDEEP
6144:T9kskHuEsy8Pn+mxNmOVW8tkS+1XosfX9G0UZhLXk:T9ksHEq+MNmOltve8LhLXk
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
cffa2e23219aa4d4d9f2a9dc0c9ea6e3572afdede730e151d380ea9f9dcd792f
-
https://we.tl/t-XdOjUbrcK8
-
https://we.tl/t-4BnTk2Hwiv
-
https://jtcqatar-my.sharepoint.com/:f:/g/personal/romy_delavina_jtc-qa_com/EnHcou7_1HFIvjYwJtIOcGsBpC50mSv_4T8zXnajb8dO4w?e=HBcv7N
-
https://we.tl/t-XdOjUbrcK8en-GB
-
https://we.tl/t-4BnTk2Hwiven-GB
-
http://tuta.io
-