Overview

overview

4

Static

static

4

TC of Purc...v4.pdf

windows7_x64

1

TC of Purc...v4.pdf

windows10-2004_x64

1

Wabtec Ven...D).doc

windows7_x64

4

Wabtec Ven...D).doc

windows10-2004_x64

1

WabtecPO.pdf

windows7_x64

1

WabtecPO.pdf

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7397d7397b584c12a93078a826191c3f

  • Size

    311KB

  • MD5

    7397d7397b584c12a93078a826191c3f

  • SHA1

    8859ab521c1f0009595ebe1692696f83fc637bf4

  • SHA256

    0aef645502278865098799d78f40f6277121900cc1cd735739b737645d39a200

  • SHA512

    5599b4eab901b6c6c47da01d14eb5aa22deb60e6eadf247e910608b7c1891f1235add9cecdb79b47fd077a3a26a47344b06d6edda5eba86d545f4dd83c49b844

  • SSDEEP

    6144:Oyj7HWFCOrjgWXivJbmyTAPIJEHZ83TVS0wLQk/mWVdvbjkNzc:Oyj72FCqjSRAwTAHL/mcdvsNzc

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • 7397d7397b584c12a93078a826191c3f
    .eml
  • TC of Purchase North America v4.pdf
    .pdf

    • https://www.wabtec.com/uploads/FederalFundingTerms.pdf

  • Wabtec Vendor letter instructions for routing (00D).doc
    .doc windows office2003
  • WabtecPO.pdf
    .pdf
  • email-html-2.txt
    .html
  • email-plain-1.txt