politicadefirmav2[.]pdf

Sharing

Copy URL

Twitter E-mail

General

Target

politicadefirmav2.pdf
Size

1.2MB
MD5

f627d990596a8f108320e8b18988f922
SHA1

b1b704090eeffb2fe6dce701089caf9a4061b45b
SHA256

74ca0cbed706e5a233818a34b48b1241e5490439d49df48e7c1a715eb9a8af46
SHA512

65c8f0d59f671909f68fa3721b1f2401a2db39f24677f7c9c514c27a2ae5a8083bcd11b6ee98899093a97e51aeed7002a4c8fd842e9d54c702cb3a87c713d979
SSDEEP

24576:H+8scFzeYZCY/YHQrveI0iFEKRSwnhQEchGvvmziaYF3:dPl3awVSziaYl

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

pdf link

resource	yara_rule
sample	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

politicadefirmav2.pdf
.pdf
- https://facturaelectronica.dian.gov.co/politicadefirma/v2/politicadefirmav2.pdf
- http://www.w3.org/2000/09/xmldsig#sha1
- http://www.w3.org/2001/04/xmlenc#sha512
- https://es.wikipedia.org/wiki/SHA-2
- http://www.w3.org/TR/xmldsig-core2/#sec-Algorithms
- http://www.w3.org/2000/09/xmldsig#rsa-sha1
- http://www.w3.org/2001/04/xmldsig-more#rsa-sha256
- http://www.w3.org/2001/04/xmldsig-more#rsa-sha384
- http://www.w3.org/2001/04/xmldsig-more#rsa-sha512
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315
- http://www.w3.org/2000/09/xmldsig#enveloped-signature
- http://uri.etsi.org/01903#SignedProperties
- https://facturaelectronica.dian.gov.co/politicadefirma/v2/politicadefirmav2.pdfen-US
- http://www.w3.org/2000/09/xmldsig#sha1en-US
- http://www.sic.gov.co/hora-legal-colombiana
- http://www.dian.gov.co/contratos/facturaelectronica/v1
- http://www.dian.gov.co/contratos/facturaelectronica/v1/Structures
- http://www.w3.org/2001/XMLSchema-instance
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#SoftwareMakerID
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#sofwareID
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#SofwareSecurityCode
- http://www.w3.org/2000/09/xmldsig#
- http://uri.etsi.org/01903/v1.3.2#
- http://uri.etsi.org/01903/v1.4.1#
- http://www.facturae.es/politica_de_firma_formato_facturae/politica_de_firma_formato_facturae_v3_1.pdf
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#xsdFile
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#profileList
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#InvoiceTypeCodeList
- http://www.dian.gov.co/contratos/facturaelectronica/v1/anexo_v1_0.html#tipoDocIdentidad
- http://onac.org.co/anexos/documentos/TRANSICIRCULARES/2016circulares/circular03-2016.pdf
- http://www.w3.org/2000/09/xmldsig#rsa-sha1,
- http://www.w3.org/2001/04/xmlenc#sha256
- http://www.w3.org/2001/04/xmldsig-more#sha384
- http://www.w3.org/2000/09/xmldsig#sha1,
- http://andesscd.com.co
- http://empresaparapruebas.com
- http://ocsp.andesscd.com.co
- http://www.andesscd.com.co/docs/DPC_AndesSCD_V2.2.pdf
- http://www.andesscd.com.co/includes/getCert.php?crl=1
- Show all