General
-
Target
e8cfb59f6e47f85db1abf8838c6d0a6438818cdcf898696988f80b07fe01baa7
-
Size
4.2MB
-
MD5
9fdac7a75a1cfd51401a4cc971cb472b
-
SHA1
c5a1cd0062bbf485b6b118cbfa8b7f1fe2ab963a
-
SHA256
e8cfb59f6e47f85db1abf8838c6d0a6438818cdcf898696988f80b07fe01baa7
-
SHA512
d55cf067416bddc3ef27020a6a514b44229ae643b1bf8093ae23a148cc9f9c8a61f5ab449ac0c409c617219e33a5ac0c907ed52944168acc720451566d097baa
-
SSDEEP
49152:S5xJaZO2OX6i0WDPFpNpYVkfhvC3H8P6yLkPByAEfhk4/ybPyoB2+6p4eihok5Xr:SHoOX6i0WD9OSo30dkBrEywytBb+i95b
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
e8cfb59f6e47f85db1abf8838c6d0a6438818cdcf898696988f80b07fe01baa7
-
https://gaming.tobii.com/getstarted/
-
https://gaming.tobii.com/getstarted/?bundle=tobii-core&autodownload=true
-
https://www.irisbond.com/en/support-and-training/download/
-
https://www.optitrack.com/support/downloads/developer-tools.html#camera-sdk
-
https://www.microsoft.com/en-us/download/details.aspx?id=27225
-
https://www.microsoft.com/en-us/download/details.aspx?id=27224
-
https://docs.microsoft.com/en-us/previous-versions/office/developer/speech-technologies/hh378377(v=office.14)
-
https://docs.microsoft.com/en-us/previous-versions/windows/desktop/ee431815(v=vs.85)
-
https://github.com/MSREnable/GazeHid/raw/master/EyeGazeIoctl Driver.zip
- Show all
-