General
-
Target
MetaLauncher (2).zip
-
Size
5.2MB
-
MD5
283979dc33c411a9e75ec5d4c0214bf1
-
SHA1
cb906b94d0c45c04f71218eba46190081dd8942e
-
SHA256
2485977c38ae2c0eb6bf21bf2170725924aa749e6c397f7230de7d6cf2d83287
-
SHA512
ed517f094ca9cbb6d43cad69cdfd0a150a53f91b1d10565212b7054c136c13d69d962fd95fa4c8569d611a65065f1e8009c53f0d83e0a78b6a051adb0ec2c8f3
-
SSDEEP
98304:Of+81uWPOhRYkZW0eh7/P5BfOkbcuKjSSvatI:Ofv1uWPI8Z7BkS2atI
Score
3/10
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
MetaLauncher (2).zip
Password: 18881
-
About/About.pdf
Password: 18881
-
http://documents.ar
-
http://ar-SA.ar
-
http://ar-AE.ar
-
http://drivedubai.ae
-
-
About/Windows.Data.TimeZones/Windows.Data.TimeZones.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.ar-SA.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.bg-BG.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.cs-CZ.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.da-DK.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.de-DE.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.el-GR.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.en-GB.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.en-US.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.es-ES.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.et-EE.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.fi-FI.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.fr-FR.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.he-IL.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.hr-HR.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.hu-HU.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.it-IT.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.ja-JP.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.ko-KR.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.lt-LT.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.lv-LV.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.nb-NO.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.nl-NL.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.pl-PL.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.pt-BR.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.pt-PT.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.ro-RO.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.ru-RU.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.sk-SK.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.sl-SI.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.sr-Latn-RS.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.sv-SE.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.th-TH.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.tr-TR.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.uk-UA.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.zh-CN.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.zh-HK.pri
-
About/Windows.Data.TimeZones/pris/Windows.Data.TimeZones.zh-TW.pri
-
MetaLauncher.exe
Password: 18881
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections