Behavioral task
behavioral1
Sample
16843833Invoice Staton_INC.pdf
Resource
win7-20220901-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
16843833Invoice Staton_INC.pdf
Resource
win10v2004-20220812-en
6 signatures
150 seconds
General
-
Target
16843833Invoice Staton_INC.zip
-
Size
33KB
-
MD5
3e5ac1df11b71dc02ccf79a62e70fb99
-
SHA1
107bbd78b8f540ab92d01595ff8a57035074c072
-
SHA256
6852301a77e70d49674a0d078f79dca629292552292553a86b72351956d8fdb5
-
SHA512
165d1faf070e74d4abab85ae49b77e5a222bd0af27e72fae9c276e280d52a2381aaf924c5e797125ceca6234508ecde8e4fbd24746be102ca00a25ec39a7756f
-
SSDEEP
768:ptMiEHd/c/1HqO17gOpJVG26NAiP3+QVPWvMD8qiQz:ptMiEHd/c/1HqOtpnG2mfzppwqtz
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
Processes:
resource yara_rule static1/unpack001/16843833Invoice Staton_INC.pdf pdf_with_link_action
Files
-
16843833Invoice Staton_INC.zip.zip
-
16843833Invoice Staton_INC.pdf.pdf
-
https://courire.org/qb_set/index_qb.html
-