General
-
Target
4f2706bad6a05c9cdd2540149bff931f39721d5ed60c8ef6695a3e216f3e75b8
-
Size
268KB
-
MD5
6a6adc238f22333a79d378d631684384
-
SHA1
cfb8863b303f3e69f58a238477dc12cf2f22b7d8
-
SHA256
4f2706bad6a05c9cdd2540149bff931f39721d5ed60c8ef6695a3e216f3e75b8
-
SHA512
e6a06c7d9ae1f5aec527ff81c95923f8b746238975fd8f93cb1688b47ebccdab5244ed907c52a29070002436eb2fd50e2be84d065b686e5d22d9a06584bccaf3
-
SSDEEP
3072:ZX7QAI2GwHBDqfK40F0JBBdDGLAAI2GwHBDq2K40F0JBBdD3LAT/PgcIKn9cgm:uEHkfMmRd4XHk2MmRdHUb+gm
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
4f2706bad6a05c9cdd2540149bff931f39721d5ed60c8ef6695a3e216f3e75b8
-
http://www.security-assessment.com/files/presentations/liverani_freeman_abusing_firefox_extensions_defcon17.pdf
-
https://addons.mozilla.org/en-US/firefox/addon/2207
-
http://malerisch.net/
-
http://www.security-assessment.com/
-
http://Security-Assessment.com
-
http://www.security-assessment.com
-
http://security-assessment.com
-
http://en-NZSecurity-Assessment.com
-
http://win.com
- Show all
-