General
-
Target
d2162c0563c082040f600e5e811a0291.zip
-
Size
454KB
-
MD5
07aea404277ed99ad24b6f00dde7dec3
-
SHA1
417aa4da5167d2f26cedfd67cbf752ea0da24c7a
-
SHA256
2f90038e9bc392500fb6a4bceeab9e579a79fd39a71f759167bef2a17c0b68b8
-
SHA512
b0ee766d97dc86a7ff75a1d7a8bf7624b0ae9a7ead2ca30fa40ef5d406422b8d16c5a3cccb30da49bdd96fb866d293810397da8cea4099cd8f63a2798b3fe9c6
-
SSDEEP
12288:n00tP7zTm1VKhCmdbtyP0CVx7XCHt0V0SSv/Ry:001Q+rQVRXCH20Ry
Score
4/10
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
d2162c0563c082040f600e5e811a0291.zip
Password: infected
-
Sponsorship-opptys_NYNC_2.11.22.pdf
Password: infected
-
http://www.ccevent.site/event
-
http://www.ccevent.site/platinum
-
http://northwell.edu
-
http://belowwww.ccevent.site/eventScan
-
http://belowwww.ccevent.site/platinum
-