General

  • Target

    RV Sírvase comparecer.rar

  • Size

    73KB

  • MD5

    3f8e2353764aecbffbc7ba2adb092b85

  • SHA1

    cd3455a02cf6cf687feb6475585b8ee799b9f719

  • SHA256

    0f56ab2b46c69698443fb8c855ba0cae4d79e5bbcf63887b67eaeef9e97461dc

  • SHA512

    7d3bf51f61bb40f372ad692da329d20a716377797d4bd14c8a6901398c3ca9a4c29febc4886fbb30359a9600ce913f979fac0ee2059dbf5643cb920263a3b394

  • SSDEEP

    1536:pAzi5ODyLNCZ9m55xirT8m9FDtj1wphGgBFx3T0ECLEwu8EnfNq:mm8DmruT99FDtjU0gzvFVq

Score
4/10

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

Files

  • RV Sírvase comparecer.rar
    .rar

    Password: AIN2023

  • RV Sírvase comparecer.msg
    .msg
    • http://SRV087.ain.gub.uy

    • http://ain.gub.uy

    • http://aurainnayaab.com

    • http://correo.ain.gub.uy

    • http://fiscalia.gov

    • http://fiscalia.gov.co

    • https://gtly.to/FMhXAp6cm

    • https://www.fiscalia.gov.co/colombia//cd2451a691901c6a5420/Citaci_n_73295.R22

    • http://server.ubenx.com

  • Citacion73295R22cd2451a691901c6a5420.pdf
    .pdf

    Password: AIN2023

    • https://gtly.to/FMhXAp6cm

    • https://www.fiscalia.gov.co/colombia//cd2451a691901c6a5420/Citaci_n_73295.R22

  • ~WRD2801.jpg
    .jpg