Overview

overview

4

Static

static

4

6ffed638e1...f4.pdf

windows7-x64

1

6ffed638e1...f4.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    10505494876.zip

  • Size

    63KB

  • MD5

    1c2bcd8bb8ff4a8428e0b90d43db02a4

  • SHA1

    88adb106fccd66735b31710d44e6f4e70542e9dd

  • SHA256

    dc5713a7793946a79913dfa84deb1e34f150699b2a85001a479881ebde8b8a85

  • SHA512

    cf8966444bcdd373f8e38650778f31afc7bf36933e92c18c3fce801f574332a6cf6fd4aa2083a94dfde4ca09631efdfe40523f095bdb216bfc72c2c2443cca45

  • SSDEEP

    1536:xKOpxNX/IuE1/e4InCupHmbtJsAb9upO6GSGSTxLzfLcXz1UNl:xKOpxNJE1/XYpGb08WHRFTxLzfS1UNl

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • 10505494876.zip
    .zip

    Password: infected

  • 6ffed638e1800412bf8eb9c8addda81c56a1e9076710c113e83e66e18c30ecf4
    .pdf

    • https://gtly.to/gy3ga460X

    • http://www.dian.gov.co/

    • http://www.dian.gov.co

    • http://muisca.dian.gov.co/WebSolicitudesexternas/DefMenuSolicitudNS.faces