Overview

overview

4

Static

static

4

Service Ad...23.pdf

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    Quarantined Messages (49).zip

  • Size

    152KB

  • MD5

    e8c5e04b832c4a12a4e285edd2a67a5f

  • SHA1

    d8541a9b7069f53a3b08496ab801725c00433f27

  • SHA256

    cc949a726a599572a20907b75ac61bdef6e57d10398a3392bb3b9f0996f9ec33

  • SHA512

    668ae0b54fbf5b20bca4020b45d417d83c6b2516a427f76ad3c601552286532ad4d3521d86246041e28bd2e04eedd455c70ca9f857ae6c19ae500002261cb5af

  • SSDEEP

    3072:ivYapiyEqR0FKw01nvCwhJ6UDuOyydzURZSp7mN2Iq1wju:qdkhqv5EUawzdpKN/u

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Quarantined Messages (49).zip
    .zip

    Password: infected

  • 9dc257e8-3558-4ca9-b2a0-08db6c3fc8e8/ef00791e-71d1-4c2a-9db4-13949a8abb5b.eml
    .eml

    • http://www.purolator.com/

    • https://www.facebook.com/purolatorinc

    • http://www.twitter.com/PurolatorInc

    • http://www.linkedin.com/company/8948?trk=tyah

  • Service Advisory - June 13, 2023.pdf
    .pdf

    • https://www.purolator.com/en/support/service-alerts-updates

    • https://www.purolator.com/en/shipping/tracker

    • https://www.purolator.com/en/shipping/find-shipping-centre

    • https://www.purolator.com/fr/mises-jour-et-avis-sur-nos-services

    • https://www.purolator.com/fr/expedition/faire-le-suivi-dun-envoi

    • https://www.purolator.com/fr/expedition/trouver-un-centre-dexpedition

  • email-html-2.txt
    .html
  • email-plain-1.txt
  • image001.jpg
    .jpg