General
-
Target
EXT The Galloway Law Group.msg
-
Size
226KB
-
MD5
8e1b397cdf5ac8a0cf10c879be7b2f82
-
SHA1
91ebac8ef8be74861541aca5d9a014a391b53182
-
SHA256
202d13478e1c1d87a3c69138f327df97aa82d7d08e7fe068e4f71900c579e41f
-
SHA512
a8e033d9c512708d885583afdd3e1f604f51987002bf181e009bed670c9c5d58a03e1872d567cdb05c3656f2e08285c217db908aae9694eadf0e578a09b353d7
-
SSDEEP
3072:Pv5fyK4V7KLBFmj1EHWjih9FIBF+Fecq3FI/Ounc5ZzpeaNLms3WeiC:mV7KLDk1yFITFI/tnc5ZzpNNLae
Malware Config
Signatures
Files
-
EXT The Galloway Law Group.msg
-
http://landing.adobe.com/dam/global/images/acrobat-pro-dc.mnemonic.480x468.png
-
http://landing.adobe.com/dam/global/images/acrobat-pro-dc.mnemonic.480x468.png]
-
http://landing.adobe.com/dam/global/images/adobe-logo.420x110.png
-
http://s7d9.scene7.com/is/image/AdobeDemandCreative/?fmt=png&size=240,50&wid=240&textAttr=144,strong&resolution=200&textPs=%7B%5C*%5Ciscolortbl%3B333333%3B%5Cfonttbl%7B%5Cf0%20Adobe%20Clean%20ExtraBold%3B%7D%7D%5Cf0%5Cfs35%5Csl-400%5Cvertalc%5Ckerningoptical%5Ccf1Adobe%20Acrobat
-
http://s7d9.scene7.com/is/image/AdobeDemandCreative/?fmt=png&size=240,50&wid=240&textAttr=144,strong&resolution=200&textPs=%7B%5C*%5Ciscolortbl%3B333333%3B%5Cfonttbl%7B%5Cf0%20Adobe%20Clean%20ExtraBold%3B%7D%7D%5Cf0%5Cfs35%5Csl-400%5Cvertalc%5Ckerningoptical%5Ccf1Adobe%20Acrobat
-
https://postoffice.adobe.com/po-server/link/open?source=eyJhbGciOiJIUzUxMiJ9.eyJ0ZW1wbGF0ZSI6ImNjX2NvbGxhYl9kY3NoYXJpbmdfdmlld19lbWFpbCIsImVtYWlsQWRkcmVzcyI6InBhdW5pdmVyc2FsNzdAZ21haWwuY29tIiwicmVxdWVzdElkIjoiMjJmZWQ4NDQtZGU1My00NjdiLTU4MzUtYzQxMDUxNTdkZmM3IiwibG9jYWxlIjoiZW5fVVMifQ.SkOCE3xb_NSwz-qesUToH0Cq1RjGee1RgFpGUsDxGAV2tUhV3bsKNHrkvhUjwTr3ZpBTD9RS6uyMrtTgE4QzTg
-
https://linkprotect.cudasvc.com/url?a=https*3a*2f*2fglawgp.docsend.com*2fview*2fjj2pujee8chn94by&c=E,1,BRimqM_spA_Ml_9DQ-YL0yPvOgFDTD9meLgEcXeArqMGesmp_I89262U4pZqP-7ab36LtZ6nuRDu1TDQjziZuZtZxGLq67hh9wjqa3xXkbc,&typo=1
-
https://linkprotect.cudasvc.com/url?a=https*3a*2f*2fglawgp.docsend.com*2fview*2fjj2pujee8chn94by&c=E,1,BRimqM_spA_Ml_9DQ-YL0yPvOgFDTD9meLgEcXeArqMGesmp_I89262U4pZqP-7ab36LtZ6nuRDu1TDQjziZuZtZxGLq67hh9wjqa3xXkbc,&typo=1
-
https://postoffice.adobe.com/po-server/link/redirect?target=eyJhbGciOiJIUzUxMiJ9.eyJ0ZW1wbGF0ZSI6ImNjX2NvbGxhYl9kY3NoYXJpbmdfdmlld19lbWFpbCIsImVtYWlsQWRkcmVzcyI6InBhdW5pdmVyc2FsNzdAZ21haWwuY29tIiwicmVxdWVzdElkIjoiMjJmZWQ4NDQtZGU1My00NjdiLTU4MzUtYzQxMDUxNTdkZmM3IiwibGluayI6Imh0dHBzOi8vYWNyb2JhdC5hZG9iZS5jb20vbGluay9yZXBvcnRhYnVzZS90cmFjaz91cmk9dXJuOmFhaWQ6c2M6VkE2QzI6ZTVmMTFkMDQtM2ExOS00MGIwLWJkOGEtOGRkNzZmM2M1NTRlIiwibGFiZWwiOiIxMiIsImxvY2FsZSI6ImVuX1VTIn0.C6blHsHBucNUtTwkR38Vgn5_Psi87PIvTTAJCq4WOVNcee28L1PKnWC-ZPbv-mY72dsb2eyZQX12e_qs4NP30g
- Show all
-