11477242733[.]zip | Triage

Resubmissions

20/08/2023, 09:46

230820-lrq5xafh5w 4

20/08/2023, 09:43

230820-lp3qxsfh4v 4

Sharing

Copy URL Twitter E-mail

General

Target

11477242733.zip
Size

120KB
MD5

a28b368b180860d5aa7c4b6030f5e036
SHA1

9eddd79a91d29cb62afd08ec730d87e1d75a3306
SHA256

c27ee0a72253969594300107444b084d4b601ebcbca0f1ce915a5fd3c330815a
SHA512

3d9ec7bc5997cb21b01fd8756aace990688302900445d01e556d2a4874889d6dbf881cd5698cc85681957a0d49df5ad347d1cf92649fca65182f4283029954aa
SSDEEP

3072:HHbfKcLbfvaqDdpUwCwdhtspifL6bGPZ96fV4cEul:nbfKcLbnaqDduZtpg66x96tD

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

resource	yara_rule
static1/unpack001/414306eb94b667062c56591c08338833eac386145311fac97ecffa1ec1a7a65c	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

11477242733.zip
.zip

Password: infected
414306eb94b667062c56591c08338833eac386145311fac97ecffa1ec1a7a65c
.pdf
- https://[email protected]@[email protected]@docsignningcontract.com/