Overview

overview

8

Static

static

6

lnvoice_15...48.pdf

windows7-x64

1

lnvoice_15...48.pdf

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    lnvoice_1541436948.pdf.zip

  • Size

    9KB

  • MD5

    352290013f1d61e92dc3b55ea8a02be0

  • SHA1

    efaf2c27c7fdc8e856544511612f13b6bb988527

  • SHA256

    6b14773e38e9f38877ced1dd4f3ae57071e9bfa1835961550bdf1d259335b665

  • SHA512

    96d977520c12a7611bfb300e9b054271e4c9232374ea98e90279e11068628deacb02aa48f1d3afd55b72d67026f3ccd2b3751aabc67979afc14bfadbe0870f95

  • SSDEEP

    192:jN+5bLipxzYhH1pRTBkv0C07eDQumzVYAdp/FkW+5JpkY5PZq8C3bOY1:jN+4zMH1PBk8b7ew60/iW+Z5Rq8CqQ

Score
6/10
pdflinkjavascript

Malware Config

Signatures

  • PDF contains JavaScript

    Detects presence of JavaScript in PDF files.

    pdfjavascript
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • lnvoice_1541436948.pdf.zip
    .zip

    Password: infected

  • lnvoice_1541436948.pdf
    .pdf

    • https://bookingcomdetails.blogspot.com/