Overview

overview

4

Static

static

4

Purchase Order.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Purchase Order.pdf

  • Size

    198KB

  • MD5

    269a48ef47aeb017f6c2fc54f505c4de

  • SHA1

    3df20f728fbfaf4e777d0771fee714723bafe666

  • SHA256

    15dabf2ac1db66672db496bc76234203c5464c4f0a05787b01aa94413cc478f3

  • SHA512

    99bcfe0f23a87b1af3d61605012b5e01a3c518d71380d8fd9a6e158ed8bf999236e7881a54b80a414532ab97601b6f763f36d9fadef2f61bd040be96fc44548a

  • SSDEEP

    3072:zi76dsrsrsrsrsrsrsrsrsrNCNCNCNCNCNCNCsrs91kB9/9MLhG9NHCfMI9IT+b0:zBGb1MVGz4MmITymInPNPlkN

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Purchase Order.pdf
    .pdf

    • https://vwinc.us/?hyjdwgbb&em=%7bbase64email%7d

    • https://nzanajinja.ru/PO/PO.exe