Overview

overview

3

Static

static

3

50f099721e...a1.pdf

windows7-x64

1

50f099721e...a1.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    11793770597.zip

  • Size

    10.5MB

  • MD5

    09f63fd8b33ddaddbfc2679be1a0137a

  • SHA1

    10ff92c7ffc30d256a74252ff6f37f46ef84b9d5

  • SHA256

    a5fb3dc5318566572cb0bbdffdf68f2314c07d26ddcab2db0eb57731a03ec067

  • SHA512

    2440e1d3d1f6b061d274fa4e04611492763ef38450315a9c40036705f125e58e817e30cb8340dfb3d8cd8000bb362c24335da0b16cd5b223d93f6c2e43e9221b

  • SSDEEP

    196608:76fmAZoqoK+WMgQOEdJkj3XRG/Jsw5TD9mqQfKnst+JFCjXuhJTk3aKjE36:76XZkgeYj3X4/JsS9m4nRXjJTkqEc6

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • 11793770597.zip
    .zip

    Password: infected

  • 50f099721e97e84760cc57159c9f75b7b1e3aec4a6ab09c2beda864c0e6601a1
    .pdf

    Password: infected

    • https://donorbox.org/vxug-monthlyen-USDonate!en-USFeel

    • https://donorbox.org/support-vx-undergrounden-USBuy

    • https://www.vx-underwear.org//en-USvx-underground

    • https://learn.microsoft.com/en-us/windows-hardware/manufacture/desktop/push-button-reset-overen-US-en-USen-US

    • https://stanislavs.org/helppc/en-US

    • http://testlib.so

    • https://github.com/3intermute/Ramielen-USAbstract:en-USen-USen-USen-USen-USen-USen-USpersistence

    • http://start-vm.sh

    • https://donorbox.org/vxug-monthly