Overview

overview

3

Static

static

3

=?utf-8?B?...?=.pdf

windows7-x64

1

=?utf-8?B?...?=.pdf

windows10-2004-x64

1

=?utf-8?B?...?=.pdf

windows7-x64

1

=?utf-8?B?...?=.pdf

windows10-2004-x64

1

=?utf-8?B?...?=.pdf

windows7-x64

1

=?utf-8?B?...?=.pdf

windows10-2004-x64

1

=?utf-8?B?...?=.pdf

windows7-x64

1

=?utf-8?B?...?=.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Mensajes en cuarentena.zip

  • Size

    412KB

  • MD5

    35ed9340a2053745e51f41bcc355ae8c

  • SHA1

    36acd07eb0a3611095fb4da038753d6b734bd77d

  • SHA256

    f07c441ca4773134dd8e5f2c7643ab7d03bca42494c7e77950e3fe7611a31b2d

  • SHA512

    bff1275b91259bb08b8f4d21229c6c475683f90e1c259f978f3bf8d6bd87195003693ab425012c26be1d46231f9be51238aa0944a013e6126fd99cd5b3dca36f

  • SSDEEP

    12288:VTm68vaXcFDIzzIwJGZhPz+6oYvllnt87i8/8z:VCZvVoBGzrPOj4

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Mensajes en cuarentena.zip
    .zip

    Password: 123456

  • 0f06054d-2e19-425a-66dc-08dbc8d38373/36e3225d-1ff5-3189-c92d-bcd3e95528d7.eml
    .eml

    Password: 123456

    • https://firmamhio365.melia.services/MHI_firma_15-02-2023.jfif]

    • https://www.melia.com/en/hotels/alemania/frankfurt/innside-frankfurt-ostend/index.htm

    • https://www.melia.com/en/hotels/germany/frankfurt/innside-frankfurt-eurotheum/index.htm

    • https://www.melia.com/en/hotels/germany/frankfurt/innside-frankfurt-niederrad/index.htm

    • https://www.melia.com/en/hotels/germany/frankfurt/hotel-frankfurt-messe/index.htm

    • https://www.melia.com/en/hotels/alemania/frankfurt/melia-frankfurt-city/index.htm

    • https://www.facebook.com/Meli%C3%A1-Frankfurt-City-115180167278341

    • https://www.instagram.com/meliafrankfurtcity/

    • Show all
  • =?utf-8?B?QnVjaHVuZ19LZW1ldG3DvGxsZXJfc3dpdGNoLnBkZg==?=
    .pdf

    Password: 123456

  • =?utf-8?B?RGVwb3NpdF9LZW1ldG3DvGxsZXIucGRm?=
    .pdf

    Password: 123456

    • http://www.melia.com/

    • http://melia.comwww.melia.com

    • http://melia.com

  • =?utf-8?B?UmVjaG51bmdfSGVycl9LZW1ldG3DvGxsZXIucGRm?=
    .pdf

    Password: 123456

    • http://www.melia.com/

    • http://melia.comwww.melia.com

    • http://melia.com

  • =?utf-8?B?UmVzZXJ2aWVydW5nX0tlbWV0bcO8bGxlcl9Cb29raW5nLmNvbQ==?=
    .pdf

    Password: 123456

    • https://admin.booking.com/hotel/hoteladmin/index-hotel.html?perform_routing=1&lang=es&ses=f185b0d4b76a67859810c460a5ce8b1d&hotel_id=1840728

    • https://admin.booking.com/hotel/hoteladmin/extranet_ng/manage/online_payments.html?lang=es&ses=f185b0d4b76a67859810c460a5ce8b1d&hotel_id=1840728

  • email-html-2.txt
    .html
  • email-plain-1.txt
  • image002.png
    .png
  • image003.png
    .png
  • image004.png
    .png
  • image005.png
    .png
  • image006.jpg
    .jpg