Overview

overview

4

Static

static

4

Document/O...ce.pdf

windows7-x64

1

Document/O...ce.pdf

windows10-2004-x64

1

HiSuiteDownLoader.exe

windows7-x64

1

HiSuiteDownLoader.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    HiSuite.zip

  • Size

    2.5MB

  • MD5

    979621fe4c9c648646f5961ba4194e30

  • SHA1

    3000ef92a38dfea2bc246b008c000bd779832450

  • SHA256

    122aa233d41ef40f3d1ad2c7fa248668173c4b911b7d6b185c1e2710e8591b66

  • SHA512

    79fec13c33b35e83b9a061e86b8fd72260fa8b649576036898ff63b02ee127012361ff5e06a721bb4374da2961dcb5beed268ba779589d3ce0153b9273ab38b7

  • SSDEEP

    49152:nvD2k8BBW7CXYtQljrQQ0nfWp5GozADlHesQjfRxbBnFtBOHePCSRJELxtxIJ+Qv:vD2vWEYtQljrQQ0nW5GgADlHesQjZx1H

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 2 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • HiSuite.zip
    .zip
  • Autorun.inf
  • Document/Open Source Software Notice.pdf
    .pdf

    • http://pdm.huawei.com/Windchill/navigator/html/ext/huawei/opensource/ossoftware/view.html?oid=VR:ext.huawei.huaweipart.HuaweiPart:34486707364

    • http://pdm.huawei.com/Windchill/navigator/html/ext/huawei/opensource/ossoftware/view.html?oid=VR:ext.huawei.huaweipart.HuaweiPart:29794783792

    • http://trash.net

    • http://coredump.cx

    • http://w4g.org

    • http://2ka.mxt.ru

    • http://gentoo.org

    • http://alum.mit.edu

    • http://blackhole.kfki.hu

    • Show all
  • HiSuite.ico
  • HiSuiteDownLoader.exe
    .exe windows:5 windows x86

    62bfc523ddde14abe0f2b2af8334b76e


    Code Sign

    Headers

    Imports

    Sections