Overview

overview

4

Static

static

4

NEAS.a1df1...JC.pdf

windows7-x64

1

NEAS.a1df1...JC.pdf

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a1df1fca02c70ce72676194e05392630_JC.pdf

  • Size

    65KB

  • MD5

    a1df1fca02c70ce72676194e05392630

  • SHA1

    72e0c437635311c38ec618d2c64ada4741cfcbf3

  • SHA256

    07f2514164a0bf04ab1e2b095fc3edeaa706369a53f66c819a0ef2f9b11ca5b0

  • SHA512

    5706dc1b7d34f876b519f91b927f7ad51595190a15609364e7370ecd374e78196924d2aead911d2bf87b623cd19cc2417a223d3b4c88b5fd57a9265a9a0331b8

  • SSDEEP

    1536:sPJejf5RWzUd2xa4H3h/O3XK1/rE0E2AV+j9oH53j:ceVRjAY3XK1zE0yHJ

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • NEAS.a1df1fca02c70ce72676194e05392630_JC.pdf
    .pdf

    • http://ecfr.gpoaccess.gov/cgi/t/text/text-idx?c=ecfr;rgn=div5;view=text;node=24%3A4.0.3.1.22;idno=24;sid=f602202f1a90ae0a8c5e450e75d32a5f;cc=ecfr

    • http://ecfr.gpoaccess.gov/cgi/t/text/text-idx?c=ecfr;rgn=div6;view=text;node=24%3A4.0.3.1.22.9;idno=24;sid=f602202f1a90ae0a8c5e450e75d32a5f;cc=ecfr

    • http://ecfr.gpoaccess.gov/cgi/t/text/text-idx?c=ecfr&rgn=div8&view=text&node=24:4.0.3.1.22.9.33.1&idno=24

    • http://ecfr.gpoaccess.gov/cgi/t/text/text-idx?c=ecfr;rgn=div8;view=text;node=24%3A4.0.3.1.22.9.33.2;idno=24;sid=f602202f1a90ae0a8c5e450e75d32a5f;cc=ecfr

    • http://ecfr.gpoaccess.gov/cgi/t/text/text-idx?sid=f602202f1a90ae0a8c5e450e75d32a5f&c=ecfr&tpl=508Accessibility.tpl

    • http://nara.gov

    • http://gpo.gov