Overview

overview

4

Static

static

4

NATONSPAFi...st.pdf

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Remcos_2.zip

  • Size

    465KB

  • MD5

    ebd4768ec84bf34ec08010967dd1dffa

  • SHA1

    2852d5756de0f6321ef6e0f76f21df4f346b5234

  • SHA256

    a4a35f970693d8525db6c851d448697ec2950c8ea1bd18c36a2c426171f6ebe1

  • SHA512

    ec69f4677f4c63a5ea222c75e75c544ec1c03cdfd5f0d65baf3835614ea202b118066adc9ed3b472369008d28261ea6e4c4e197401a6eedbde444aea9962f8b2

  • SSDEEP

    12288:2gmPIU9W+X/RWIF2UD2gygTnrDzyAsVYBCvRb2p:2gmhWmnD/y7A3BCvpa

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Remcos_2.zip
    .zip

    Password: infected

  • 79a4fa2ac4971f669cbcbe4f1573bbc893f05490a9a0d0d9d6b6c1c91bb3a1c4.zip
    .zip
  • NATONSPAFinalInviteList.pdf
    .pdf

    Password: infected

    • https://www.nato.int/nato_static_fl2014/assets/pdf/2022/6/pdf/220629-infographic-new-nato-force-model.pdf