Mensajes en cuarentena[.]zip

Sharing

Target

Mensajes en cuarentena.zip
Size

173KB
MD5

e0dc93ba4c3d03d135e4aed5169d0ebf
SHA1

56eae9465be29eba6021c56136b85e25b8058bf8
SHA256

e02f267c42d6b390e7a1e26b10e8cf46fa2ea1ac2768876227ecd8c380e64bbb
SHA512

bd270a3182485801f1ed8ac90044dc6d5f22f8a1cb038846ae9c8401dd0cdea96be64b1f5872a5ecf0bba0b75d0d1cfab53629e9c6871dcd97b63656838a7193
SSDEEP

3072:SQQXvvNK3NAeQ/Xn2vCUiiZQbGKCYvwGq3wfT/stU+CL46I65drmuC:8NK7IXaiyQ/a3wfT/sV6Ii0uC

Score

4^/10

pdf link

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

resource	yara_rule
static1/unpack002/=?iso-8859-1?Q?Remisi=F3n_respuesta_derecho_de_petici=F3n_ADRES_2018-0194?= =?iso-8859-1?Q?.pdf?=	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Mensajes en cuarentena.zip
.zip

Password: 2203
6914b55f-cfdd-4c4e-174c-08dc000fd5da/7976ea67-df06-ca83-acd8-a9509749c668.eml
.eml

Password: 2203
=?iso-8859-1?Q?Remisi=F3n_respuesta_derecho_de_petici=F3n_ADRES_2018-0194?= =?iso-8859-1?Q?.pdf?=
.pdf
Password: 2203
- https://utfosyga2021-my.sharepoint.com/:f:/g/personal/ricardo_sanchez_utfosyga2014_com1/Ejr1pUiEpIRBn4wy5JxSwRMBZtY28nPm50XRNLvdEZp4Qw?e=3Fh3dj
email-html-2.txt
.html
email-plain-1.txt