Overview

overview

3

Static

static

3

RNW - Inst...ss.pdf

windows11-21h2-x64

1

email-html-2.html

windows11-21h2-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Quarantined Messages (5).zip

  • Size

    445KB

  • MD5

    5e93a6e0fc7db3e08b0a46544f1cf07e

  • SHA1

    227fa3a0c462f8305d6e5d4e9d4826b8fe76cf90

  • SHA256

    eb0893804a0f7e16e99c3a9e36f3b573be616f99ff2e9a00d70f00474a6f84e0

  • SHA512

    280f2714c602203fffcef388e43e488807a5acc373c5309f73a7447a940e7947861f91531be0a76478307995defd2af81f4e54969b6a3298fc5ae6891ab6224a

  • SSDEEP

    12288:mzVT26HHWlV1gXXI22viEpy0drd64FBFEJT91RsPo:mzVT1HHWlngXYNvjjzKJTSw

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Quarantined Messages (5).zip
    .zip

    Password: infected

  • 120275e5-77fa-42d9-c2ec-08dc0d4bf229/12d90fbd-9370-c9ea-dac0-81903ee81383.eml
    .eml

    • https://www.thebeerstore.ca/

    • https://goo.gl/maps/jvZCcchhAUChbpFH8

    • https://thebeergroup.sharepoint.com/sites/DIHub/SitePages/B-Mindful.aspx

  • RNW - Instructions for File Share Access.pdf
    .pdf

    • http://rnw-wss.quickconnect.to

  • email-html-2.txt
    .html
  • email-plain-1.txt
  • image007.png
    .png
  • image008.png
    .png
  • image009.png
    .png
  • image010.png
    .png
  • image011.png
    .png
  • image012.png
    .png
  • image013.png
    .png