Overview

overview

3

Static

static

3

BMO PAD (2).pdf

windows10-2004-x64

1

BMO PAD (2).pdf

windows11-21h2-x64

1

COMPLETED ...RM.pdf

windows10-2004-x64

1

COMPLETED ...RM.pdf

windows11-21h2-x64

1

email-html-2.html

windows10-2004-x64

1

email-html-2.html

windows11-21h2-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Quarantined Messages (6).zip

  • Size

    2.0MB

  • MD5

    462513b4a2b6004a1e454c2d3e60909f

  • SHA1

    d0f21f5ff1474b3e464d8450d927aec2df169885

  • SHA256

    9a9743254b3675b30927d66c44eee4e1b489fae7961b17c7b047586ac90744df

  • SHA512

    1c05f498c348a3b7b7b342f7c61eed72c5aad297d80e7a3e162669e4b43e57f48993388bc75dedd4324e3e20050c712934c91695273335b3859cdb023ab2b25c

  • SSDEEP

    49152:94rqBhxkVGwv61YjRk8VH5eexF5xhYKmMR+6:9S8IYu61Y9/euFfhYKmMRd

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Quarantined Messages (6).zip
    .zip

    Password: infected

  • a95ead16-41eb-4bb0-222b-08dc0d414f9d/050b6bbc-542d-4813-d383-7dc41a81982c.eml
    .eml
  • BMO PAD (2).pdf
    .pdf
  • COMPLETED AYTO DEPOSITE BEER STORE FORM.pdf
    .pdf

    • http://www.cdnpay.ca

  • Image.jpeg
    .jpg
  • email-html-2.txt
    .html
  • email-plain-1.txt