Overview

overview

6

Static

static

6

Users/dath...nt.pdf

windows7-x64

1

Users/dath...nt.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    859c277b-90ef-4b6f-814f-f8db996da545.zip

  • Size

    88KB

  • MD5

    e187b59f49d01970f286792b84e42905

  • SHA1

    2c24dc0e4e4afddf7e44ce27c4a21a8b8deebff9

  • SHA256

    f1b5cda8186547e47d182345f3bee7a332c93e71a782bde2ea30e21f095ca393

  • SHA512

    cc2ea1c3894537374fb0df32b5a6d6efb3a142aeb0dbb1c5f09ebba7196872408785cf62ed62895dba1868a51ef215b4044839d8109370ce2c0797c2979a4d0c

  • SSDEEP

    1536:WI3X4Q0sDeMzVCXBxJI1EmqCxNLPeA4jkqTfQ8x1erZMWll5p5tzFvrshg22JBmU:LX+OAlIpqCxNLmA4QqzQ8x10l5/pXrJl

Score
6/10
pdfevasion

Malware Config

Signatures

  • Malformed or missing cross-reference table in PDF

    Malformed or missing cross-reference tables are often used to evade detection

    pdfevasion

Files

  • 859c277b-90ef-4b6f-814f-f8db996da545.zip
    .zip

    Password: infected

  • ProgramData/McAfee/QuarMeta/859c277b-90ef-4b6f-814f-f8db996da545
    .xml
  • Users/dathompson/AppData/Local/Microsoft/Windows/INetCache/Content.Outlook/M1NSYU4K/Final Payment.pdf
    .pdf