Trival[.]pdf[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Trival.pdf.zip
Size

1.0MB
MD5

a3a3591cfeb477fb105ab1e6a47a8d6c
SHA1

f9ca0e865a724fe986a591022aca7bfc3fd68d8a
SHA256

cd901eb5c2cb3aa5b8ee01c60c60d3441ec920a2a013eaebdd51df9d446368b2
SHA512

ceb8b129878627599fbcf429710090e5de45c32d7331d7d90fbcef3b4842c6e07f284b3ccd44182ca47ce2dfc8a1e495c072339e057df36e47e3ddca7b63f5c6
SSDEEP

24576:weSuwDBRWrfxlCmjW5utoTk7OHbfbanCkLPB069Tit8KyDtcQmO:1HwDPW7xrj4w4DQPB00WfymA

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

resource	yara_rule
static1/unpack001/Trival.pdf	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

Trival.pdf.zip
.zip
Trival.pdf
.pdf
- http://www.trival.si/
- http://d.o.o.sl
- http://sl-SI.sl
- http://d.o.o..sl
- http://sl-SIproducingsl-SIcompositesl-SImaterialssl-SIforsl-SIvarioussl-SIapplicationssl-SI.sl
- http://sl-SIdesiredsl-SIpropertiessl-SI.sl-SICombinationsl-SIofsl-SIthosesl-SItwosl-SImaterialssl-SIgivesl-SItsl-SIosl-SIproductssl-SIspecialsl-SImechanicalsl-SIandsl-SIothersl-SIgoodsl-SIpropertiessl-SIsl-SIfibresl-SIreinforcedsl-SIplasticsl-SI.sl
- http://die.sl
- http://sl-SImandrelsl-SI.sl
- http://fibres.sl
- http://chemicalssl-SIandweathersl-SI.sl
- http://trival.sisl-SIwww.trival.si
- Show all