Behavioral task
behavioral1
Sample
043c33bc149c689f74cfa6c6519b3b5b5bf649c339e38649fbb36609aa09c92b.pdf
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
043c33bc149c689f74cfa6c6519b3b5b5bf649c339e38649fbb36609aa09c92b.pdf
Resource
win10v2004-20231215-en
General
-
Target
14838636286.zip
-
Size
9KB
-
MD5
69c119e13a952123c1f31977392065f5
-
SHA1
1309c3d4ebb166efe7c2688d7d571a9b25144a6b
-
SHA256
41a3e1558de877e3529640470e21e8be637c24392fe0ee34189004d82d024a71
-
SHA512
cc1470e49d4bd6d84cb0162fc68a633cefc5d2353996dd585cf8f9482da2a989c2d6551a6bb5ca9b0c4199c6a57550c3971914ff251c536289d43a0edd636eca
-
SSDEEP
192:jpOSXKm3ws0xZ+UTqaCklLPf9GzktJOLQogWhfEX:vaYMBNu0ALQehfq
Malware Config
Signatures
-
PDF contains JavaScript
Detects presence of JavaScript in PDF files.
Files
-
14838636286.zip.zip
Password: infected
-
043c33bc149c689f74cfa6c6519b3b5b5bf649c339e38649fbb36609aa09c92b.pdf
-
https://booking-c.blogspot.com////////atom.xml?http://www.booking.com
-