General

  • Target

    14838636286.zip

  • Size

    9KB

  • MD5

    69c119e13a952123c1f31977392065f5

  • SHA1

    1309c3d4ebb166efe7c2688d7d571a9b25144a6b

  • SHA256

    41a3e1558de877e3529640470e21e8be637c24392fe0ee34189004d82d024a71

  • SHA512

    cc1470e49d4bd6d84cb0162fc68a633cefc5d2353996dd585cf8f9482da2a989c2d6551a6bb5ca9b0c4199c6a57550c3971914ff251c536289d43a0edd636eca

  • SSDEEP

    192:jpOSXKm3ws0xZ+UTqaCklLPf9GzktJOLQogWhfEX:vaYMBNu0ALQehfq

Score
6/10

Malware Config

Signatures

  • PDF contains JavaScript

    Detects presence of JavaScript in PDF files.

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

Files

  • 14838636286.zip
    .zip

    Password: infected

  • 043c33bc149c689f74cfa6c6519b3b5b5bf649c339e38649fbb36609aa09c92b
    .pdf
    • https://booking-c.blogspot.com////////atom.xml?http://www.booking.com