Static

static

3

Resubmissions

19/02/2024, 07:03

240219-hvhq6aaf9x 3

Sharing

Copy URL Twitter E-mail

General

  • Target

    Material.pdf

  • Size

    347KB

  • MD5

    2fe9e4ac897315ad0745bb04041ace58

  • SHA1

    f3b662ab265aaddd7af0445baaeb5eb5167d7a6c

  • SHA256

    e7cdde863e32812195cb31e1ce53bea439ff56dcd4a1de41b7af294ab45b7bb6

  • SHA512

    2171dd861b8723e5c81226d79582283f0389c7102a6c48507c1fcad242c707819578e41f1eecb23c47c609c8bad3674cc60b164c9bb10c8346a523bdc58c19d8

  • SSDEEP

    6144:sNGbc5sGYrz1fJoi9ugQ0b9z0xORlpvySV40ozJcNBKt9U0BTG8PLFrmkvX1Uh:QzsDdfH98w0xO3oSVZwJcNBgqqVFru

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Material.pdf
    .zip

    Password: S1P@ssw0rd

  • Device/HarddiskVolume3/Users/User1/Desktop/LetsDefend/82 - SOC140 - Phishing Mail Detected - Suspicious Task Scheduler/Material.pdf
    .pdf

    Password: S1P@ssw0rd

    • https://s3.ap-northeast-2.amazonaws.com/sococ/PO%23UCTC-2017-SPM-322.lzh

    • https://a.pomf.cat/hgfetb.R11

  • manifest.json