General
-
Target
https://geteasypdf.com/pdf/lp5?main=headline3&lower=headline3&utm_source=oh-gdn&utm_medium=153500824274&utm_campaign=17428010086&utm_term=npiprofile.com&utm_content=689508795359&gclid=EAIaIQobChMIsojp3ve8hAMVCqcAAB0pAgFCEAEYASAAEgJ85vD_BwE
-
Sample
240221-v3eqpacb9w
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://geteasypdf.com/pdf/lp5?main=headline3&lower=headline3&utm_source=oh-gdn&utm_medium=153500824274&utm_campaign=17428010086&utm_term=npiprofile.com&utm_content=689508795359&gclid=EAIaIQobChMIsojp3ve8hAMVCqcAAB0pAgFCEAEYASAAEgJ85vD_BwE
Resource
win10v2004-20240221-en
Malware Config
Targets
-
-
Target
https://geteasypdf.com/pdf/lp5?main=headline3&lower=headline3&utm_source=oh-gdn&utm_medium=153500824274&utm_campaign=17428010086&utm_term=npiprofile.com&utm_content=689508795359&gclid=EAIaIQobChMIsojp3ve8hAMVCqcAAB0pAgFCEAEYASAAEgJ85vD_BwE
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-