General
-
Target
YES Utility Billing New E-Statement Available #Ref#928.msg
-
Size
133KB
-
MD5
fa94baea109829c813d36ce5653574c2
-
SHA1
917445d2707e8ef2583b4d8570eb2f0a7e0d7dad
-
SHA256
38ebab60db951fa7f0017e03fe3d351b513b0077e5039b9d3d607bb0133aa7a8
-
SHA512
6bfdd87395946ff958fa4bd3352932e732b787930d217995df59f4ec758db5d47e92f0c5e09e2259656e75607825fd9dfab8d8ac8b82648b719b176099aec7f5
-
SSDEEP
3072:FM1U3x0GYthNH4eG6+R0hCJsBO3wvO0/rJcGlHzh:F5B07hV4eOJCO3w2CJrTh
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
YES Utility Billing New E-Statement Available #Ref#928.msg
-
https://www.yardipca.com/13045msg/pages/YESEmailLink.aspx?77263F1D214CBE2E731562C9080608CA0A67B22827035EF82C2E09AB457594B8665816C81B1D17C0EF11D4DD0BEB04850EE1E0D5E215F79E
-
https://www.yardipca.com/13045msg/pages/YESEmailLink.aspx?77263F1D214CBE2E731562C9080608CA0A67B22827035EF82C2E09AB457594B8665816C81B1D17C0EF11D4DD0BEB04850EE1E0D5E215F79E'
-
-
UtilityBillingStatement_t0018718_032024.pdf
-
http://www.yesenergymgmt.com
-
http://yesenergymgmt.com
-
https://driftluxuryliving.securecafe.com/residentservices/drift/userlogin.aspxWATERMARK
-