Overview

overview

4

Static

static

4

de8382fa47...dd.pdf

windows7-x64

1

de8382fa47...dd.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    de8382fa4725bc0f9d2ddba37ae9c46f95c9ef45304225a522f085198c6eabdd

  • Size

    2.4MB

  • MD5

    e994c4fd3b53691764ac8164954d3abe

  • SHA1

    5b864d26df6c10aa0088fe89d656c12f2d837231

  • SHA256

    de8382fa4725bc0f9d2ddba37ae9c46f95c9ef45304225a522f085198c6eabdd

  • SHA512

    a94cedb00585eb19118824754f439aa5fbae92ca6a70c16409e696d29950489cf687a39c381fc3d23ca9244522c76261608702cefaf6effa72417f7be3a0aaea

  • SSDEEP

    49152:qqqUiD13VXel7cJv0WnCR0zUj1r9KR3ADCPcEb0tCCQ0G/uL0H:4U0xumNs0U03lb0y0G/uLu

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • de8382fa4725bc0f9d2ddba37ae9c46f95c9ef45304225a522f085198c6eabdd
    .pdf

    • https://www.trellix.com/

    • https://devblogs.microsoft.com/powershell/powershell-constrained-language-mode/

    • https://wlrtstg.aramco.com.sa/WLRT

    • https://docs.trellix.com/bundle/application-change-control-8.3.x-product-guide-windows/page/GUID-BE89C2B7-EA75-4717-A8B0-20A1FFC1C1AD.html

    • https://kcm.trellix.com/corporate/index?page=content&id=KB88222

    • https://kcm.trellix.com/corporate/index?page=content&id=KB84258

    • https://files.trellix.com/

    • https://kcm.trellix.com/corporate/index?page=content&id=KB59410

    • https://kcm.trellix.com/agent/index?page=content&id=KB93741

    • Show all