Overview

overview

4

Static

static

4

wanted_Mansour.pdf

windows7-x64

1

wanted_Mansour.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    f9f4c65eb9acc36ea8da81f162a532ce9fcdd7a0b156555859172e7a582acaea

  • Size

    99KB

  • MD5

    b54b1d497f241cc930f3019acfabf870

  • SHA1

    453c4bde2a62f567d8e8c272603f914ed6f6cb52

  • SHA256

    f9f4c65eb9acc36ea8da81f162a532ce9fcdd7a0b156555859172e7a582acaea

  • SHA512

    9a3778eec89f0f8c7139527b63318564abd514b35f83c025401763cb8faf00b9d559a1d16ccaf8a5f9668af837696ac509744fcf64b96bb666d4847b768d8298

  • SSDEEP

    3072:eJT9PAGm+mOEpkhZyry7nmNI2YOCyQV0E:eJT9IG3+pkhEInmi5P

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • f9f4c65eb9acc36ea8da81f162a532ce9fcdd7a0b156555859172e7a582acaea
    .zip
  • lettermansour.zip
    .zip
  • wanted_Mansour.pdf
    .pdf

    • https://www.fbi.gov/wanted/cyber/ahmad-khatibi-aghda

    • https://www.fbi.gov/wanted/cyber/amir-hossein-nickaein-ravari

    • https://www.fbi.gov/contact-us/field-offices/newark