Overview

overview

4

Static

static

4

19.04.2024...al.pdf

windows7-x64

1

19.04.2024...al.pdf

windows10-2004-x64

1

19.04.2024...l.xlsm

windows7-x64

1

19.04.2024...l.xlsm

windows10-2004-x64

1

Project He...t.docx

windows7-x64

4

Project He...t.docx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3yVRujz-65833-09bD52F07142522D62660053baf.eml

  • Size

    8.4MB

  • MD5

    4d4523b2fe9e8242ff6cd84a30ed7452

  • SHA1

    e18049f385ae5a567876d797d97e55bcff9c6937

  • SHA256

    ddc27a99eb1c2d77b2f1b2e9d79e7f1a94818fda6724681d0733ff238def5f2b

  • SHA512

    3bdf6a8675a6719d87e96a18cf7f375f8153570bdcce003b9abc81c50163ac24364a966f22f7f5d0767adfe4f795f33b49dfe98fff39f750807b3d24481a2c8c

  • SSDEEP

    49152:7SErg4yKBRyxSnj7MOIOZf/YVaJO4JwwQhTE73GZ+Zi5xF3OjzV2Kwi7gS2yACmL:7Sb

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • 3yVRujz-65833-09bD52F07142522D62660053baf.eml
    .eml

    • https://res.cdn.office.net/assets/mail/file-icon/png/folder_16x16.png]Project

    • https://besantcapital-my.sharepoint.com/:f:/p/degido/ElKqI5ivjttNmdfqYlggnb8BBMqcvo4xlJw7EFwXtgsXLQ

    • https://besantcapital.com/

  • 19.04.2024_Project Helvetia_Branded Residences_Confidential.pdf
    .pdf

    • https://www.economiadigital.es/empresas/caixabank-bankia-oficinas.html

    • https://maps.app.goo.gl/z1jSfGBD1b7tQ8fY7

    • https://xala.com/salesbrochure2023/

    • http://state.es

    • http://IB.es

    • http://partners.es

    • http://en-USxala.com

  • 19.04.2024_Project Helvetia_Branded Residences_Confidential.xlsm
    .xlsm office2007
  • Project Helvetia - Letter of Intent.docx
    .docx office2007
  • email-html-2.txt
    .html
  • email-plain-1.txt