Overview

overview

5

Static

static

3

Statement ...95.eml

windows7-x64

5

Statement ...95.eml

windows10-2004-x64

3

Statements...24.pdf

windows7-x64

1

Statements...24.pdf

windows10-2004-x64

1

email-html-2.txt

windows7-x64

1

email-html-2.txt

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Statement of Account from Scan Global Logistics Account # SU516 95.eml

  • Size

    44KB

  • MD5

    56d7003c4134ae4907c4d4edf18313c6

  • SHA1

    35490759e8144ba986a76b294011f4e79367c873

  • SHA256

    43b3ac06da8a85156f88cb3a9958cca7885742f034bb2721bccee2b60ecf2bda

  • SHA512

    126aa74f6fd0886f218248fe29a1f5941ffb96f7d8568960b40abaa7cee4d5d555be140e548f4553c03a51b5c7961ff9f32b2070218dedc6816008cc5d224573

  • SSDEEP

    768:38xMdRi7NP8rF+pFscOo5qUo/XTDa4M8vi60UgFk5duvR47aQbDBLUU2QB3r5/Cr:38xMdRi7NPwF+07E7oLW38/ZAADBoNcy

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Statement of Account from Scan Global Logistics Account # SU516 95.eml
    .eml

    Password: power123

  • Statements_SU5164222024.pdf
    .pdf

    Password: power123

    • https://invoiceviewer.scangl.com/default.aspx?AwbID=2ADA9467-E38F-4EAC-8EBC-D410FCC7BAEA&StatementID=88900EAA-620A-4AB2-9AB0-1D23981DD371&BatchID=892DB482-8441-4234-8D64-34F38E61FBEB&CustomerID=E6930DE8-9D17-4E16-9183-7B8E94C71C7D

    • http://atWWW.ScanGL.com

  • email-html-2.txt
  • email-plain-1.txt