Overview

overview

8

Static

static

8

6480000079...LS.pdf

windows7-x64

1

6480000079...LS.pdf

windows10-2004-x64

1

6650000079...IT.pdf

windows7-x64

1

6650000079...IT.pdf

windows10-2004-x64

1

6800000032...AM.pdf

windows7-x64

1

6800000032...AM.pdf

windows10-2004-x64

1

6930000015...ON.doc

windows7-x64

4

6930000015...ON.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    83ceda4bdd3e6463e1fe971ca4a8e5561dff1a8b6df18f0807f6eeaec6baf1c1.jar

  • Size

    2.3MB

  • MD5

    808e2c07bc6af2eb1c7866bf3b1e12bc

  • SHA1

    3e7685d66322e0ad195461561c920bdf4d824abd

  • SHA256

    83ceda4bdd3e6463e1fe971ca4a8e5561dff1a8b6df18f0807f6eeaec6baf1c1

  • SHA512

    32f1a05e296fd78e4dd64c0a6dd58648e8fd695652ef1d7655e9c06c79272f2991a07927f922892fc8c34450d745d1bc124aa7066df5441f7481392627df9e3c

  • SSDEEP

    49152:v3EfH8IMkzaNxEz6ABiTrMQkyBG8RpjtM3qv2LuweU8hCQHtNzlT43a:vGH8IMkzaNbAQs8HtvhnftnTCa

Score
8/10
pdfmacroxlm

Malware Config

Signatures

  • Suspicious Office macro 1 IoCs

    Office document equipped with 4.0 macros.

    macroxlm
  • Malformed data in PDF

    A PDF can contain malformed data to evade detection

    pdf

Files

  • 83ceda4bdd3e6463e1fe971ca4a8e5561dff1a8b6df18f0807f6eeaec6baf1c1.jar
    .zip
  • 64800000797_IMO SYMBOLS.pdf
    .pdf
  • 66500000797_MI-07_5400049, CASCSDE TANK UNIT.pdf
    .pdf
  • 68000000326_DP216G BRIDGE TEAM.pdf
    .pdf
  • 69300000159_TE352G-DG No1 CRANKSHAFT DEFLECTION.doc
    .doc windows office2003
  • CUSTOMFORM_T_AGM__1905.cfm
  • T_AGM__1905.xml
    .xml
  • dms_T_AGM_1905_0001.zip
    .zip
  • dms_T_AGM.xml
    .xml