Static task
static1
General
-
Target
RV Correos sospechosos.msg
-
Size
3.7MB
-
MD5
359ba86922d4acf0be68539c3c426f65
-
SHA1
f5848c254e5eca05b999d7d1ce8ecf91278e7282
-
SHA256
b99394c1682d8d72257ada0275cfc2b92b10af33034f8226ea5b5e9bd87e770e
-
SHA512
9431339b9118f532cf61f10d5ff2f6fd2fa3e4c60899ee45b1185c01e93c54484b48b673862f300b6eb35f4cd81a7b391ad3010fa73d6d23758474eb52b932b1
-
SSDEEP
49152:Ryj4fV/cE6c12ONEUPwD23qpgrLx4Ky/Uumx4rpAeVvL+u9KZ5x58NRJTprATy/U:RysTyNay
Malware Config
Signatures
Files
-
RV Correos sospechosos.msg.msg
-
http://reincorporacion.gov.co
-
http://timana-huila.gov.co
-
http://timana-huila.gov.co/
-
http://www.reincorporacion.gov.co
-
https://ci3.googleusercontent.com/mail-sig/AIorK4wf8AtDeBVpwqjaFc14rynl54Oqj878gPaXca4qy0KdCkaX9h7LrJw_ttpt_OAsi9YdeH9x5xHB6r2_
-
https://ci3.googleusercontent.com/mail-sig/AIorK4zjQGE30B583RFONsb3GU8JvypBtOPB8rZk1sA3v7oRVrqVLWLJqJS9zuPptk4V1Wt1UXx_auo7o7Iw
-
https://efsisas.principalwebsite.com
-
https://efsisas.principalwebsite.com/
-
https://icbf.correocertificado4-72.com.co/6f80c292d5055ce4535bc91f104bab432297c9686af536bb3173dfb6f7e24149.jpg
-
https://icbf.correocertificado4-72.com.co/files//themes_images_1D3D90/footer_template.png?v=
-
https://icbf.correocertificado4-72.com.co/files//themes_images_1D3D90/header_template.png?v=
-
https://icbf.correocertificado4-72.com.co/unsubscribe.php?email=6f80c292d5055ce4535bc91f104bab432297c9686af536bb3173dfb6f7e24149
-
https://icbf.correocertificado4-72.com.co/viewmessage.php?messageid=id6f80c292d5055ce4535bc91f104bab432297c9686af536bb3173dfb6f7e24149
- Show all
-
-
142512 NOTIFICACIO DE DEMANDA.svg
-
image001.png.png
-
imagen.png.png
-
smime.p7m