General

  • Target

    PW_infected_REMITTANCE-For-Viacelere_pdf.zip

  • Size

    24KB

  • MD5

    15374cdc5b0d2125c190ada175d5fc44

  • SHA1

    f8f5ca39b9a3c9ca910c3bd4ea6a648ed786babc

  • SHA256

    6c523968fe5f72d629a5721888ce472b23f2af09112ffee2356459879e7eba2e

  • SHA512

    b0dc014f39e496ae34885e90c4d9b8b1e7e315419991ced59f2d52079010860858fe2d5818dcd671f051bf50f35461e95624daa5752375be99b9dabdd1899641

  • SSDEEP

    768:XvOOPaB3ZzzQGRlmUS9n20tM439DNMO9LOb6sh:/lM3dzpRlL4rDNPLObz

Score
4/10

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

Files

  • PW_infected_REMITTANCE-For-Viacelere_pdf.zip
    .zip

    Password: infected

  • REMITTANCE-For-Viacelere.pdf
    .pdf
    • https://[email protected]/access/auth/dbph/amFpbWUuY2h1cnJ1Y2FAdmlhY2VsZXJlLmVz