phish_alert_sp2_2[.]0[.]0[.]0 (1) 13th May[.]eml | Triage

Submit
Reports

Overview

overview

5

Static

static

4

phish_aler...ay.eml

windows7-x64

5

phish_aler...ay.eml

windows10-2004-x64

3

REMITTANCE...ms.pdf

windows7-x64

1

REMITTANCE...ms.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

phish_alert_sp2_2.0.0.0 (1) 13th May.eml

Resource

win7-20240508-en

windows7-x64

14 signatures

300 seconds

Behavioral task

behavioral2

Sample

phish_alert_sp2_2.0.0.0 (1) 13th May.eml

Resource

win10v2004-20240426-en

windows10-2004-x64

4 signatures

300 seconds

Behavioral task

behavioral3

Sample

REMITTANCE-For-Esmartsystems.pdf

Resource

win7-20240508-en

windows7-x64

8 signatures

300 seconds

Behavioral task

behavioral4

Sample

REMITTANCE-For-Esmartsystems.pdf

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

300 seconds

General

Target

phish_alert_sp2_2.0.0.0 (1) 13th May.eml
Size

52KB
MD5

76bf383e4b5bad11bf72a58d5bb3a4d5
SHA1

694702996334b2d18bac1182e27c40dc448c863f
SHA256

9099e392d1a6d834d06e482c806a681a2404d986b9bc25ac66a13226a76da060
SHA512

e0cbdd6275c87e74310fff7c1adc5e278d16f7f23209d09478a16f71ac5f1589719a7e9a2e3e1c8c13bb3159ebbb6597b1b6f5771a72fba46edb44ef3e3e3497
SSDEEP

1536:vnd//Y4082Coe0XPO9cWHulEb2RwbF7yI:vntdZoRojHywbQI

Score

4^/10

pdf link qr

Malware Config

Signatures

PDF has QR code that contains a HTTP URL
PDFs with URL QR codes are often used for phishing
pdf qr
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

phish_alert_sp2_2.0.0.0 (1) 13th May.eml
.eml
- https://aka.ms/LearnAboutSenderIdentification
REMITTANCE-For-Esmartsystems.pdf
.pdf
- https://[email protected]/ROMANNUMERA/sgxd/aGVpZGkuYmplcmtlQGVzbWFydHN5c3RlbXMuY29t
email-html-1.txt
.html

© 2018-2025

Terms | Privacy