Static

static

3

Resubmissions

17/05/2024, 16:45

240517-t9pc2ahb2t 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Another_wtf_UA (1).zip

  • Size

    9.8MB

  • MD5

    fc2e53c3a492bcbd55852eb85057e568

  • SHA1

    2f6ff068e63b6fa5bf826ba40a198d2d35721eb1

  • SHA256

    9c7e1c2705d44681d77de26cae1f849b7b53318c02917de7465c7fc63baf150e

  • SHA512

    fa93fb1ef0d196de5bca81ecd2d9243be4c90ae7d059619a674c406aa7f1926398bf9e4718ba0168ae56592d1e238ea9d8eb84703d4302aec7017339d0d0a93c

  • SSDEEP

    196608:4FeZE5QJ9zjEevK0LDKhBhxDzCHXLso+doNLjz0vWhm1lBu7Aw:4fu3zjEevjYLDzysdyvhm1O7Aw

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Another_wtf_UA (1).zip
    .zip
  • 04.19.23 - My account.pdf
    .pdf

    • https://go.microsoft.com/fwlink/?LinkId=2033498

    • https://myapplications.microsoft.com/

    • https://portal.office.com/Account

  • 08.31.23 - WTH UA - azure settings.7z
    .7z
  • 08.31.23 - WTH UA - azure settings.json
  • 08.31.23 - WTH UA - azure settings.json
  • All - EnterpriseAppsList.csv
  • AppRegistrationList.csv
  • Capture - Just a Picture.PNG
    .png
  • EnterpriseAppsList.csv
  • Hidden Apps - EnterpriseAppsList.csv
  • I Deleted - Groups - Microsoft Intune admin center.pdf
    .pdf
  • exportGroup_2023-4-20.csv
  • exportUsers_2023-4-20.csv