Overview

overview

7

Static

static

3

HP0-803.exe

windows7-x64

7

HP0-803.exe

windows10-2004-x64

7

HP0-803pdf.pdf

windows7-x64

1

HP0-803pdf.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    5c432321200acc57b7b8c4f5d79e1165_JaffaCakes118

  • Size

    1.6MB

  • MD5

    5c432321200acc57b7b8c4f5d79e1165

  • SHA1

    a19174ef2d31a2856291e33edb85e51a7dddf1c3

  • SHA256

    e2c811d1de900492ac7aebfa3b4f387a56e473fb41b0995a6fe56acd16ef0e43

  • SHA512

    be522c60f6f54a05c14771eb20c72c7febea5e8b17d34976edcf68db46588581a8de9fa2c1b4792c4cbd772ce851bd661104b2cba45fe689301efbe44bb5490f

  • SSDEEP

    49152:aqqsiMDKDeKHbKlrM6B9evXZoT49DLv3dOs91o:ahsNKqWQdU449XVOR

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5c432321200acc57b7b8c4f5d79e1165_JaffaCakes118
    .zip
  • HP0-803.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • HP0-803pdf.zip
    .zip
  • HP0-803pdf.pdf
    .pdf

    • http://Pass-Guaranteed.com

    • http://Pass.com

    • http://www.Pass-Guaranteed.com

    • http://www.pass-guaranteed.com/bundles.htm

    • http://www.pass-guaranteed.com/custom-request.htm

    • http://www.pass-guaranteed.com/log.htm