Overview

overview

7

Static

static

6

analisis.pdf

windows7-x64

1

analisis.pdf

windows10-2004-x64

1

analisis.pdf

windows11-21h2-x64

1

informe_payload.exe

windows7-x64

7

informe_payload.exe

windows10-2004-x64

7

informe_payload.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    analisis.pdf

  • Size

    212KB

  • MD5

    f28baa94ff32d8a4b006004b3c9c4261

  • SHA1

    54677341b7e233d8c0b6dcd38dc5e9d1a58511ef

  • SHA256

    cc48d8c645c27dd850652c0a66e22dd2e1b62bbf6ad208f94b8f5847684a8d17

  • SHA512

    853dc19d16e4387210e63b3de74c044db802e429bf12d082e00b66f127bb64e742cad32e2b1f23661a11cb47341d7b34e249533b2fb15a3815ed81b677f64989

  • SSDEEP

    3072:cyu1+HubW8lW1Sn6WEQKLy0jSaMWyAKCxxDghhiR9j4BIIADNI63Cv3UOLn5ZVv1:cyu1PdWEHEQlWyA/7am9kBAJIECvv5bd

Score
6/10
pdflinkjavascript

Malware Config

Signatures

  • PDF contains JavaScript

    Detects presence of JavaScript in PDF files.

    pdfjavascript
  • PDF contains one or more embedded files

    Detects presence of embedded files in PDF files.

    pdf
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • analisis.pdf
    .pdf

    • http://maldev.pcte.co

  • informe_payload.pdf
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections