Overview

overview

5

Static

static

4

EXTERNAL R...fQ.msg

windows7-x64

5

EXTERNAL R...fQ.msg

windows10-2004-x64

3

NDA_HGD-PK...24.pdf

windows7-x64

1

NDA_HGD-PK...24.pdf

windows10-2004-x64

1

image001 (2).png

windows7-x64

1

image001 (2).png

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    EXTERNAL RE ITB 4422-Hail and Ghasha fields Project (UAE) - Onshore Facilities (HGD-PKG2)- RfQ.msg

  • Size

    272KB

  • MD5

    4038d5cf5049d53d0c71e9b12054c370

  • SHA1

    77b5265d7b8890f57fadc9b90fe8ff5363ec6969

  • SHA256

    7081a54bd42da5df9d176e87b54914732d18c20981a23b9538d4cb4a0e41581f

  • SHA512

    f605e11decce505b4bfbb109146d321598e5c996facb328ec94361be15f1c7c2bb0339da78f5b58576b10db4262c5ab609183b0fc4ddccea7485df08928d92d3

  • SSDEEP

    6144:qIFD3SXrfQZGW/+URM/eXGHocxUEELN7dtPsu:qOSXbW/+URM/eXGIcxjExZh

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 2 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • EXTERNAL RE ITB 4422-Hail and Ghasha fields Project (UAE) - Onshore Facilities (HGD-PKG2)- RfQ.msg
    .msg

    • http://tecnimont.it

    • http://tecnimont.lt

    • http://tubacex.com

    • http://www.tecnimont.it

    • https://aka.ms/LearnAboutSenderIdentification

    • https://files.fm/u/b4qjxyr3ds

    • https://files.fm/u/c5c43m25gn

  • NDA_HGD-PKG2-TC_15.05.2024.pdf
    .pdf

    • https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32014R0596

    • https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32014R0596en-US

  • image001 (2).png
    .png