General
-
Target
17633685334.zip
-
Size
3.9MB
-
MD5
e4ebba40c4b9d08d4232ad47b6704c5e
-
SHA1
82b64a31a137336913f82ffa43a18c4eb3ec8ea8
-
SHA256
0f23fdd687d78e44bce7fc79543fcaab5292e1384e2fbd5d4f09da204e8ede40
-
SHA512
8d792884b1ff0196dc28cce775c8e913feb66bc7d247696e20f04c9488b042deb0e2b7542441258effdae4c8820f1051e06461ec578c7d1978091f27a14b3db6
-
SSDEEP
98304:uGPw6UaaYijO+Iyg07O4gA14tQunGbfRfP:lPwx1q+xSuP
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
resource yara_rule static1/unpack001/d5e91249195da67096c0f99c659bce65587737e8ee4169fc7bff02531932eea0 pdf_with_link_action -
Office document contains embedded OLE objects 1 IoCs
Detected embedded OLE objects in Office documents.
resource yara_rule static1/unpack001/d5e91249195da67096c0f99c659bce65587737e8ee4169fc7bff02531932eea0 office_ole_embedded
Files
-
17633685334.zip.zip
Password: infected
-
d5e91249195da67096c0f99c659bce65587737e8ee4169fc7bff02531932eea0.xls windows office2003