Overview

overview

4

Static

static

4

Statement.pdf

windows11-21h2-x64

1

email-html-2.html

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Quarantined Messages (65).zip

  • Size

    106KB

  • MD5

    5a4e19079f760a383c6929d4ebaedb97

  • SHA1

    e7218e5b471324cd3f732da9779c2795b66010c1

  • SHA256

    82e4455ae8483e160a3b6a571d78314b4f45ded7477935b7500fe9ba9746e586

  • SHA512

    1b66f0d18f9b8274e6a7935f25f6ab6d191e10ea68f607908c99d676062ea6a1652205f467ac5052e576abb51cbe18a70d50ba4e428e75e2b1b8fc3470236a6c

  • SSDEEP

    3072:mshfjlz9FbpgiorMg10/KHmDfk1fxnXW6R+o8ff:mshRxdJorD6SGD815XB8ff

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Quarantined Messages (65).zip
    .zip

    Password: infected

  • dde1bc49-08e0-4268-9826-08dc908c3b6e/3ae5b1d3-0be8-e51a-d5dc-a58d8bcce221.eml
    .eml
  • Statement.pdf
    .pdf

    • https://sobrad-my.sharepoint.com/:b:/g/personal/chris_sobrad_onmicrosoft_com/ERj81u4-n5pOkCPGxo7ktbEBVUi948mSeOAoDn_HjPxdGQ?e=38fwTM

  • email-html-2.txt
    .html
  • email-plain-1.txt