Static

static

4

Resubmissions

20/06/2024, 13:56

240620-q87ansvgmp 4

Sharing

Copy URL Twitter E-mail

General

  • Target

    БПЛА-2024-итог.pdf

  • Size

    400KB

  • MD5

    a28e394aa40860c3ca59799ba0eb6e06

  • SHA1

    a4a44ea1d7b128cafd6852f65bf0e09c531c0bdd

  • SHA256

    5acc17ffcc724384b7d49e34db58ec523fcd0c0f5c607f692702bb1979f2d345

  • SHA512

    cc378b7b40ec068d3381afc09ef72a758a5dc43d322a59a2d10a6a77cc2f32e26145c3fdd8e75a1cbb5b4e8cb7c0cfab203f7869315e6924fcb1b0fcefa41fc3

  • SSDEEP

    6144:ZmFUMavbmo9P4fl/ZRYImUxG/Ay9Sdfsgky8VTaiW9ee2ISBBaH+JsV5nz:6C6oyf9ZiImklsg98xSlAaHG25z

Score
4/10
pdflinkqr

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • БПЛА-2024-итог.pdf
    .pdf

    • https://signalhound.pro

    • https://signalhound.pro/