Static

static

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    EXTERNALCorrected Cash Flow Statements.msg

  • Size

    66KB

  • MD5

    e6f2632b344e7cd2bc2bda086090ada2

  • SHA1

    2171f8c2151dac925f9b445d12cd81a9afd2045d

  • SHA256

    6902336df90cb9803d34ec82dd94ce754b69bc1b2e829aa23f5abf20efb8526d

  • SHA512

    f1b24e48b4866952cc2f65bf48687f2a05d7275ea2712a8fe538045052646f396d2b79d3bd54322b3f2fb466fa02232a8167fb08e835ad8dc63429532d4488b5

  • SSDEEP

    768:htlB6dsKZVGFAGEEJtvUlmn2FkeBJjRsfwG3/oamyykG5vCGfgQRu4eM:UrGFAGEEAFkujAQCy3gw

Score
4/10
pdflinkqr

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • EXTERNALCorrected Cash Flow Statements.msg
    .msg .pdf polyglot
  • DropBoxQrCode8.pdf
    .pdf

    • https://savagefarrier.com/contacts.html?colors=YmV0dWwuYWx0aW5va0B0dXJrY2VsbC5jb20udHI=