General
-
Target
0.eml
-
Size
434KB
-
MD5
60071bd1d2bc9d7c86c636cee83abc10
-
SHA1
cb0cf9335e0a2c163d57d2d9b8869517a8f6f18e
-
SHA256
d25705f540edfae71d4d32965555911405c91aa854605decbd8e4d631c1d37e9
-
SHA512
c7524cb2d971fe6171581f1c0d8208fc344b8c48c0bdc38c75de56a3eadd1185ba3ed47d2795e570050916e2e1fec50facb9094515be255f65a038b6d81a1ca6
-
SSDEEP
12288:TLFge8AjAqWpmk62JNkC0Ke4tndr3kiZT:fFgxXq1kTJNttnpkI
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
0.eml
-
http://tracking.shipmentconfirmmr.org/tracking/botclick?msgid=XE5j2zVWH7Ewe4RUMxPNWg2&c=1808170260701043789
-
http://tracking.shipmentconfirmmr.org/tracking/click?d=4WPkOgrrfKRz4I-mztwRRICZhsAsGIRdfYXdic5RxFaflSCLg3ClUYkAZMx5di2WYmC-EavIv5UvxMfN9hyc_683nxQ9pUDeJ2lziAbitsbrroX423Y9UJqCY_sa-wDSvw2
-
http://tracking.shipmentconfirmmr.org/tracking/click?d=GL1S0bZZG1YlCd-GEAg4QK6sxLL5ycV7d_2Gf0AIWT1dODd-2nsyPYeemWgNxqhTK677Rt1LaVbAwxUOptXg0pb03EjQtWEQ2-9shP_feIFKtKwTfUZil1L05_dfryo3k07HIw82DhfR_ih9bQQmFzI1
-
http://tracking.shipmentconfirmmr.org/tracking/click?d=YgOauU3p9p0-CN2waTZEeEczKw0fgwtB1HlLVm4u8DaBtS5uclqzBC5SA6KhEILj4kcLoOmCuNijHMvwzaVxhYE4aBSOXONLQO2tZbiGil6qv5hwvmy0ttKBAnGgFCf5hfk-WegDwEZp1jlvzCmj_bFwPciNdOKovc8fhpif1Lmc6EgvmRcZXKBbrIA-XQx_9UKE9WnZbKUW3UIGKT4jsJ41
-
http://tracking.shipmentconfirmmr.org/tracking/click?d=hK0RRGFDe2npqDMuusi6P3eQPvPLXbbz_bjeXM38VA8O9teBRNKFpeURIT38tdWyAKDv7ACh8AHrvnmgLY7m_BgeqiBKiXvueHrPYkxA_-80FUvGdTDG_LR9tfSi0Cz5dT5LVYQxUi8GNdI5eCflQeihHq28EeLWEnJmbmwddv-Ti2EL-Rmj07K8Q3GDjuKx2Q2
-
http://tracking.shipmentconfirmmr.org/tracking/unsubscribe?d=dgfWmeTrZgwZjx_1MIgZpwdKYNi9AzVSfKHhUzk9ioO54k7pRZ3_Z7AwaOjrdRU-AsoQMxY9_cnzIYlq12ueAmhfiKiALpuAXRmealWWSEDE0
-
-
e-Statement9201.pdf
-
https://pub-b74dd329eba545cb8894116f110f3a44.r2.dev/e-Statement93021.zip
-
-
email-html-2.txt
-
email-plain-1.txt