2215079[.]pdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2215079.pdf
Size

3.1MB
MD5

2bc666b8958329c23453814215a6114e
SHA1

5e306394384d679c66f57154db25029b14551bf3
SHA256

d21a2f9af2ff0bead7b56953cb3579226d7b0a4421807d770c07fe641ed250f1
SHA512

86926ca8850935382b4f54cd824025e24050ce810ba20bf957430d75b93bffd2f14ea3d76f53836d6af4e1e97768a96a2eb1fedc967889632f4cae5d6164b360
SSDEEP

24576:XVgi3BLcAcdBP4cV2VBFTFRJVKM+y310BVBMpWqUOc5Wlvu/VNg2KASX5zr3zQ9U:XVv3tkTWxX1G0hZc0UlmdrEw1Ur2

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

pdf link

resource	yara_rule
sample	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

2215079.pdf
.pdf
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=03DB1A45-DD95-4391-9486-26FF7E39296A
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=0C642C72-D802-4BBC-9D1F-87EF00EC2F04
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=0E191DFE-6D6B-4461-852E-1C40CF07562C
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=1E127B62-B82E-456D-BDD8-F7F8C189B3F3
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=1EBC208A-9725-4096-9F28-C8AAC6C1A06F
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=241041E4-C6E9-4348-BDC2-CCE61FCF85EC
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=3DB743A4-2EE2-43C3-9C79-F047715CE65F
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=3F87F11F-401D-444C-8A95-938FE5A83C43
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=44EBF254-7A63-4A7D-9D10-869C58C3F3AE
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=5388F150-3B87-4D84-A7B3-9CAF65635710
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=539C40DF-4707-48B2-A74E-F96D7798AC3C
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=54169C22-104E-469E-95AF-93F74833D414
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=5A86AB5D-E538-42E4-AA0B-8C8F9522C897
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=69346443-0F36-4378-A5A1-7B78E24095B5
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=7B6353A2-9F61-4626-9A80-295D7AD74E09
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=7CFAB3D2-BADE-4B77-95FE-9B2FFAE455D0
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=7E4A8E1C-D51F-4B8F-A368-E76FBE1547DD
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=88752017-3003-4434-B182-B712E5922B37
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=8BADED1B-84E2-46C3-8F00-5AE52A35AC48
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=8DAAF72B-996F-4C3E-853D-26E62AF05AD8
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=94683AD7-6459-4051-8E26-DAE44585C529
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=964F9A46-69F1-4805-B2C7-61E22E43BEC7
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=9BDB2D29-FBE6-4F20-AA7C-58B6EECA67BC
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=A1C97677-CC6A-4D72-A2CF-CBDA265203F2
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=B08D0F2D-95B3-48F3-AADE-35378DF41A89
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=B0B98B6C-25DA-46B3-BC29-07182957227B
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=B4535EAA-B048-4883-8E3D-20F409F5E8EA
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=C2765B47-5225-4B27-BF76-CC45021C5A8F
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=C7DFACE9-60B3-4A47-ADCD-3F0F6EC821FF
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=CA489115-EE01-4227-A5D5-A7E029EFEA70
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=CABCB620-1D42-4BEC-BAF0-42AC879CB777
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=CBE17FB3-95A1-4B42-BF03-255E5634C824
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=DB81A5F0-1972-43A0-B6BB-59EEA384729D
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=DFDB5ED4-4F2E-43E0-94E7-38A17FC8EA58
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=E44F1819-6D81-4CAC-BEC0-BC036904351A
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=EC5C608B-EB1B-47E5-B19A-D55D66918146
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=F2D26700-73B5-4A31-A125-386C00CC64F2
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=F61393DF-A5A9-40C2-963D-E7F4365946E8
- https://invoicearchive.osm.no/InvoiceArchive.ashx?id=FC4A6E0E-5203-47B7-8967-5825B4D412F2
- Show all