Overview

overview

4

Static

static

4

payroll_02...pm.pdf

windows7-x64

1

payroll_02...pm.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    attachment - 2024-07-05T173115.204.eml

  • Size

    82KB

  • MD5

    81bc783bfef503093ac7e228a4a1fcbe

  • SHA1

    341a0ee895c9056f14cbf7d72b88823c0676a6b2

  • SHA256

    37e3d386c884d6695e6d3baceab8ab72727d0b4e03a984f6be6faef1f818bbcf

  • SHA512

    da8a29212e396be06f604eb57b243de5167e3b895d5bca025344026624ab06cfda92eaedaa1919d6e05403827248960a56d1aa98d13eed067266fe5145daafc0

  • SSDEEP

    1536:WUowUGpLG9/TOkHurghUZyFX+bsqOp2lgzOnQxovdCbt/24BmQsL8pN2sz:BGVNOEhb+bsdpzzm1UVlBmQwBy

Score
4/10
pdflinkqr

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • attachment - 2024-07-05T173115.204.eml
    .eml

    • https://url.uk.m.mimecastprotect.com/s/x9YqCqYR3UZOv1qCZt-Nv?domain=tarkett.com

  • email-html-1.txt
    .html
  • payroll_02min_06secs-06pm.pdf
    .pdf

    • http://Security.cloud

    • http://www.symanteccloud.com

    • https://​fidellybsg​.com/10.html#bG9yZWRhbmEuY2hpdHVAZGVudG9ucy5jb20=