General
-
Target
Quarantined Messages (68).zip
-
Size
37KB
-
MD5
350016c7257f79e9851a9039bfac52ca
-
SHA1
d62ff081f5952378a9b8695396087184cdebe775
-
SHA256
641ff9c6834213dd36e746fa56fc5b00774dee91bb42c1f71811862fd22f6f61
-
SHA512
b5c73428fe1faa3db1e41931f8b2b804dfa2613bb01af3cc1053d2136f2fd13cb6b4a0dee682941335b409b285993c843e281d2bacd0073bd11a6f9bb3ef1b1b
-
SSDEEP
768:JQVz8fuhAfVAgqVe7Dd677AnGctVXY+fxMzsUJdq7:JczsuhuqVqDd+7r+fxp
Score
4/10
Malware Config
Signatures
-
PDF has QR code that contains a HTTP URL
PDFs with URL QR codes are often used for phishing
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
Quarantined Messages (68).zip
Password: infected
-
7d61d628-9031-47e9-41c7-08dc9f958de6/8825443f-cbe5-3524-85df-fd8579f6b005.eml
-
Thebeerstore-July 2024.pdf
-
https://gqjn.cacophon5.com/gqjn/#[email protected]
-
-
email-html-2.txt
-
email-plain-1.txt