archive[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

archive.zip
Size

146.6MB
MD5

6117d10c57229d40b125d49d68aacf96
SHA1

29377aad8c401507dddfa258e74c41b8c69bf242
SHA256

f0002f99920a2c32c12728f9d0f3a21e79cb4cfe089f6209029b8c88ea1e5104
SHA512

16d562c43c5a76e83f57a8bedc042c0eb36ea9ece5171c502e926dc78024cadc1fd11b883047a23e070ad06aaef8cb3f978c9f52f9b672d2bb306213cd3a4e8b
SSDEEP

3145728:eVWLhs3WK46gQ8NAwpnFozsU2QG1HIlDUUl0QOwib:eVkhs3WKYpFoziVu10QOwq

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

archive.zip
.zip
100mb.jpg.zip
.zip
100-mb-example-jpg.jpg
.jpg
__MACOSX/._100-mb-example-jpg.jpg
10mb.pdf
.pdf
20mb.pdf
.pdf
- http://.nacis.org
- http://Th.is
- http://bufo.geo.orst.edu
- http://ccmail.orst.edu
- http://csd.uwm.edu
- http://cwis.unomaha.edu
- http://essc.ps
- http://essc.psu.edu
- http://ftpnt.freac.fsu.edu
- http://gml.lib.uwm.edu
- http://gmu.edu
- http://gu.ir
- http://ll.ir
- http://lo.in
- http://maikr.fsu.edu
- http://mail.sdsu.edu
- http://mail.uwlax.edu
- http://mailer.fsu.edu
- http://mnsfld.edu
- http://n-vis.unomaha.edu
- http://nps.gov
- http://nrottmap.zip
- http://nwu.edu
- http://oregon.uoregon.cd
- http://oregon.uoregon.edu
- http://osprey.itd.sterling.com
- http://sc.edu
- http://tiregon.uoregon.edu
- http://uakron.edu
- http://uiowa.cd
- http://unomaha.edu
- http://utk.edu
- http://uwm.edu
- http://vw.avenza.com
- http://whoi.edu
- http://www.lib.lsu.edu/da
- http://www.nacis.org
- Show all
5mb.pdf
.pdf
931f7c16-f4df-40f3-9e64-535ec8ecebc9.zip
.zip

Password: infected
7894-Steve_Jobs-Walter_Isaacson-Dosd_Korpe-1997-728s-2.pdf
.pdf
- http://www.iceni.com/unlock.htm
- http://www.pdf-epub-converter.com/?e2p-b
External_test_data.tar.gz
.gz
External_test_data.tar
.tar
External_test_data/CL2002042637AA.CEL
External_test_data/CL2002042638AA.CEL
External_test_data/CL2002042639AA.CEL
External_test_data/CL2002042640AA.CEL
External_test_data/CL2002042641AA.CEL
External_test_data/CL2002042642AA.CEL
External_test_data/DP2002050117AA.CEL
External_test_data/DP2002050118AA.CEL
External_test_data/DP2002050119AA.CEL
External_test_data/DP20020612PK20AA.CEL
External_test_data/DP20020612PK7AA.CEL
External_test_data/DP20020612PK9AA.CEL
External_test_data/External_test_data_master.txt
External_test_data/HG-U133A_annot.csv
PowerShell-main.zip
.zip
__MACOSX/._100mb.jpg.zip
__MACOSX/._10mb.pdf
__MACOSX/._20mb.pdf
__MACOSX/._5mb.pdf
__MACOSX/._931f7c16-f4df-40f3-9e64-535ec8ecebc9.zip
__MACOSX/._External_test_data.tar.gz
__MACOSX/._PowerShell-main.zip
__MACOSX/._a56c2a4c0bbb9e1fa8194d547b9614fc4916bd2173865ca35acedd5c1090b102_sanitized.pdf
__MACOSX/._emrah-2
__MACOSX/._integrated-business-planning-excel-addin-vba-samples-main.zip
__MACOSX/._kubernetes-client-node.zip
__MACOSX/._parts-c7a4c0cb-1690-4798-a434-59c518746651.zip
a56c2a4c0bbb9e1fa8194d547b9614fc4916bd2173865ca35acedd5c1090b102_sanitized.pdf
.pdf
emrah-2
.zip
integrated-business-planning-excel-addin-vba-samples-main.zip
.zip
kubernetes-client-node.zip
.zip
parts-c7a4c0cb-1690-4798-a434-59c518746651.zip
.zip

Sharing

General

Malware Config

Signatures

Files

Password: infected