General
-
Target
Quarantined Messages (5).zip
-
Size
365KB
-
MD5
60ab90f41952258f325c7b4764367cd9
-
SHA1
52af417e791aad603ef4024b1de80bff6d02ccc5
-
SHA256
3999f66b7bb58d282ba64048d84e6e2b28772b9c541060619f5e58e6e774027b
-
SHA512
6147cc3d1f03bc1730b2c2e53adf5d52656fa73f5dc4273d399fa3ac68ef0cec10e9e011f90e889b47dcd8c1784383a05763efe62e6faa071b050a201a0db4ce
-
SSDEEP
6144:MxXt8uxq/aV5sdOr5bncEaewsFrmQBApZDS6HCFgznK5kJi+4SDOmy4bi5v8Z7LA:MH8uxBoW5Asl3aDSYzF4h5Co
Malware Config
Signatures
-
Malformed or missing cross-reference table in PDF
Malformed or missing cross-reference tables are often used to evade detection
Files
-
Quarantined Messages (5).zip
Password: a
-
c18cdda5-3094-4b51-672d-08dca179e2cd/347f3bc3-4740-49c8-acd5-1440b407db24.eml
Password: a
-
http://www.cbre.co.uk/
-
https://bit.ly/3wCg54h
-
https://forms.office.com/e/UWgz7qF8fy?origin=lprLink
-
https://rise.articulate.com/share/ZFEIsfZ1NmoJ5DMlH-9Jx3yrcVv-xBFK#/lessons/1ZSH5wfKQGA0ce98Y2555yZrqLeRLY6a
-
https://supplier.coupahost.com/sessions/new
-
https://www.brita.co.uk/water-dispensers
-
https://www.cbre.com/about/privacy-policy/policy-picker
-
622933.pdf
-
attachment-3
Password: a
-
http://www.cbre.co.uk/
-
https://rise.articulate.com/share/ZFEIsfZ1NmoJ5DMlH-9Jx3yrcVv-xBFK*/lessons/1ZSH5wfKQGA0ce98Y2555yZrqLeRLY6a
-
https://rise.articulate.com/share/ZFEIsfZ1NmoJ5DMlH-9Jx3yrcVv-xBFK*/lessons/1ZSH5wfKQGA0ce98Y2555yZrqLeRLY6a__;Iw!!GnpIGg!dmwVdzmaTxERgSTI6cLM87IvFNftzumuSx-tss7AdFafW95WgM8o1-aK7vHqrI9RnnSGN01W8kPow889jY1AeH8i7eY$
-
https://supplier.coupahost.com/sessions/new
-
https://supplier.coupahost.com/sessions/new__;!!GnpIGg!dmwVdzmaTxERgSTI6cLM87IvFNftzumuSx-tss7AdFafW95WgM8o1-aK7vHqrI9RnnSGN01W8kPow889jY1ApiXgZkQ$
-
https://www.brita.co.uk/water-dispensers
-
https://www.brita.co.uk/water-dispensers__;!!GnpIGg!dmwVdzmaTxERgSTI6cLM87IvFNftzumuSx-tss7AdFafW95WgM8o1-aK7vHqrI9RnnSGN01W8kPow889jY1Aq6MjwgU$
-
https://www.brita.co.uk/water-dispensers__;!!GnpIGg!fFux8yiuPY2JL3HHUrou8buGpRa3ZHRne1E8HSjTXK3CmvV2pwAZ0Fnf2db7oj4S9fPEbgu0HwN0QXlqTg69cUZarLc$
- Show all
-
attachment-3
Password: a
-
https://eur01.safelinks.protection.outlook.com/?url=https*3A*2F*2Furldefense.com*2Fv3*2F
-
https://eur01.safelinks.protection.outlook.com/?url=https*3A*2F*2Fwww.brita.co.uk*2Fwater-dispensers&data=05*7C01*7CGB62_Creditcontrol*40brita.net*7Cb711e3451e474213a4fc08dbec0ac770*7Cb10f2e2ea8c34a2c9341c607cfac7238*7C0*7C0*7C638363303744783735*7CUnknown*7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0*3D*7C3000*7C*7C*7C&sdata=3DYf9udkAQa6DFUgvRyl*2FbP0oT2d*2BnIk*2F5*2F6bKX0310*3D&reserved=0
-
https://eur01.safelinks.protection.outlook.com/?url=https*3A*2F*2Fwww.cbre.com*2Fabout*2Fprivacy-policy*2Fpolicy-picker&data=05*7C01*7CGB62_Creditcontrol*40brita.net*7Cb711e3451e474213a4fc08dbec0ac770*7Cb10f2e2ea8c34a2c9341c607cfac7238*7C0*7C0*7C638363303744783735*7CUnknown*7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0*3D*7C3000*7C*7C*7C&sdata=E3JigosvL*2BGmJfQ6aJVFNvMGB8XpvVS9kTJxMdegwdo*3D&reserved=0
-
https://eur01.safelinks.protection.outlook.com/?url=https*3A*2F*2Fwww.netigate.se*2Fa*2Fs.aspx*3Fs*3D957012X297643054X53180&data=05*7C01*7CGB62_Creditcontrol*40brita.net*7Cb711e3451e474213a4fc08dbec0ac770*7Cb10f2e2ea8c34a2c9341c607cfac7238*7C0*7C0*7C638363303744783735*7CUnknown*7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0*3D*7C3000*7C*7C*7C&sdata=vcmg4kZi*2Bw5bnsoaFKeXj0XPfKCPEvBv3Fvg*2BVOyLIs*3D&reserved=0
-
https://www.brita.co.uk/water-dispensers__;!!GnpIGg!dmwVdzmaTxERgSTI6cLM87IvFNftzumuSx-tss7AdFafW95WgM8o1-aK7vHqrI9RnnSGN01W8kPow889jY1Aq6MjwgU$
-
https://www.brita.co.uk/water-dispensers__;!!GnpIGg!fFux8yiuPY2JL3HHUrou8buGpRa3ZHRne1E8HSjTXK3CmvV2pwAZ0Fnf2db7oj4S9fPEbgu0HwN0QXlqTg69cUZarLc$
-
622933.pdf
-
email-html-2.txt
-
email-plain-1.txt
-
image001.png
Password: a
-
image002.png
Password: a
-
email-html-2.txt
-
email-plain-1.txt
-
image001.png
Password: a
-
email-html-2.txt
-
email-plain-1.txt
-
image001.gif
-
image002.png
-
image003.png
-
image004.jpg
-
image005.png