Overview

overview

5

Static

static

4

DIAN notif...os.eml

windows7-x64

5

DIAN notif...os.eml

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    DIAN notifica que sus activos y cuentas seran congelados.eml

  • Size

    143KB

  • MD5

    1c283e9ede3528764cf853d3c8b80f24

  • SHA1

    bb067e27dd48d19e86921c7c3e70c6c900e18a35

  • SHA256

    c932b2bc78d0cf2bd8f1ef2fe1595be26d1ab2515e7e48677d3501239ce9c2d3

  • SHA512

    e15c0516c02d0eba6c0a9bb991e9f9831fdd8359999f79b42bd546722a7773ba02ce15e98d6ee35fa0dfe49322a31fb4256f98899d705d6d43e7ab80e71cc0d6

  • SSDEEP

    3072:Nb3Cz5bSWZPeZgFHIr2HPgTCHq6S3dR/9Dl:Nb3W5OmiglIr2HNytR/b

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • DIAN notifica que sus activos y cuentas seran congelados.eml
    .eml

    • https://26cw2che.r.us-east-1.awstrack.me/L0/https:%2F%2Fagendamientodigiturno.dian.gov.co%2F./1/0100019018bbb609-77f58147-36a1-4933-80d5-18ff74e08d8a-000000/XWPfBLGs6YhfzjCle2VTZot7TYU=378

    • https://26cw2che.r.us-east-1.awstrack.me/L0/https:%2F%2Fwww.dian.gov.co/1/0100019018bbb609-77f58147-36a1-4933-80d5-18ff74e08d8a-000000/dsnZ1EHjgg7iDC7Lkad1W6rZXvA=378

    • https://aka.ms/LearnAboutSenderIdentification

    • https://gtly.to/ifXbuwx8a

  • ESTADO DE CUENTA.pdf
    .pdf

    • https://gtly.to/ifXbuwx8a

  • email-html-1.txt