Overview

overview

5

Static

static

4

DIAN notif...os.eml

windows7-x64

5

DIAN notif...os.eml

windows10-2004-x64

3

ESTADO DE CUENTA.pdf

windows7-x64

3

ESTADO DE CUENTA.pdf

windows10-2004-x64

3

email-html-1.txt

windows7-x64

1

email-html-1.txt

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    DIAN notifica que sus activos y cuentas seran congelados.eml

  • Size

    143KB

  • MD5

    09f8e4cde8fd0a2a28b4eefdb0d51fa2

  • SHA1

    db741aca6e94c6cb58b78bf443403c2aacdf1ba7

  • SHA256

    fb72cc49d0eb81dc3bf5a829f2d0e2476cd4da58681c1e9d5ce67498783b5321

  • SHA512

    725521dfff6c7fa770030aa5173e3bdcc862358165b581234dfec863f9a407e5a685ecb1938f94db61792753e6874c033071d86f3032881bfe44afe0cf5754cf

  • SSDEEP

    3072:Y5uM52XSQZPeZgFHIr2HPgTCHq6S3dR/9Dj:Y5nUCgiglIr2HNytR/V

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • DIAN notifica que sus activos y cuentas seran congelados.eml
    .eml

    • https://26cw2che.r.us-east-1.awstrack.me/L0/https:%2F%2Fagendamientodigiturno.dian.gov.co%2F./1/0100019018bbb609-77f58147-36a1-4933-80d5-18ff74e08d8a-000000/XWPfBLGs6YhfzjCle2VTZot7TYU=378

    • https://26cw2che.r.us-east-1.awstrack.me/L0/https:%2F%2Fwww.dian.gov.co/1/0100019018bbb609-77f58147-36a1-4933-80d5-18ff74e08d8a-000000/dsnZ1EHjgg7iDC7Lkad1W6rZXvA=378

    • https://aka.ms/LearnAboutSenderIdentification

    • https://gtly.to/ifXbuwx8a

  • ESTADO DE CUENTA.pdf
    .pdf

    • https://gtly.to/ifXbuwx8a

  • email-html-1.txt