General
-
Target
FW [MAI Construction] DocumentIV- REF-#035735 (19).xlsx_Full__Noticy_731301_Final).pdf.eml
-
Size
1.4MB
-
MD5
388ed5c8abec8e4ec5df490d91ca8c29
-
SHA1
be43bf555dbed92f278ebc5106e089c6af87131a
-
SHA256
bbd1db770935226ca380aeaecb3a9566339b1746ece0aa6bef73eb2f81594c3b
-
SHA512
990b86c3998f9b9ad2a7dbfc94de140c23576bd46c7a09c5316070bb877247242a25a567e9b60fd2d67da947cacb5992f7786b501eabddc455bb66ca4a0fe8ce
-
SSDEEP
12288:SIwy1F7k+fPosQeSfnwywu+yQ7F8zmH8dJJNm8bSrCPxkQJuHGXfy8jNuP0fT2xM:Lk+fPcQ7F8zmMJuyvY2fQcfqx14nPo0
Malware Config
Signatures
-
PDF has QR code that contains a HTTP URL
PDFs with URL QR codes are often used for phishing
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
FW [MAI Construction] DocumentIV- REF-#035735 (19).xlsx_Full__Noticy_731301_Final).pdf.eml
-
http://www.maiconst.com/
-
https://maiconst.com
-
https://twitter.com/MAI_Const
-
https://www.facebook.com/maiindustries1
-
https://www.instagram.com/mai_const/
-
https://www.linkedin.com/company/mai-construction-inc/
-
https://www.maiconst.com/
-
-
MAI Construction_SKM_U78WWW333.pdf.pdf
-
https://615b8a2b.alltrashwork2022-4aa.workers.dev/?emai=bGdhcnRuZXJAbWFpY29uc3QuY29t
-
-
email-html-2.txt
-
email-plain-1.txt
-
image001.jpg
-
image002.png
-
image003.png
-
image004.png
-
image005.png
-
image006.png
-
image007.png
-
image008.png