Overview

overview

4

Static

static

3

hxxps___gi...ge.pdf

macos-10.15-amd64

4

Resubmissions

08/08/2024, 13:39

240808-qyd65stgqj 4

Sharing

Copy URL Twitter E-mail

General

  • Target

    hxxps___github[.]com_malvuln_RansomLord_releases_download_v3_RansomLord_v3[.]1[.]exe _ Triage.pdf

  • Size

    938KB

  • MD5

    89dccb00457a6cb423f7b6a0cd125ea0

  • SHA1

    058edc91654a2199c3f237285a18bcde705833a1

  • SHA256

    e526508344f8afb8a7c0c3beb455658af73da606e5b85c690bf251ecd4fde85e

  • SHA512

    cb9d15a05b8b57af062f3adc89a66b9839c867dfe5e8daf59be54ece591f6eef5fdc45faa16c92a5eb0aaeb630e45129b64c2dc9c6310b2405ed2ac36c0b3003

  • SSDEEP

    6144:+SNAKF+mH37Mah3hrMrJGeCQDjf2YYjnZScNCD:pN5EcQGarJPVYQeO

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • hxxps___github[.]com_malvuln_RansomLord_releases_download_v3_RansomLord_v3[.]1[.]exe _ Triage.pdf
    .pdf

    Password: infected

    • https://attack.mitre.org/tactics/TA0001

    • https://attack.mitre.org/tactics/TA0002

    • https://attack.mitre.org/tactics/TA0003

    • https://attack.mitre.org/tactics/TA0004

    • https://attack.mitre.org/tactics/TA0005

    • https://attack.mitre.org/tactics/TA0006

    • https://attack.mitre.org/tactics/TA0007

    • https://attack.mitre.org/tactics/TA0008

    • https://attack.mitre.org/tactics/TA0009

    • Show all