General
-
Target
REVISED PO.pdf
-
Size
467KB
-
MD5
729b5c2e8616e0a10818adb95dffbfe2
-
SHA1
baac15242b59ed33281b066107c797dcb0335fc6
-
SHA256
d702b3f20b8be2f8a3f61fd14354056b4bdd55b3e8d90b76082fab77353f74ec
-
SHA512
941f4e04a95c5175837a2ac07f4b96054feb5bcaf0308af3f79569570b9c634d94ddcd2e4949ef83b6fdaa6487974c32dd4dc627c23b31c19368f4782c361442
-
SSDEEP
6144:o3DZe7iHQFjkRqMwMTQhX8594qUM9OwpXHdXC9hXVBmtphuj05ICtIDUV+QZUd5S:GDZepnwcuSqvXHokhujrCiIhUfQNd6U
Score
4/10
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
REVISED PO.pdf
-
https://cdn.discordapp.com/attachments/897446870190800920/1273149440173150218/PURCHASE_ORDER.zip?ex=66bd9050&is=66bc3ed0&hm=ef84c7ad559658e2a30de6c809d284cd431429fe0797a02f7c86f6a59f70f335&
-