General
-
Target
fc417e6a9959bab2a80aa80513256540N.pdf
-
Size
134KB
-
MD5
fc417e6a9959bab2a80aa80513256540
-
SHA1
2571ea92194bb7cf4efd10e638eba89ef7f7c500
-
SHA256
bbf1f191c86208ab349ed9113047e5bcd19c0a5f84effed13ec87d77314d5183
-
SHA512
a40e7b3f8875be182e5158833bbee7fe882f8d5def6fc3c88be5025d8fbcbdfd52da795f165eff5f124bd899257bc2d6a6f6e8f5315655893a958f79c5d01778
-
SSDEEP
3072:953kiJJ0kucjCOBSgFRI6m8ZoPzZr+HcNHSN2V/bujvU4:/3BJJ0kuHOFG6m8ZEZ8cR4
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
fc417e6a9959bab2a80aa80513256540N.pdf
-
http://ftp.eta-sys.net/CP210x_VCP_Windows/
-
http://ftp.eta-sys.net/DoAsBar_1/
-
http://ftp.eta-sys.net/MyNewSerial/
-
http://ftp.eta-sys.net/SIM800_USB_DRIVER%201.1250.0/
-
https://eta-sys.com/downloads/manuals_installer/6088manual_installer.pdf
-