Overview

overview

10

Static

static

4

d9f0268cba...5f.iso

windows7-x64

3

d9f0268cba...5f.iso

windows10-2004-x64

3

out.iso

windows7-x64

1

out.iso

windows10-2004-x64

1

PANDUAN_PE...AS.lnk

windows7-x64

10

PANDUAN_PE...AS.lnk

windows10-2004-x64

10

PANDUAN_PE...AS.pdf

windows7-x64

3

PANDUAN_PE...AS.pdf

windows10-2004-x64

3

PANDUAN_PE...AS.ps1

windows7-x64

10

PANDUAN_PE...AS.ps1

windows10-2004-x64

10

controller.exe

windows7-x64

10

controller.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d9f0268cbaa1ae45dfa755adab9dda2d8bdff3c8bf8a00d23bbc6894c28e225f.iso

  • Size

    301.3MB

  • MD5

    f3e410928fecf68cec98236d1bf0598d

  • SHA1

    ca8e7f70b35fe202eba3cb7b52cc5967eca32d47

  • SHA256

    d9f0268cbaa1ae45dfa755adab9dda2d8bdff3c8bf8a00d23bbc6894c28e225f

  • SHA512

    413f7fe44bab520764a54514730226492231b648542e98aeb0d2e38eb3adf4fb9c4d811e1a8965194fe02d2f724c499119891121a9c38acad4b3ded6989f9f7a

  • SSDEEP

    6291456:btfHLnhapc6UQ5cBe4raaM7N+2i35r6pLOfEL44i:pfdapc6FEWk5rei8L43

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 2 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • d9f0268cbaa1ae45dfa755adab9dda2d8bdff3c8bf8a00d23bbc6894c28e225f.iso
    .iso
  • out.iso
    .iso
  • PANDUAN_PENGGUNA_MyKHAS.lnk
    .lnk
  • PANDUAN_PENGGUNA_MyKHAS.pdf
    .pdf

    • https://mykhas.icu.gov.my/login

  • PANDUAN_PENGGUNA_MyKHAS.ps1
    .ps1
  • controller.exe
    .exe windows:6 windows x86 arch:x86

    77a60604dca2de549db1ee79955a07a6


    Code Sign

    Headers

    Imports

    Sections