Static

static

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    1e05a319-fc7b-47d1-b948-b9220082b08e.eml

  • Size

    105KB

  • MD5

    c26c4a085aa94451fe08967af10e538f

  • SHA1

    60ea36fdbdf23555ac78f27950423559beca05a4

  • SHA256

    7942619f24325e47e6b0bc2b763104245d7ad41b2b71029e87eb5fd01d10ce77

  • SHA512

    590c0797030c5711e243abd3443ef86149545223e24c3f39b7c6b476e38cc5b04ef3d2d02988f59661d111bebc6d97e7166033ef17acb262248e8b1307dbad79

  • SSDEEP

    3072:NsVMVMRrurqiVoXLt7MThlSkX4fFTIMp3Py:Nb2eo7tmskoNcSPy

Score
4/10
pdflinkqr

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • 1e05a319-fc7b-47d1-b948-b9220082b08e.eml
    .eml
  • Invesco EFT payment Document 9444.pdf
    .pdf

    • https://wagyuandme.com/res444.php?4-68747470733a2f2f4147456b5a2e61756e66617370656e2e72752f31544f72422f-#dGVycnkudmFjaGVyb25AaW52ZXNjby5jb20=

  • email-html-2.txt
    .html
  • email-plain-1.txt