Overview

overview

4

Static

static

4

a9d5ad2a-9...20.zip

windows10-1703-x64

1

3000381523930_.zip

windows10-1703-x64

1

Пульс...1).pdf

windows10-1703-x64

3

Ц_1_29867...24.zip

windows10-1703-x64

1

лист �...».pdf

windows10-1703-x64

3

лист �...df.p7s

windows10-1703-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a9d5ad2a-9d38-4b2c-b3b6-c9e97017ba20.zip

  • Size

    6.8MB

  • MD5

    c0b2e804a138ae0a0327d4b96ad9bfe3

  • SHA1

    f644337ca4a57bad2ad8d63d1b87d35505d61f51

  • SHA256

    a942b9a227aa8468cf0b6848d961a4a65b01b4c522415950ac24363bc97169f0

  • SHA512

    ee81c3df6363637a04112b3eb49a39d1ef83decf67398780046b078cdad225c92becda4baf2e6e973681c9d99f0808854ed8903cd4191507f01cd006934060e1

  • SSDEEP

    196608:kLVhEDbaP3C0sBD4LrzmEv4/+xEKyluiz:kVDP3JO+2EvLylFz

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • One or more email addresses in PDF identified

    Detects presence of email addresses in PDF files.

    pdf

Files

  • a9d5ad2a-9d38-4b2c-b3b6-c9e97017ba20.zip
    .zip

    Password: infected

  • 3000381523930_.zip
    .zip .pdf polyglot
  • Пульсбанер (1).pdf
    .pdf
  • Ц_1_29867-24_26_09_2024.zip
    .zip .pdf polyglot
  • лист на ТОВ «НОВА ПОШТА».pdf
    .pdf
  • лист на ТОВ «НОВА ПОШТА».pdf.p7s