Overview

overview

4

Static

static

4

Contract_A...46.pdf

windows7-x64

3

Contract_A...46.pdf

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    phish_alert_sp2_2.0.0.0 (24).eml

  • Size

    80KB

  • MD5

    f859add1d30626982c8a77422cc68b83

  • SHA1

    efeb23e020c66351b6e3c1c30001bffe345b0ef7

  • SHA256

    dbd9aab39edcd19caaba69b79200ab833465a640e077067039e9d5cde71203f2

  • SHA512

    8c704a96e32d19602d5779fc7b1dafd5f49237b85b5f3add903e34b4020fe536328d1b960203e706732bb492e31df6af605dd9f20461b7e8d2dd1b27e237dba6

  • SSDEEP

    1536:VL4dPn2HPnpIGwp+dHqHrpx0mHEb/KGQNHqrAm+0gyPtcQ5pAoh1je+I:/qHFRHEUNHq0rkPtckpAonji

Score
4/10
pdflinkqr

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • phish_alert_sp2_2.0.0.0 (24).eml
    .eml
  • Contract_Agreement146146.pdf
    .pdf

    • https://www.ieha.org/eht/ctrack.php?i=191&u=https%3A%2F%2Fgazicomputer.com%2Fcig.bin%2Fpng%2F6AG8-PAPG4I-KMV7%2Fc2FtLmFsZGVuQG9wZW5leGMuY29t

  • email-html-1.txt
    .html