Overview

overview

3

Static

static

3

Factsheet_...se.pdf

windows7-x64

3

Factsheet_...se.pdf

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    Factsheet_indicators_of_compromise.pdf

  • Size

    502KB

  • MD5

    f3b060feee83302ba20dc90ec83936ad

  • SHA1

    3be0f835aedb931546e3569e970aaeb9c2d45bcc

  • SHA256

    91da468152f42b17463275965f8d58f2a50f797dcd155ab257caa00e6326ed61

  • SHA512

    ce9f6b946e717cf2e9fd2b6c7afbd02ba672d4a2c3fde16d39a0a1c5c6fc802fe31249d21b163f8846ce199a4b4bb8800c406dd4ae0b2be8f38dfebb525acae2

  • SSDEEP

    6144:QQU3+ZbWEaIw74ci7KwfskV3Pmjn6RJ8NBD5UaNzwEOishL2UxcYIZ/dHplivi22:zUMHwEchlkOn6R2bHNz5OjhLTxCLiel

Score
3/10
pdflink

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Factsheet_indicators_of_compromise.pdf
    .pdf

    • http://en-USwww.ncsc.nl

    • http://ncsc.nl

    • http://suricata-ids.org

    • https://plusvic.github.io/yara/

    • https://securelist.com/blog/research/68732/the-great-bank-robbery-the-carbanak-apt/

    • https://www.bro.org

    • https://www.fireeye.com/blog/threat-research/2015/09/synful_knock_-_acis.html

    • https://www.first.org/tlp.

    • https://www.ncsc.nl/actueel/whitepapers/handreiking-voor-implementatie-van-detectie-oplossingen.html.

    • Show all