Overview

overview

4

Static

static

4

Play_Voice...r .pdf

windows10-1703-x64

3

Resubmissions

10/10/2024, 16:37

241010-t4ss9svgng 4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Play_VoiceMessage_ James Kantzer .pdf

  • Size

    159KB

  • MD5

    3cb36c42f413514e41f4b641d31b3199

  • SHA1

    0db59f86fd4883f114e52e84c1ff80b50d446308

  • SHA256

    f3c59bc0aaf1d9738e24e4bae532e24a850afc6f8b2983dc45a85e1f3357716f

  • SHA512

    f81e7920ababe88b154c567e889178e04c538ec8ffc7dea48984d3d9e3e72df710644e766e59654262a612df854d8c7bdf5f79ea2f6f36ca9013dcf4b2a4d360

  • SSDEEP

    3072:X4qckGkMomJt4V35RJAyRBI7+VI4torer/4eGkvk1ujK/x:ILnXM35RJAyRBs+/t7rM16KZ

Score
4/10
pdflinkqr

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • Play_VoiceMessage_ James Kantzer .pdf
    .pdf

    • http://fsstechnologies.com

    • https://followup.cc/l/11110379/476b34a3c9bba98b45c7d290e0958222/https://assets-usa.mkt.dynamics.com/b58f3f2c-8d80-ef11-ac1e-00224832613c/digitalassets/standaloneforms/56bca666-1d87-ef11-ac21-7c1e5215f6ae