General
-
Target
You Have an Important Message.eml
-
Size
136KB
-
MD5
127d4da6769942904d270f2ba6e65df6
-
SHA1
a07656efdb04043af97ccc46c6f85fa800e2d90d
-
SHA256
7e7749b322022b5b271295744893a913948c39cdd72a9179ead601089a8f5e41
-
SHA512
a26d708918b7f896b64ba76c14d9e60368447136ad4c29b58e26b77f47d187a4aebd80a22959369578144ca904326d6a4d7aff151ed2a9211e85ae56676735e5
-
SSDEEP
3072:0tNj4/6UhuLKklYbv5jseLmc2qyfs1iJ//6l2i:0tNj4/U7ijVmAyfs1SnKp
Score
4/10
Malware Config
Signatures
-
PDF has QR code that contains a HTTP URL
PDFs with URL QR codes are often used for phishing
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
You Have an Important Message.eml
-
Message.pdf
-
https://intellzar.eu/login.cdn.microsoftonline1.3018201000000.session
-
-
email-html-2.txt
-
email-plain-1.txt