General
-
Target
Screenshot (9).pdf
-
Size
31KB
-
MD5
f068350ac5d8f8331d15807f4579517f
-
SHA1
ae1deeb3d0921e0f58d8b15569955069559644b0
-
SHA256
ca67ef5bc74c172f9356e321ce1ef68c2139eb5e0b86b2d0ee206d826be34b4e
-
SHA512
4fecf8448e35b417c775e7ba29a94d2880a20d245ced7763fff950c1f14554b4f8befdc6f7c0a2acd615a99be087f501dba16f0f59d65f91f46d05c853651223
-
SSDEEP
768:DS5EcTSGU8o46ceXhQZJbEVWd8KfqoeN+oUGVueujWo3fDHyo+I0s2u4Lt5:fGjZ0VWuKgAfjWnLj5
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
Screenshot (9).pdf
-
https://aka.ms/o0ukef
-
https://links.hello.g2.com/e/encryptedUnsubscribe?_r=03133b5014524742b22ce0c870a9368f&_s=8771a35167d14afea64bfe402a6cf8b5&_t=eEjeVMLjM51BoHAUni6SLGwxDG-lJ6l3fYIQ3d_N28bB6QwicWScgvPCyvzkzLF_ykitslalKXtURe6m7z2UO5dQm2AbMFgixepH7fwrhTnsnlDOYWMRZ0uwGA6PfYXI
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzjdEYvwDn1eFeiyL7Gj0W8Xnm2opMUi7YorzHGMFFElh3VOfAiNoDHMf7E96I_NKdyXHQQi39Hsdyo4EHIsZJ97-lgC2O5FVNHUg0hKegT-Tc-_Cl0K3foMAD9TfS5r0HsI4FQ6K_AzvTxcOw6DdYW4dI_rjGAzQOEo2rDnzQZxsO6zzeTJMsXD6euQcX-saLQzQlF8Mvvvh9nTOOD9_JkZoR6CZYYcW5GYY_ibvuG6pZZpJa-GkbuHoy2QVMoWXJ76j6y0Aq-5j1k6a9S8yxQapMQAYk3ZN1Ze0DXOGmfSeDjq_fV52L9oMkqun6pMKTimAwuhlg4MONJOMFMpqnMRtnsJpckdnMHJuo2VHRpt8URxXkGIssz1CHjucPkJejpf-nrRomp4q0GoQWH4-y9Bz8yeZSmG6okdWPFBHoK2m_4eh4QefmocHn_oz2Ypfu4bPK1rASOxES9iIOVQIGrnleYub4GzxW6P6dNS6ohPKvBM0yTzbXYEnifXSW8sIwKABoZcPovV4FXAKt50xlUBpn9-h8oz90YWvuHO4Bg6V
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzjjrsNGF2SDWH-y5MZDeCmcmtOFmNbeNhDJM99vsWgnToY1l_M2Yc1v8z7yKy604NHbGHbmDbkdD9GSmwFUmzIoGCjMT3cfUmxDIfn1RZl7QInha3GImcIvvpj9pXVLUmDyBzhekkbzq3hhfR85cp6pBDsbK8GRgzBvix2yJqzdU7uj9nEH99PES_TEAajwAlzZFMXXrxFDrsRfy_ueR9rrmGuRmqKK38aYiapnqnTpCMmyX3k4s4VPQEVqfcRRhoEgzRLkVNilJPhj6GmPhhPWXWqAQOrC9M_dCXnr_o89e
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzkaBdMZ9SZRIlmPXI25ADRZArpsm2yB892hfaU7fJqEgVezR76R0_dyNGaJZTY5g57Iga_WrA2wQ8SGHb2K-5tMCNR-uoU1kd5hRf1-DNGxx1y-OWqo44izGngsk42hLYKYzvp9xEtUYeOUpLvmC9XRkQAIgrn54YQI_8Q-7RtidXJ0taDhc29ksi7uXD9MwEqmBVPesP_0RKdqqcN7ABTkhSKYdeD4-LpGKrH26ZO59
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzpPioeioBTSCgvtj1nV8AnOif3KtpvToLb8tQeJZifuTHYKst4VZ01EVg9cHsEt1fKO85JyqbKBrCm3FmGSr05z1A8BF3mFmx0ODmdUzhlec5ni5sxsdU6zziS8TSvSLvJsli7mhmtTs0aPFgBYY9Ed1fdg6jvrYRH8tJbIeK9RnsxgTh1Yfe6mq4v76MRf1njHrgUo4OaKcBZtyxG0BVby3BBDpZbUN9nKRZ9zgzHW1zqMyNbrgP4qf5zOF9qB3_zccDdLzjJ1X4zYS4nX6_UKMoXb95tvrTvHGqAEpQUDN
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzu4T3dSKRC4Ts9rqHBTGUYcwGz8NEAjvYdaZZstdHJoTXDlA1ElEEPcdOisnUM3_SMsgRaW-BBeaEIRvT8zltZjnVzm8VjCtpSKtehPgSMHgPm7RmEktysXF0xMDni6U5Ng4a1s_VgVOQnoWgIWhe7lHJjfNL2ER3QicKrNms0_8i95fp3J0LFweORIba1luDn-MjNl8fjmEDk78w96U-DjMUn9c1NBDPOw6Wu1ceIABs-Z3f6BHZll1nIhw-h9TlSN7tREfSgXcvjkbwgRUyZ9hMJb93fkS6P_U-5gZjCJ-
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzuMbBL_BK2LYvQ9XdgupN17AdxmiCTTC8pYfXlMdUY9DsZzB8hSo6T_KOaXYVeMyc_gYt8fCOOsZPlWgUz9DwoJmgmoQ-wXzO_FKQqfLjxr_v2kUrIzZebZUcrz2QiytRcQRAW5RddrXwihTauWYeDvgbzIiWwauot-sNNR4uTi043Ge1_8pOw_1u1K6JO4niQ2tkMOZj_gndHY4rKrHp41sH6xmVCxCodcT7qQ1WU6uhI6Iq8XeHItyNlfLrPo3ZZ0_RGmjLtgWA_uW-Mf7_0Q*3D
-
https://links.hello.g2.com/u/click?_t=03133b5014524742b22ce0c870a9368f&_m=8771a35167d14afea64bfe402a6cf8b5&_e=mIC-19ZhBjzgFR9gZsWkzvc-7mPVsPTD4gKiK7HDpb60nobPoGgH7HZGOhLk2oAu4N8oShTuLgUO1BG5r9eT0jUc0BiBwEFqPB3j8ODm4O_BSZkG62Q89q_iacbGFLEO4luJCOnmuxvoGkTC-_ujJ6Nbugcd2khkWBgQHPIhHJ3otQ6SYQYHp3h2sfTy6cx7EgZTiarlhnNE8GLNLaz-xntJfEiAPNi4fObCl0bgIL8Fq2sDMV43dh7oQIs_pRKLTBRoMd71AvT8L72SVwYFAYYdAL2XxCR7yVcIAoZ0mqyXXO06lPYpcofSmgVCZON3sImlEz1PHApdDomTdp51Vg*3D*3D
-