Overview

overview

7

Static

static

4

Cumminsced...nt.pdf

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PW_infected_Cumminscederberg-In-Service Agreement_pdf.zip

  • Size

    85KB

  • MD5

    86dcf0cc8a18e7d3612199a55b291f98

  • SHA1

    6999828c81da5d37fa44e71f21459f46922e6856

  • SHA256

    764f1d923c530126c9e4b1b214fe349387a49c68f93d6724ba46b4dfb63e0153

  • SHA512

    c05353b772788a5250677f508f72aed03883ec199592f9e165907fd49ec647126d0b5e9eb81b5f8fbb04fe936b7306bb14028b3d66b9b12cf43f4de402a492df

  • SSDEEP

    1536:FdPH5Nbqbaxa3248O4zcjcAt+pXdHx1exxHjkzu6OVuRrJJJ8sLQhaE:hNGB24B4AIAtOlxQfVu3JNW

Score
4/10
pdflinkqr

Malware Config

Signatures

  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • PW_infected_Cumminscederberg-In-Service Agreement_pdf.zip
    .zip

    Password: infected

  • Cumminscederberg-In-Service Agreement.pdf
    .pdf

    • http://fundingbenefit.economicsaid.com/#ZGlyd2luQGN1bW1pbnNjZWRlcmJlcmcuY29t