Overview

overview

10

Static

static

4

ПЛАТЕ...18.pdf

windows7-x64

8

ПЛАТЕ...18.pdf

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ПЛАТЕЖНА ІНСТРУКЦІЯ_00000818.pdf

  • Size

    194KB

  • MD5

    cae56642c9652218a90cb9393ef4b1e5

  • SHA1

    e9644616a09e1d53ab5fcb1335459c270044890c

  • SHA256

    864c79228c2f3d6b15980dcb180585f7dbd7b4fe457c779e198cbf9164c25a6e

  • SHA512

    21e108daeae1df8ff0ccd0d28da179ec40605b848348774ab9cf93bfec0a52e62d8dbbfa9a48cdda431e31f4827fc628725d32d9b040453396bebd96581c6d7d

  • SSDEEP

    6144:rhzzkdi1pv2BdYgZ1VzkR9YYPfslTdCbBW:rZkdi1RkSk1VzkR9YYsqBW

Score
4/10
pdflinkqr

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • PDF has QR code that contains a HTTP URL

    PDFs with URL QR codes are often used for phishing

    pdfqr
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • ПЛАТЕЖНА ІНСТРУКЦІЯ_00000818.pdf
    .pdf

    • https://apps.apple.com/ua/app/raiffeisen-business-online/id1500897229

    • https://www.dropbox.com/scl/fi/ozp7v9qabsn133u7lezdz/scan_doc_000_132.rar?rlkey=i0taejzknelwz7e3jnkdrctm7&st=mznr1hc4&dl=1