Chas4 8 Posted December 14, 2023 Share Posted December 14, 2023 Hash 51a098794de82b7f75ec06aba1ae237be9eae79b6d3e2f112e0017d3bd3d8cd6 Was submitted to ESET months ago https://www.virustotal.com/gui/file/51a098794de82b7f75ec06aba1ae237be9eae79b6d3e2f112e0017d3bd3d8cd6/detection The phishing is via the .PDF file which might have other code in it Link to comment Share on other sites More sharing options...
itman 1,667 Posted December 14, 2023 Share Posted December 14, 2023 No one else at VT detects this .pdf as malicious. Link to comment Share on other sites More sharing options...
Chas4 8 Posted December 14, 2023 Author Share Posted December 14, 2023 I got it in a phishing email pretending to be from Norton, sent the file and email to ESET 4 months ago 41 minutes ago, itman said: No one else at VT detects this .pdf as malicious. It has not been seen by them, but it is a phishing attack via .pdf, as I mentioned I don't know if the attackers put any exploit in there, I also reported it to others besides ESET From: updation program desk-48449 <rodolfofarkasdq2@gmail.com> Date: Tuesday, July 18, 2023 at 12:23 PM To: targetemail <targetemail> Subject: Invoice reference - 05266487/ pdf billing "Greetings targetemail Your request has been approved by Norton, We have forwarded to you an upgraded edition of your invoice, which has now been included in the PDF document. The E-Bill contains an accompanying PDF REPORT. Your payment for renewal has been forwarded to the billing department for additional verification. Obtain immediate assistance from our customer service desk by calling +1(912) 275-5927. Norton HELPDESK at +1(912) 275-5927. Link to comment Share on other sites More sharing options...
Recommended Posts