General
-
Target
df4cf5fbef381df9e60d6f3303bfec37_JaffaCakes118
-
Size
80KB
-
MD5
df4cf5fbef381df9e60d6f3303bfec37
-
SHA1
0c29505e40c73b2fa879632d42ab0651a4872238
-
SHA256
72d152b62e23aea6da233d0d4adb1ab89da06d125e5302feb870ec592dfb1db8
-
SHA512
1ea70610ca1fb92c05d8ad834036c48a5ec6a71b36e2e0b3b96d1248b90bd122fee88110d711cb4cfad169e6fc8539b9c94756dc541ca4f8482916d94e673e50
-
SSDEEP
1536:INgAapFF6QkeNZ++E6jCjN1VmqsQ7zt44nhQBD6Of2t3KYsI4IVfcMrBdlWsltY9:qgAavhk6ofTNXBV7zVnuBD6F3jMFUBdA
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
df4cf5fbef381df9e60d6f3303bfec37_JaffaCakes118
-
https://feedproxy.google.com/~r/Uplcv/~3/YTWXjIUwRh0/uplcv?utm_term=railway+ticket+reservation+form+pdf+download
-
https://digireg.nz/upload/90715199403.pdf
-
https://movesforfree.com/wp-content/plugins/super-forms/uploads/php/files/6k7kunlcvke7h92dd3udgs6da3/xigikivelufuxerarira.pdf
-
https://spencershaulageltd.co.uk/wp-content/plugins/super-forms/uploads/php/files/5a9a5fd4fd375b5ff0346f73884fae7b/ranetakepupaw.pdf
-
https://www.rockandroll.blog.br/wp-content/plugins/super-forms/uploads/php/files/s0siu4gnm5mbaa6bsbf20npi3n/gijojogamojodagiginazuk.pdf
-
http://www.bewegeninarnhem.nl/wp-content/plugins/formcraft/file-upload/server/content/files/160701a236a7ea---54132071922.pdf
-
https://carstenrath.com/wp-content/plugins/super-forms/uploads/php/files/96knc32o7e2t4krfd2vpcigchr/bosalabulidemozosivusevum.pdf
-
https://earplighting.com/wp-content/plugins/super-forms/uploads/php/files/797784cabead59f1467a9689749d7749/lonajabinokonufisek.pdf
-
http://ganan10.co.il/wp-content/plugins/formcraft/file-upload/server/content/files/1608f9892068c6---52534627750.pdf
- Show all
-