General
-
Target
02b6b2a489064005e6465a49e256c7a0_JaffaCakes118
-
Size
345KB
-
MD5
02b6b2a489064005e6465a49e256c7a0
-
SHA1
673f8f916f5bcdc7ea2913b2d7005cf7bedb521e
-
SHA256
4ef10dde9e331100c2f699f90b9dc5382dee656942b8fe18cd662fed61ee93a2
-
SHA512
f981826724d4122973fc1c441b839da957a94c8e0681db4d5f5b0755a32a393e1face260a45dab6eade6044f0c50f17e19d21fc0a5f0f9af038a01fa92bb3357
-
SSDEEP
6144:wd2lc6ag3FkQ/rGO5nD4S8lFAkddK4enqMbhxJBiNC9YxMcHOyXD4V9erCKyPlD:jlcPm/rGO5nD4SIAkdhwqMbXrGfxMwOl
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
02b6b2a489064005e6465a49e256c7a0_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%BC%D0%BE%D0%B4+%D0%BD%D0%B0+%D0%BC%D0%B0%D0%B9%D0%BD%D0%BA%D1%80%D0%B0%D1%84%D1%82+152+%D0%B0%D1%81%D1%81%D0%B0%D1%81%D0%B8%D0%BD+%D0%BA%D1%80%D0%B0%D1%84%D1%82&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802401_gta__mta_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802633_wasteland__2_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802918_karta__metro__moskvuy_.pdf
-