General
-
Target
03189d0f6fe29640832803d8081b00fe_JaffaCakes118
-
Size
185KB
-
MD5
03189d0f6fe29640832803d8081b00fe
-
SHA1
817816e79641f818958474ebd7846cb500bf0dbe
-
SHA256
97e939804deb23106357292d5bf4330e982126e047c67d28cc9802e3ac32f5d4
-
SHA512
aa27e85efacf74d161c682939ba9106fdfe7c583e3ae290d969cc8666788e2690ea83effc19de0a1c5f561d2737131ae949f28c793d4081d8add70480b83042c
-
SSDEEP
3072:G2irbxzGAFYDMxud7fKg3dXVmbOn5ua6KjnnQVSrDGBqaamaWynSg:G2MKlWQ7Sg3d4bOzQVuy+Yi
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
03189d0f6fe29640832803d8081b00fe_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B2%D1%87%D0%B5%D1%80%D0%B0%D1%88%D0%BD%D0%B8%D0%B9+%D0%B1%D0%BE%D0%B9+%D0%BD%D0%B0+%D0%BA%D0%B0%D0%BD%D0%B0%D0%BB%D0%B5+%D1%80%D0%BE%D1%81%D1%81%D0%B8%D1%8F+2+%D0%B2+2100&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384175_video_stuyd_porka_vospitanie.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384428_korkonosenko_osnovuy_zhurnalistiki_skachat_besplatno.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4383/4383981_skachat_chituy_dlya_css_v80.pdf
-
http://www.liveinternet.ru/click
-