General
-
Target
034d5cd0891b529aa073a36916a358dc_JaffaCakes118
-
Size
185KB
-
MD5
034d5cd0891b529aa073a36916a358dc
-
SHA1
6baa3758339d3dff2ba45c6456f785cfdc358eae
-
SHA256
7cce4f0fc0368eebfeb85c6811bbe52161a6c1dca9fd41d2ee1841c01678f947
-
SHA512
20ccf8e8829eb7e59687880aefb90b56a5d5d5d1afb7563177f2dff9f938e4a6789cfaf31a7e82229f7f515dff338a5ee565a7d6499aff4be56079055e22cf16
-
SSDEEP
3072:h2irbxzGAFYDMxud7fKg3dXVmbOn5uA6Kjnaz7QsVWqx+bRT0gfaFzSz:h2MKlWQ7Sg3d4bORS7PXO4YL
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
034d5cd0891b529aa073a36916a358dc_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+siemens+advantiq+x10+44+%D0%B8%D0%BD%D1%81%D1%82%D1%80%D1%83%D0%BA%D1%86%D0%B8%D1%8F&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184730_si_sharp_skachat.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183251_ciklicheskiy_algoritm_blok_shema_primeruy.pdf
-
http://www.liveinternet.ru/click
-