General
-
Target
0999a1d1fb8cb8290670b95adebe0702_JaffaCakes118
-
Size
186KB
-
MD5
0999a1d1fb8cb8290670b95adebe0702
-
SHA1
e8591c0b92a336743489f9cb0bd33fef958e98e8
-
SHA256
49fed7c0aa3c16a14be5c65e2d72d5ec5d6d5474aa94dc26fa9ac12374b6e8f2
-
SHA512
1334ac91e01b0e666b8e090b48502e70b4b36a01b7bafac5683adea6ed8c2257194f5b2085ad10c580f51ab9b7fc2e305f86943b5a17f7941147565f6b78ed2c
-
SSDEEP
3072:Ib2irbxzGAFYDMxud7fKg3dXVmbOn5uo6KjnnQvzv911+kK0oMV1AkSK:i2MKlWQ7Sg3d4bOVQvw0B
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
0999a1d1fb8cb8290670b95adebe0702_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B4%D0%BE%D0%BB%D0%B6%D0%BD%D0%BE%D1%81%D1%82%D0%BD%D0%B0%D1%8F+%D0%B8%D0%BD%D1%81%D1%82%D1%80%D1%83%D0%BA%D1%86%D0%B8%D1%8F+%D0%BF%D0%B0%D1%80%D0%B8%D0%BA%D0%BC%D0%B0%D1%85%D0%B5%D1%80%D0%B0+%D1%83%D0%BD%D0%B8%D0%B2%D0%B5%D1%80%D1%81%D0%B0%D0%BB%D0%B0&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304459_koduy_dlya_kanalov_sputnikovogo.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304462_rukovodstvo_r_22200605_skachat.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304465_igra_s_tablicey_umnozheniya.pdf
-
http://www.liveinternet.ru/click
-