General
-
Target
1298d7db71ada59101d0efa302be6b9f_JaffaCakes118
-
Size
359KB
-
MD5
1298d7db71ada59101d0efa302be6b9f
-
SHA1
6bd0590ea6aec4d49319f661a08d9979eb39d809
-
SHA256
cf3b89bc368c6e7e92f9743cac1659c00c2c3ddc824598afb17e5701861ab502
-
SHA512
13a92f845c828c8dce9ea8a4e19f7468022e97324dd92e50bf8820f76b1d98ba94d6f32a50fa114445412a93e65d5902789ede54ff0d1b18527fd17445cc905c
-
SSDEEP
6144:L35bqVTM/9BFJ6VuBPiNX5ICz+3iJI89qlaAuMu67PMQWp3H2UirydROBfpCQ:LBzxJ6wB6NX5Jzfa89q8kB7kQWp3PQya
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
1298d7db71ada59101d0efa302be6b9f_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B3%D0%B4%D0%B5+%D0%BC%D0%BE%D0%B6%D0%BD%D0%BE+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B3%D0%BE%D1%82%D0%BE%D0%B2%D1%8B%D0%B5+%D0%BA%D0%BE%D0%BD%D1%84%D0%B8%D0%B3%D0%B8+conky&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/6//4726/4726726_istrebivshiy__magiyu_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4725/4725224_beverli__hilz__90210_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4725/4725791_koduy__razblokirovki__bannera_.pdf
-