General
-
Target
15dc4cfc61722710ca55d373ee44bbf7_JaffaCakes118
-
Size
185KB
-
MD5
15dc4cfc61722710ca55d373ee44bbf7
-
SHA1
97087ad05ed0a083d70ec26998bd900ec6cbadd6
-
SHA256
bfa158c6205f61fcf9f78ef466ff2e3e791ae3d43ec43fb6c23aafdc40049e43
-
SHA512
dbbea45dd76795a5e097f4efbf689e28de4d9d1d12cbda884dbfb945b6cf5f7961731e172446fb251c0a9c77d7c85b24211b2cf7f289e760cb20c89dd21927e7
-
SSDEEP
3072:d2irbxzGAFYDMxud7fKg3dXVmbOn5u66KjnHp1fHAFofNy4S5smw5bAJSo:d2MKlWQ7Sg3d4bOPjPAGw4Sq+
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
15dc4cfc61722710ca55d373ee44bbf7_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BC%D0%B5%D1%82%D1%80%D0%BE+%D0%BB%D0%B0%D1%81%D1%82+%D0%BB%D0%B0%D0%B9%D1%82+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384030_proshivka_modema_e1550.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384237_portable_coreldraw_torrent.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384480_semyanin_skachat_besplatno.pdf
-
http://www.liveinternet.ru/click
-