General
-
Target
21b75b5820ae49dd867d932add7a9aec_JaffaCakes118
-
Size
185KB
-
MD5
21b75b5820ae49dd867d932add7a9aec
-
SHA1
791f2e873a87905b6a334f97cf9370e4b0dfe255
-
SHA256
ae40f0cc10c5ce5c9b72a7c7b4b0d2f02f0ba496ba27d591578bc924c781d729
-
SHA512
2a32144b9bad66b5c6bf61ba8b997aade1bc6ee47bfd9fd6a60d881e370d96f8748a74b560a054a8d35578c5349d4a9e16d4d43f878c9d2df6cf46ce16a199b9
-
SSDEEP
3072:92irbxzGAFYDMxud7fKg3dXVmbOn5uw6Kjnf3ir8ShWAUUlVg9pTjjgIP9zxcy3A:92MKlWQ7Sg3d4bO5fy8J8Mi+xcyQ
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
21b75b5820ae49dd867d932add7a9aec_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B1%D0%B0%D1%81%D1%82%D0%B0+%D0%BD%D0%BE%D0%B2%D1%8B%D0%B9+%D0%B0%D0%BB%D1%8C%D0%B1%D0%BE%D0%BC+2015+%D1%81%D0%BB%D1%83%D1%88%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384608_tabu_3_smotret_onlayn_na_russkom_yazuyke.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4386/4386069_igra_blokada_igrat_onlayn.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4385/4385634_skachat_torrent_ghjuhfvve.pdf
-
http://www.liveinternet.ru/click
-