General
-
Target
22fef7da3dba1c6d6cb7f97e7a736239_JaffaCakes118
-
Size
186KB
-
MD5
22fef7da3dba1c6d6cb7f97e7a736239
-
SHA1
375f5546d70531d5b0d827617eaa5dab23fe123a
-
SHA256
c92bdf3f0f12b7bb7a10a1592cb4679e1b123054165b8e65924d6e5ca0b562f0
-
SHA512
9d013339287bf6a81a242c95d2419e51645eb22b700a78a6dad385d0fc14172d3092128b805d60cf68ec8b51e7d3195b4c075e0205a5dd460b675e02f160f4d8
-
SSDEEP
3072:u2irbxzGAFYDMxud7fKg3dXVmbOn5uC6Kjna8YKJ/pzcCx8s+UU6SvycSf:u2MKlWQ7Sg3d4bOrHrE/u
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
22fef7da3dba1c6d6cb7f97e7a736239_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%BB%D0%B5%D0%B3%D0%BE+%D1%81%D0%B8%D1%82%D0%B8+%D1%87%D0%B5%D1%80%D0%B5%D0%B7+%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82+%D0%BD%D0%B0+%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4186/4186406_sboy_konvertera_pri_otkruytii_fayla_xlsx.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4187/4187490_suyn_uvidel_mamu_goloy_video.pdf
-
http://www.liveinternet.ru/click
-