General
-
Target
2494a1a7edfa65ebe0ef908e0f7c00e1_JaffaCakes118
-
Size
186KB
-
MD5
2494a1a7edfa65ebe0ef908e0f7c00e1
-
SHA1
55ee9bbc7f22a027ba41ca55eba07bf6021f7c35
-
SHA256
35be411909b32763922baf7c6ea934d122a57f118b5e1dfc315b576fdc8b0ab7
-
SHA512
891a9499a33af92ca058200d4f79fdd0acd3198cc405a20c99d4a086e55aa692e91cd4367ecb99ddf253264e8c91011820ef9e5d969f82ca134fc425205eaf02
-
SSDEEP
3072:/2irbxzGAFYDMxud7fKg3dXVmbOn5uC6KjnyCOsolw/x7ZzQ9WCmw5U3NSR:/2MKlWQ7Sg3d4bOnR/Z69ou
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
2494a1a7edfa65ebe0ef908e0f7c00e1_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE+%D1%87%D0%B8%D1%82+%D0%BD%D0%B0+%D0%B4%D0%B5%D0%BD%D1%8C%D0%B3%D0%B8+%D0%B2+%D0%BA%D0%BE%D0%BF%D0%B0%D1%82%D0%B5%D0%BB%D1%8C+%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD&charset=utf-8
-
http://fastpic.ru/
-
http://img1.liveinternet.ru/images/attach/c/6//4405/4405474_bagi_na_igru_flirt_siti.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4407/4407838_point_blank_chituy_na_dengi.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4417/4417004_bot_dlya_twitter.pdf
-
http://www.liveinternet.ru/click
-