General
-
Target
2dce36c0086c431bfbf70ea0744f0903_JaffaCakes118
-
Size
184KB
-
MD5
2dce36c0086c431bfbf70ea0744f0903
-
SHA1
75dddd4770f331289cbd4a5e6e6cd78064653a0e
-
SHA256
cdc666fad3413e89a6528894948b386474fca1838ce1901708b75fc0278d3a47
-
SHA512
1b65e73d44d373b87ccfa1455cd5814352b447d745f30fb5180cbc89451df701839625235dc4bd240a4a7b06a083561f06e654d180ba09016e4cb738ccbd7391
-
SSDEEP
3072:D2irbxzGAFYDMxud7fKg3dXVmbOn5uY6KjnHYvLiWAYLwcsnV6KBpA0Sy:D2MKlWQ7Sg3d4bOJ+LiWAWrsnHfV
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
2dce36c0086c431bfbf70ea0744f0903_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=live+cd+windows+xp+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184368_plagin_dlya_androida_dlya_prosmotra_video.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184903_kristall_tv_kod_aktivacii.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185798_kod_na_antivirus_kasperskogo_2015.pdf
-
http://www.liveinternet.ru/click
-