General
-
Target
36af436e159ca30c3b19f42395861b6b_JaffaCakes118
-
Size
183KB
-
MD5
36af436e159ca30c3b19f42395861b6b
-
SHA1
d802c58cf8d304831339e1def0a04139e356bc50
-
SHA256
528ec417709e71f75006d400cc2035aa6976c02a4bba22e71d2e34c986e6c7da
-
SHA512
7dd4499f1146a390a79103fbd30d78b8bde1875917882eef6b038691cfcbb32412c2f6d4a5655ec4e1da9c02c6a4e4a2adc6719d51508eed15518b3a5c5327a5
-
SSDEEP
3072:j2irbxzGAFYDMxud7fKg3dXVmbOn5u46Kjnq9UvNswAjDzrEalJSx:j2MKlWQ7Sg3d4bOtq90swQ/w
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
36af436e159ca30c3b19f42395861b6b_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=Vkontrole+message+%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D0%B8+10&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4188/4188205_skachat_nero_besplatno_polnuyu_versiyu.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185277_msvbvm50dll_dlya_windows_7_skachat_besplatno.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185615_prezentaciya_rastitelnuyy_i_zhivotnuyy_mir_sverdlovskoy_oblasti.pdf
-
http://www.liveinternet.ru/click
-