General
-
Target
36b238bf1523d32db9b4d208fa18eae5_JaffaCakes118
-
Size
186KB
-
MD5
36b238bf1523d32db9b4d208fa18eae5
-
SHA1
33702573cf256353eaad318b0a319412bee34c3d
-
SHA256
f24dac1d6b52984f1569dcc740f533836f4564447cf4f47f56ac28dbd582027d
-
SHA512
dcf14161ce04dc1b9ee314d0f2a4ad1f6ddb9e8bfc2428e10209fdba251dccf53421600dc915b211af2f03286f9939046a87f3b9efb0e8e673ba75fcf32b7c1d
-
SSDEEP
3072:E2irbxzGAFYDMxud7fKg3dXVmbOn5uA6KjnMU1ugWe7ntKdNaT/vOSd:E2MKlWQ7Sg3d4bOJEgB7tRL3
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
36b238bf1523d32db9b4d208fa18eae5_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BD%D0%BE%D0%B2%D1%8B%D0%B5+biss+%D0%BA%D0%BE%D0%B4%D1%8B+%D0%BD%D0%B0+2015+%D0%B3%D0%BE%D0%B4+%D1%81%D0%BF%D1%83%D1%82%D0%BD%D0%B8%D0%BA%D0%BE%D0%B2%D0%BE%D0%B3%D0%BE+%D1%82%D0%B5%D0%BB%D0%B5%D0%B2%D0%B8%D0%B4%D0%B5%D0%BD%D0%B8%D1%8F&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184385_dzheyms_rollins_tropa_mertvuyh_skachat_besplatno_fb2.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183200_lampovuyy_peregruz_shema.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183256_shema_podklyucheniya_gerkona.pdf
-
http://www.liveinternet.ru/click
-