General
-
Target
381e9edff499c56a4b7a5629a0e66b2d_JaffaCakes118
-
Size
185KB
-
MD5
381e9edff499c56a4b7a5629a0e66b2d
-
SHA1
b45741cf5c722f7a2f21562320d47f2f398e1bde
-
SHA256
34b639e6076ad38eb6e05e23436bb2007445f6dfff02a7760741f884eaf6aae6
-
SHA512
32b9fd21d3871967f1a3c8c3ae580b3a7cd31eb2321496adb9917fe8fddaf810512d2e68e2cba52ff0606a6aee24ccec6d82aebb7790ea7c03d7bfbf3355213d
-
SSDEEP
3072:32irbxzGAFYDMxud7fKg3dXVmbOn5u86KjnnQ4iRlbsrSHypTdvqE6cXNEn4GS0:32MKlWQ7Sg3d4bOxQbQJdoc+n5
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
381e9edff499c56a4b7a5629a0e66b2d_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=Imadeface+%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD+%D0%BD%D0%B0+%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B5&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4186/4186114_skachat_cleo_skript_na_dengi_dlya_samp.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185543_nightwish_skachat_besplatno_vse_albomuy.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4213/4213905_klyuch_aktivacii_dlya_angry_birds_space.pdf
-
http://www.liveinternet.ru/click
-