General
-
Target
3868303e81a62f40255693556efa064a_JaffaCakes118
-
Size
362KB
-
MD5
3868303e81a62f40255693556efa064a
-
SHA1
79055e2845c348198b7dda055fb63877f56e77b4
-
SHA256
55eb5bd7cc99055164a674dd2ab55708688fb1b9868d26b3bea5ef4252d4bfb1
-
SHA512
6bb5643fe0d7d5c4d2602d786bf6b87e26101d4026ba9521e8303fc83d0ed9a0143db9404c7398fac78d01da45f2a67addea7733c277f66aa4a98c093becf061
-
SSDEEP
6144:5jqB5A5szqTN6nV8JfzY8ITi2aXrqA0UJxz/jiARvXrflQb5qB5t:5jqBekMN6nq5IW2AJNxzOA1XrfuVqB5t
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
3868303e81a62f40255693556efa064a_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%B2%D0%B5%D0%B4%D0%B5%D0%BD%D0%B8%D1%8F+%D0%BE+%D1%85%D0%B0%D1%80%D0%B0%D0%BA%D1%82%D0%B5%D1%80%D0%B5+%D0%B8+%D1%83%D1%81%D0%BB%D0%BE%D0%B2%D0%B8%D1%8F%D1%85+%D1%82%D1%80%D1%83%D0%B4%D0%B0+%D1%80%D0%B0%D0%B1%D0%BE%D1%82%D0%BD%D0%B8%D0%BA%D0%B0+%D0%BD%D0%B0%D0%BF%D1%80%D0%B0%D0%B2%D0%BB%D1%8F%D0%B5%D0%BC%D0%BE%D0%B3%D0%BE+%D0%BD%D0%B0+%D0%9C%D0%A1%D0%AD%D0%9A&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/6//4694/4694403_total__war__shogun_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4693/4693255_kratkoe__soderzhanie__buylinuy_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4693/4693592_driverpack__solution__14_.pdf
-