General
-
Target
39db05b10316a6ac64115a6564ed9d8f_JaffaCakes118
-
Size
185KB
-
MD5
39db05b10316a6ac64115a6564ed9d8f
-
SHA1
7a90b0b6c08742f905bdf64644f85da5a3128832
-
SHA256
f05d2a10aa0761bd926afd01239c4dd2ed2025e36c086780886e7a28c4767125
-
SHA512
0e46ea8d96352576dea93f53f6305674d5c27f16f7550bde4ef75f1c5dc5209869f88828a1f5b4a47ff82a707b77f906ccca6f7cbbae2aaba50187f36b000e8e
-
SSDEEP
3072:X2irbxzGAFYDMxud7fKg3dXVmbOn5uK6KjnnQlFoO9XXAI2IYD5hKSfoXS9:X2MKlWQ7Sg3d4bO3Q4AAI2dlV
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
39db05b10316a6ac64115a6564ed9d8f_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%94%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80+%D0%BD%D0%B0+%D1%81%D0%B0%D0%BC%D1%81%D1%83%D0%BD%D0%B3+gt-s3600i+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384474_guild_wars_2_besplatnuyy_russkiy_server_torrent.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384790_koreyskiy_serial_uzbek_tilida_kuz_yertagi.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4383/4383709_yetnogenez_greshniki_korporaciya_kolco_skachat_fb2.pdf
-
http://www.liveinternet.ru/click
-