General
-
Target
3cbbc799cdd160b9384d2205b3f21699_JaffaCakes118
-
Size
185KB
-
MD5
3cbbc799cdd160b9384d2205b3f21699
-
SHA1
faeb58d1031a985a14fea0f0a02c4fe1bed78703
-
SHA256
2c47e4639647feff5872e82f69fc09cc6cec2385273981546e099858153d625d
-
SHA512
3030819b1e5849f3bca363b806c870a69a4b0a7ab239f81ce4cdd2bc6c52e5505631e817133f9580579a9659c83eb3768ef350a175c3aaddbb08e90d5f35ad26
-
SSDEEP
3072:m2irbxzGAFYDMxud7fKg3dXVmbOn5uw6KjnnQ0GzIz78HO/fva5+IeCd8Sw:m2MKlWQ7Sg3d4bORQ0qIv/fa1m
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
3cbbc799cdd160b9384d2205b3f21699_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%82%D0%B8%D0%BC%D1%83%D1%80+%D1%80%D0%B0%D1%85%D0%BC%D0%B0%D0%BD%D0%BE%D0%B2+%D0%B2%D1%81%D0%B5+%D0%BF%D0%B5%D1%81%D0%BD%D0%B8+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184495_uroki_po_russkomu_yazuyku_5_klass_laduyzhenskaya_fgos.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184696_skachat_upl_dlya_pes_2015_cherez_torrent.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183246_model_idef0_primer.pdf
-
http://www.liveinternet.ru/click
-