General
-
Target
3d117a6e188fe218feb29506dede32d2_JaffaCakes118
-
Size
187KB
-
MD5
3d117a6e188fe218feb29506dede32d2
-
SHA1
dc9e95c533e33d465aaf820993edfea0dcd47675
-
SHA256
0273d394395b375d29f0726aaa4fd72c8dddb8136f547639b2925e2a1f9802b5
-
SHA512
63e619336bdf979c27313c7a4f3f93ba4cc68cdaef108885e73fc0ad2a66e8e5601b4e104cd497f0a98f9b21d320ef0726cd71fb4b51ee7622dcc6be6f85940e
-
SSDEEP
3072:a2irbxzGAFYDMxud7fKg3dXVmbOn5u+6Kjn699V8CwVxc0azTSZ:a2MKlWQ7Sg3d4bO/uoVxJ
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
3d117a6e188fe218feb29506dede32d2_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B2%D0%B5%D0%BB%D0%B8%D0%BA%D0%BE%D0%BB%D0%B5%D0%BF%D0%BD%D1%8B%D0%B9+%D0%B2%D0%B5%D0%BA+1+%D1%81%D0%B5%D1%80%D0%B8%D1%8F+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184748_spravochnik_lesoustroitelya_n_n_gusev_zip.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4186/4186425_skachat_standartnuye_igruy_na_windows_xp.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4187/4187661_pasport_truboprovoda_obrazec_zapolneniya.pdf
-
http://www.liveinternet.ru/click
-