General
-
Target
432f7ba4caca2f8303ab7db03788c806_JaffaCakes118
-
Size
184KB
-
MD5
432f7ba4caca2f8303ab7db03788c806
-
SHA1
bd8eeb8ca8dae0fe16c09f759d417f884cd230e1
-
SHA256
4d26ba41c050a2c074f8e18e5bbd99c562b08b87035bd1e4f5d872a531019cef
-
SHA512
b1536ce02567bd14d5a8d6589e761da5779cb2c26fc2de86d7963d54de1a71ff6a9f252e806cf232562ddc1d997f4137e0d022c5a9f5cbdc3fcc3408044ddb11
-
SSDEEP
3072:k2irbxzGAFYDMxud7fKg3dXVmbOn5uQ6Kjnb/i6V3gWmxps+3Zmw5n4fSb:k2MKlWQ7Sg3d4bOpW6yPnXn3
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
432f7ba4caca2f8303ab7db03788c806_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%9A%D1%8B%D1%80%D0%B3%D1%8B%D0%B7%D1%87%D0%B0+%D1%81%D1%83%D0%B9%D1%83%D1%83+%D0%BB%D0%B8%D1%80%D0%B8%D0%BA%D0%B0%D0%BB%D0%B0%D1%80&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184663_otvetnoe_slovo_vuypusknikov_na_vuypusknom_vechere.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184685_akunin_ohota_na_odisseya_skachat.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183184_labirint_minotavra_shema.pdf
-
http://www.liveinternet.ru/click
-