General
-
Target
42613db82d7935aaad8f2a60d758c24d_JaffaCakes118
-
Size
186KB
-
MD5
42613db82d7935aaad8f2a60d758c24d
-
SHA1
8472c125086c671e56e019b6783ed0b04dd7f813
-
SHA256
4b9ef662bf99293dac011b241a2e14c2e8c65805f5a61e22d0d1f6f54f0dbf30
-
SHA512
09baca847246d1733b13f15ffd69d435c7200c60b830ff51358cc381da9a44263b03e423313165c02aa4db42fa854e014096ef8b7a273e19de12cdefd7590863
-
SSDEEP
3072:c2irbxzGAFYDMxud7fKg3dXVmbOn5uC6KjngP9Aww958MX7r7LWlg8htdAL3l8SV:c2MKlWQ7Sg3d4bOv1w8mI/XWlqD
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
42613db82d7935aaad8f2a60d758c24d_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%8D%D0%B9%D0%B4%D0%B5%D1%82%D0%B8%D0%BA%D0%B0+%D1%81%D0%B0%D0%BC%D0%BE%D1%83%D1%87%D0%B8%D1%82%D0%B5%D0%BB%D1%8C+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184452_skachat_ze_kryu_cherez_torrent.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185308_vuykroyki_chehlov_na_vaz_2110.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4187/4187788_adobe_flash_cs6_skachat_torrent_russkaya_versiya.pdf
-
http://www.liveinternet.ru/click
-