General
-
Target
42f439c7131bbc6e6aaa9dfddb28bba3_JaffaCakes118
-
Size
369KB
-
MD5
42f439c7131bbc6e6aaa9dfddb28bba3
-
SHA1
a5f66dcfbbe2bcd93e42a96ecd639716b0a33eb4
-
SHA256
fa7b8aa9cd5698293d803b40dbd8c0bb9f3b19e3a2407861208a087bfcfecb48
-
SHA512
a3b37443bdb23450b83a87ecd80c468ab6a77413a06eda1093ec6fc748fd45d328097e4e87211f84774951f3a5229e3342d15c0d1e942baacf43185d7c3b576b
-
SSDEEP
6144:0rutugdazUyzp8guQUt7J8dsWfVicsOaLN79rtOxX51ulX9EC:9azUUpzGZWfSOaLN79psulXj
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
42f439c7131bbc6e6aaa9dfddb28bba3_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%BF%D1%80%D0%B0%D0%B2%D0%BE%D1%87%D0%BD%D0%B8%D0%BA+%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D0%B8%D1%80%D0%BE%D0%B2%D1%89%D0%B8%D0%BA%D0%B0+%D1%81%D1%82%D0%B0%D1%80%D0%BE%D0%B2%D0%B5%D1%80%D0%BE%D0%B2&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4752/4752036_vyazannuye__sledkishema_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4751/4751552_stalker__zov__pripyati_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4751/4751598_lyaudis__metodika__prepodavaniya_.pdf
-