General
-
Target
4af0f6774074a8b47a414569d53431f9_JaffaCakes118
-
Size
185KB
-
MD5
4af0f6774074a8b47a414569d53431f9
-
SHA1
5e7da4996565aae350f687e5a1a6e8f9e8eb4355
-
SHA256
5c2d6c04a622b2c061f7e219a7bebcafe316b3ed6e482938b793fba3db5862ea
-
SHA512
c3abd35d968f75361b98a20f4a1a3873407571199b6a4c8b62ef10d0bb895dfa729ec183b2a3b31d13d011fe0fa9cd92a62acde104f637b56b8377442d0474f9
-
SSDEEP
3072:MO2irbxzGAFYDMxud7fKg3dXVmbOn5uK6KjnHohXfuppkGW7qc/Sm:b2MKlWQ7Sg3d4bOfcoEB
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
4af0f6774074a8b47a414569d53431f9_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%9A%D0%BB%D1%8E%D1%87%D0%B8+%D0%BA+%D0%B8%D0%B3%D1%80%D0%B5+%D1%81%D1%8A%D0%B5%D0%B4%D0%BE%D0%B1%D0%BD%D0%B0%D1%8F+%D0%BF%D0%BB%D0%B0%D0%BD%D0%B5%D1%82%D0%B0&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384339_simulyator_metro_skachat.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4386/4386151_skachat_besplatno_istoricheskie_lyubovnuye_romanuy_v_formate_txt.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4279/4279703_dif_avtomat_shema_podklyucheniya.pdf
-
http://www.liveinternet.ru/click
-