General
-
Target
4bdc843bb48968726848ae59ec4f78e8_JaffaCakes118
-
Size
186KB
-
MD5
4bdc843bb48968726848ae59ec4f78e8
-
SHA1
324ecaeebbea75e325b71e59893a8112787fd5a8
-
SHA256
0afb3fdd769e2f3241625c79ae8ecd24fe0df108939794acba401304bc0f8428
-
SHA512
5b5d7e4a4eef718e1279d77184b8ce2ddd2aa5154b10896050d9189447823dc9b247fda20855bd02f8ef09f89befab60d359259f427d6e72ff742c6efdb03b67
-
SSDEEP
3072:v2irbxzGAFYDMxud7fKg3dXVmbOn5ue6KjnaXsvZbg3SreiySifo/HSt:v2MKlWQ7Sg3d4bOHLKTWiAg
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
4bdc843bb48968726848ae59ec4f78e8_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D1%87%D0%B8%D1%82%D1%8B+%D0%BD%D0%B0+%D0%B8%D0%B3%D1%80%D1%83+contract+wars+online+3d&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184421_obrazec_zayavleniya_na_uderzhanie_iz_zarabotnoy_platuy.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183202_kursovoy_proekt_po_ventilyacii.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185063_skachat_papku_moi_fayluy_na_android.pdf
-
http://www.liveinternet.ru/click
-