General
-
Target
5bd134ba1d3d47c424555c1fe80d7954_JaffaCakes118
-
Size
380KB
-
MD5
5bd134ba1d3d47c424555c1fe80d7954
-
SHA1
868b90f5e623441af9d5ae44a10bc839d65b2830
-
SHA256
ab5d9682e82f5d0bcde734fd6c86897639397e4c015fa9bc94adb808a708ff14
-
SHA512
8133ce354ccbc2327e8be2616e34f42f5468292955dfdc39e505a467f7f043a92b4e40100a5001f0183614b2fcd629298954db6a97f54b75744519c3ce993cb8
-
SSDEEP
6144:2Kfj8KpEY+qyA0JuATTlSBaL/Emz8qQNbwi3gQ2MRbL0NOLRDSr2UlsRV/8/p:2SjHeLlEBqcms1N1XLdjUir/Cp
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
5bd134ba1d3d47c424555c1fe80d7954_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D1%83%D1%87%D0%B5%D0%B1%D0%BD%D0%B8%D0%BA+%D0%BF%D0%BE+%D0%BC%D0%B0%D1%82%D0%B5%D0%BC%D0%B0%D1%82%D0%B8%D0%BA%D0%B5+5+%D0%BA%D0%BB%D0%B0%D1%81%D1%81+%D0%B2%D0%B8%D0%BB%D0%B5%D0%BD%D0%BA%D0%B8%D0%BD&charset=utf-8
-
http://img1.liveinternet.ru/images/attach/c/6//4639/4639065_gadanie_na_kofe_onlayn_besplatno_na_buduschee.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4639/4639236_mocart_simfoniya_40_notuy_dlya_fortepiano.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4639/4639294_muzuyka_dlya_yubileya_skachat_besplatno.pdf
-