General
-
Target
6138e60ef8c5de29699e4548f319ee35_JaffaCakes118
-
Size
186KB
-
MD5
6138e60ef8c5de29699e4548f319ee35
-
SHA1
c515a41263622e09115ef4b4905b43c6f61cb0bd
-
SHA256
dd2f36f51a2f64401bf4772ebc944a645699a36610684bc85dac35245013154e
-
SHA512
3a543520f66332b19393fd7d04613ff9c26bb1466716acebfe514a4b15d9ecc0f0056602237562759a63ecdb436334e1f8a133df5b9850bff501819685f68e98
-
SSDEEP
3072:E2irbxzGAFYDMxud7fKg3dXVmbOn5uC6KjnHOuzLgwbWO2mw5M8XmSJ:E2MKlWQ7Sg3d4bOvV98z
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
6138e60ef8c5de29699e4548f319ee35_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%80%D0%B0%D0%BC%D0%BA%D0%B8+%D0%B4%D0%BB%D1%8F+%D0%B3%D1%80%D0%B0%D0%BC%D0%BE%D1%82+%D0%B8+%D0%B4%D0%B8%D0%BF%D0%BB%D0%BE%D0%BC%D0%BE%D0%B2+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184834_vzlomovod_skachat.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4189/4189729_glushitel_dlya_sayga_410_chertezh.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4191/4191591_voennuye_skinuy_dlya_maynkraft.pdf
-
http://www.liveinternet.ru/click
-