General
-
Target
615d703e8b93a364b96020ee1c953c44_JaffaCakes118
-
Size
353KB
-
MD5
615d703e8b93a364b96020ee1c953c44
-
SHA1
36e68f99ba51dd3549b22dab1fd38309d7c8edb8
-
SHA256
cae109c32e01f77ad0f3045c0268826e10458ef260e88c0428d36983a6c38079
-
SHA512
9e89fc1e9b168352c6323f366480c00d89f4f889a19d8b0be653f3e33d4ea43537937b6bf51ccc0b9a26ca9b894fb8bffc879ae6a1e9956ba88d123c5232f0be
-
SSDEEP
6144:bohwYjfFzTrtZ5fnzOq/dlBpEuFWQOHWTCUwiARUZUwPcC:MhXpPrt3z/PpEiOHWGpe7kC
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
615d703e8b93a364b96020ee1c953c44_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A4%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B+%D0%BD%D0%B0+%D1%82%D0%B5%D0%BB%D0%B5%D1%84%D0%BE%D0%BD+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE+240%D1%85320+mp4&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4788/4788066_raspisanie__avtobusov__saratov_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787852_publichnuyy__otchet__shkoluy_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787937_skachat__vkus__granata_.pdf
-