General
-
Target
60a980f5b77173354e70afa6e3dae4b0_JaffaCakes118
-
Size
185KB
-
MD5
60a980f5b77173354e70afa6e3dae4b0
-
SHA1
7311868a4257ce25ecec8a750b68b45846559aaf
-
SHA256
78f07ef4a8702db71238da2ebed121567ff918651ddc66d27e98a26318882ffc
-
SHA512
263a7e7ded7cc72ec8646152dbebd2b9318e8d081ccc149fa7421baa33a0d1fb8579226519de53381b5c0e96d524ed87bc7289dfb72839e6f4f1cf61cda006fe
-
SSDEEP
3072:y2irbxzGAFYDMxud7fKg3dXVmbOn5um6KjnHxld2NpDb49ZoYJgjQS17I9Sf:y2MKlWQ7Sg3d4bOHRld04vVOUS9r
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
60a980f5b77173354e70afa6e3dae4b0_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%93%D0%BE%D0%BB%D0%B0%D1%8F+%D0%B1%D1%8C%D1%8F%D0%BD%D0%BA%D0%B0+%D0%B2+%D0%BA%D0%BB%D0%B8%D0%BF%D0%B5+%D0%B2%D0%B5%D1%81%D0%BD%D0%B0+%D0%BB%D0%B5%D1%82%D0%BE+%D0%B1%D0%B5%D0%B7+%D1%86%D0%B5%D0%BD%D0%B7%D1%83%D1%80%D1%8B&charset=utf-8
-
http://fastpic.ru/
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183180_lebedi_shema_vuyshivki_krestom.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183190_lazer_iz_dvd_privoda_svoimi_rukami_shema.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183247_antenna_fuksa_shema_i_opisanie.pdf
-
http://www.liveinternet.ru/click
-