General
-
Target
694b453d8f0bcd3d011fa0bc4f9b2af3_JaffaCakes118
-
Size
184KB
-
MD5
694b453d8f0bcd3d011fa0bc4f9b2af3
-
SHA1
01f9a6c124f23ce77df0a6cbbf0c9cd4d0273d90
-
SHA256
b9abffbae24d07fa82f9d708efaec4b77bc9c2ce16fddfd010ed79f7e3d57683
-
SHA512
befac0627ba85bdd5b37aff75b08f9c47926fa595ca04007134da210276707dbc278f3df252e8de541dcc311cd3b67e8308bf885931baa4f9aead18f79df1184
-
SSDEEP
3072:X2irbxzGAFYDMxud7fKg3dXVmbOn5u46Kjn699GEinWyucLhI7xqkLSSf:X2MKlWQ7Sg3d4bONRPpLh4
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
694b453d8f0bcd3d011fa0bc4f9b2af3_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B0%D0%BB%D1%8C%D0%B1%D0%BE%D0%BC+%D0%B4%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D1%85+%D0%BF%D0%B5%D1%81%D0%B5%D0%BD+%D1%87%D0%B5%D1%80%D0%B5%D0%B7+%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184584_shema_kubik_rubika_3h3.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184845_pozdravleniya_s_dnem_rozhdeniya_na_mariyskom_yazuyke.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4185/4185639_marketingovuye_issledovaniya_kursovaya.pdf
-
http://www.liveinternet.ru/click
-