General
-
Target
6a8d8893931359428b203d8ac9b2b2bd_JaffaCakes118
-
Size
373KB
-
MD5
6a8d8893931359428b203d8ac9b2b2bd
-
SHA1
0cbe2b1c3433ba75f00bc4132dd3219e5017b692
-
SHA256
6af4f8833a7808d6de38ae3b91ff1144592b14ec49f9ebb51c1a1932adf5cb36
-
SHA512
217a699f727683d7b9e47e68d6224d16ca7c1656dee6b2c794d7bc386db54750a573e9bcbc515b04a815bd88465c14e7b8eefa8ece18a0c4c1b618698b372fb5
-
SSDEEP
6144:wDyip8V1hfcYwKhcYrBna+OBBTkjuqroKJsPm+S4egTk6RJccrpRzo:wWBfL/nafjC0KJsP3egTkJZ
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
6a8d8893931359428b203d8ac9b2b2bd_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BF%D0%BE+%D1%81%D0%BB%D0%B5%D0%B4%D0%B0%D0%BC+%D0%B1%D1%80%D0%B5%D0%BC%D0%B5%D0%BD%D1%81%D0%BA%D0%B8%D1%85+%D0%BC%D1%83%D0%B7%D1%8B%D0%BA%D0%B0%D0%BD%D1%82%D0%BE%D0%B2+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4788/4788078_forza__motorsport__4_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787917_domashnee__zadanie__solfedzhio_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787946_chto__takoe__tverduye_.pdf
-