General
-
Target
869dc8be49122bc775c2b98bd7950f83_JaffaCakes118
-
Size
391KB
-
MD5
869dc8be49122bc775c2b98bd7950f83
-
SHA1
a0cb07b6e6b3f804edce8991fbdf1eb0db974b9e
-
SHA256
784845a609035823bac30af283579cce4a34aec5ea4fa747fe66578f79183014
-
SHA512
37fc98fb24a7a15b89023b55b5d9104178a51ae6ec76acceac97afaf366c7dece3c12175569f6848060438af6f41792c2a4a8c8a227ef1944cd002154088f6cc
-
SSDEEP
6144:mzMA4A5SOAWITQx3PYWIuw+uNJuJqFNYJTMRVAZwYZRn8vZ:mNI0tPY5QuNAqLOTMRVAfUZ
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
869dc8be49122bc775c2b98bd7950f83_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BA%D0%BD%D0%B8%D0%B3%D0%B8+%D0%B6%D0%B0%D0%BD%D1%80%D0%B0+%D1%84%D1%8D%D0%BD%D1%82%D0%B5%D0%B7%D0%B8+%D0%BB%D1%8E%D0%B1%D0%BE%D0%B2%D0%BD%D1%8B%D0%B9+%D1%80%D0%BE%D0%BC%D0%B0%D0%BD+%D1%8E%D0%BC%D0%BE%D1%80&charset=utf-8
-
http://img1.liveinternet.ru/images/attach/c/7//4809/4809175_raspisanie__avtobusov__suyktuyvkar_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4809/4809765_tekken__6__pc_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4809/4809845_skachat__aim__konfigi_.pdf
-