General
-
Target
8bcdf586caf558d479a52caeb71cf318_JaffaCakes118
-
Size
353KB
-
MD5
8bcdf586caf558d479a52caeb71cf318
-
SHA1
4ccade066402873b9a3b62e1abbe111c40e347f2
-
SHA256
38018c679292952a2d6fa1586c9cc97d544baf273b98f0c4d0c7332c0af2cea7
-
SHA512
9c6e531d4d8ca22cc6e5dbf73fd46b2182bb658fd5faba0b4194e6291a41571686379da0b2d2eec44009f4e7e108b7f224ded261bd554296d8af1c439704bc89
-
SSDEEP
6144:JzfVD58fYVopC6958sc4Z6F5kEHbT1Q4VvuIwtuyOlmy5We/zhLsbdIW:Jzfpz6pC4BZgkEHbZ1VvkuySmy5NLhLo
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
8bcdf586caf558d479a52caeb71cf318_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%98%D0%BC%D0%BF%D1%83%D0%BB%D1%8C%D1%81%D0%BD%D1%8B%D0%B9+%D0%B1%D0%BB%D0%BE%D0%BA+%D0%BF%D0%B8%D1%82%D0%B0%D0%BD%D0%B8%D1%8F+%D0%BD%D0%B0+48+%D0%B2%D0%BE%D0%BB%D1%8C%D1%82+%D1%81%D0%B2%D0%BE%D0%B8%D0%BC%D0%B8+%D1%80%D1%83%D0%BA%D0%B0%D0%BC%D0%B8&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/6//4694/4694262_fayloobmenniknet3385124__skachat__chit_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4693/4693775_bullet__for__my_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4693/4693845_koduy__na__gta_.pdf
-