General
-
Target
919bf8b97346da9d4de61e013c8d3231_JaffaCakes118
-
Size
367KB
-
MD5
919bf8b97346da9d4de61e013c8d3231
-
SHA1
d4c70be17f9011b26cf74f16d465d556c047d938
-
SHA256
5d1d633e4d4aeeaa79c08cc3901c2a33da64eb6f0c8abd37e4c063334890087d
-
SHA512
22eb07a16da79fd5e564823683aa05cbded34b0f9e663abb7de00190cba0c314a0c5cc45b74969400c81ced9ccfbbd922f5a7a4fa3391bc04488f500e0d4d7e6
-
SSDEEP
6144:fUZdeQKWCr7rmFFxMdiM+pNygHITl/LCYz0B9wcrwPlT1v4sy1v4C95vR:fayr7OxgiZv4Z/LkBa0wPJ1v4V11
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
919bf8b97346da9d4de61e013c8d3231_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BA%D1%83%D1%80%D1%81%D0%BE%D0%B2%D1%8B%D0%B5+%D1%80%D0%B0%D0%B1%D0%BE%D1%82%D1%8B+%D0%BF%D0%BE+%D1%80%D1%83%D1%81%D1%81%D0%BA%D0%BE%D0%BC%D1%83+%D1%8F%D0%B7%D1%8B%D0%BA%D1%83&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802451_scenariy__prazdnika__1_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802539_padro__pio__kniga_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802548_kak__obnovit__gugl_.pdf
-