General
-
Target
989ef540d74fce885a10f8805e5a71b0_JaffaCakes118
-
Size
359KB
-
MD5
989ef540d74fce885a10f8805e5a71b0
-
SHA1
28c5d7ed49655d1aee510b2fd48d0366e0cf15d0
-
SHA256
2cbfdd457a3c98cd21aec7fd0b6d46e5069e8b2389ceeb84d78dc9d265f984ad
-
SHA512
d785a10f713989aca0d5be9ba70ed116958b6c0ff7a7728802e2d06a72d7db81818a6c5a49e1cc19912e71bb7995caf1cd30803b6110145a15800097a7cbc472
-
SSDEEP
6144:cPElnLrw/xESYSUIqgEKRa54sitVq1Bc/EteXyW/21UwDF3zO:AElL8p8QqgEK0AtVQBcSCrwDdq
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
989ef540d74fce885a10f8805e5a71b0_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BA%D0%BE%D0%B4+%D0%BD%D0%B0+%D1%81%D0%BA%D0%B0%D0%B9%D1%80%D0%B8%D0%BC+%D0%BD%D0%B0+%D0%BA%D0%BE%D0%BC%D0%BD%D0%B0%D1%82%D1%83+%D1%81%D0%BE+%D0%B2%D1%81%D0%B5%D0%BC%D0%B8+%D0%BF%D1%80%D0%B5%D0%B4%D0%BC%D0%B5%D1%82%D0%B0%D0%BC%D0%B8&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/6//4694/4694165_kopatel__onlayn__moduy_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4693/4693031_master__i__margarita_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4693/4693197_kartuy__so_.pdf
-