General
-
Target
9f7fa6a4f56c4d5c85f5714b7f5aaca8_JaffaCakes118
-
Size
186KB
-
MD5
9f7fa6a4f56c4d5c85f5714b7f5aaca8
-
SHA1
9abe817ac110ac5a2d7306067b56d1b54892c34c
-
SHA256
e55e400dbb6b896c3533262d1f91bbd07065c631c35fb84284fc7b8ee4d8afdf
-
SHA512
fe7763da9f87c700cff9cb7382cae033bbf5ecaec8f6a8c47f5b406c2d2ceebd522cbf8150ed34a9e02962c8947db32fcb4675230ca3f6591f2caf9f75c4f2d0
-
SSDEEP
3072:+2irbxzGAFYDMxud7fKg3dXVmbOn5uY6KjnxG0m8hsaexNWYBGcFPuLWdSq:+2MKlWQ7Sg3d4bOxug78Bhso
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
9f7fa6a4f56c4d5c85f5714b7f5aaca8_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%83+%D0%B4%D0%BB%D1%8F+%D0%B7%D0%B0%D0%BF%D0%B8%D1%81%D0%B8+%D0%B2%D0%B8%D0%BD%D0%B4%D0%BE%D0%B2%D1%81+7+%D0%BD%D0%B0+%D1%84%D0%BB%D0%B5%D1%88%D0%BA%D1%83&charset=utf-8
-
http://fastpic.ru/
-
http://img1.liveinternet.ru/images/attach/c/5//4257/4257529_skachat_programmu_dlya_proshivki_yebu.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4387/4387147_metro_redux_torrent.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4389/4389762_osnovnaya_nadpis_chertezha_a4_skachat.pdf
-
http://www.liveinternet.ru/click
-