General
-
Target
a0e37c5590497a9ac92921db4d5945d9_JaffaCakes118
-
Size
186KB
-
MD5
a0e37c5590497a9ac92921db4d5945d9
-
SHA1
f73ebbc40d640b62bb692736618023bfa4cabdbb
-
SHA256
a2b01da9aa138d9a3f5abdac7434c19674416aea50aaaf72dd87eead319baf80
-
SHA512
3b310f8f5b93b88258efc77c7b3e0202dfdeda07a951af70e3de2e748a7d42f1df524e4a965e33610e3b5764a7e55ba65e2c2096e66121ddf1d343871bfe113e
-
SSDEEP
3072:g2irbxzGAFYDMxud7fKg3dXVmbOn5uC6Kjnx6Z7f6XFRWYgcPIUzBS2:g2MKlWQ7Sg3d4bOPA7fiyI
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
a0e37c5590497a9ac92921db4d5945d9_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%82%D0%B0%D0%B1%D0%BB%D0%B8%D1%86%D0%B0+%D0%BF%D0%BB%D0%B0%D0%BD%D0%B8%D1%80%D0%BE%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F+%D1%82%D1%80%D1%83%D0%B4%D0%B0+%D0%B2%D0%BE+2+%D0%BC%D0%BB%D0%B0%D0%B4%D1%88%D0%B5%D0%B9+%D0%B3%D1%80%D1%83%D0%BF%D0%BF%D0%B5&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384543_vcherashniy_boy_na_kanale_rossiya_2_v_2100.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384639_mass_effect_3_moduy_na_vneshnost.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4383/4383981_skachat_chituy_dlya_css_v80.pdf
-
http://www.liveinternet.ru/click
-