General
-
Target
a4cedd6ad94f018553b3374e9fada773_JaffaCakes118
-
Size
146KB
-
MD5
a4cedd6ad94f018553b3374e9fada773
-
SHA1
befedd89102c19cd7adcaa4da2a389a8e3734417
-
SHA256
234524d24b17fcbde5dfa6892cf1de33958132de49122d405e4b86ceda106bd3
-
SHA512
367d9e0625a4e84a3301e5ddf9b6b2840851c34f70acb92c89f019e2606d02bfaaa93cf37aa8d6ed6eb6b1c9c6099c9060d6165fed1d252ae992221807111d6f
-
SSDEEP
3072:t/npqLJWiNHPF7uGpIj/IUcIN4Is+i0tXyDS4M:t/nwNXF1ugDUcoXxC24M
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
a4cedd6ad94f018553b3374e9fada773_JaffaCakes118
-
http://Amazon.com
-
http://enapple.com/verificationen
-
http://www.uppurl.com/V1ZR4309r
-
https://www.amazon.com/gp/r.html?C=3JTDOSORXPWJG&K=CQKF85F3TXRK&M=urn:rtn:msg:20181012224809044773fd63ae4672b82359a90560p0na&R=1H40CKXKFNJTY&T=C&U=http%3A%2F%2Fwww.amazon.com%2Fgp%2Fhelp%2Fcustomer%2Fdisplay.html%2Fref%3Dpe_2640190_232748420_TE_simp_p%3Fie%3DUTF8%26nodeId%3D468496&H=NEAAHKKOQG3SANTWXB0CWPOSY2YA&ref_=pe_2640190_232748420_TE_simp_p
-
https://www.amazon.com/gp/r.html?C=3JTDOSORXPWJG&K=CQKF85F3TXRK&M=urn:rtn:msg:20181012224809044773fd63ae4672b82359a90560p0na&R=1SSKOZD6ROTGW&T=C&U=https%3A%2F%2Fwww.amazon.com%2Fgp%2Fhelp%2Fcustomer%2Fdisplay.html%2Fref%3Dpe_2640190_232748420_hp_bc_nav%3Fie%3DUTF8%26nodeId%3D202029700&H=Z226YFACPZ4BXINUR3L2XASA70CA&ref_=pe_2640190_232748420_hp_bc_nav
-
https://www.amazon.com/gp/r.html?C=3JTDOSORXPWJG&K=CQKF85F3TXRK&M=urn:rtn:msg:20181012224809044773fd63ae4672b82359a90560p0na&R=WAJY6I1Q8DVH&T=C&U=http%3A%2F%2Fwww.amazon.com%2Fgp%2Fhelp%2Fcustomer%2Fdisplay.html%2Fref%3Dpe_2640190_232748420_TE_simp_p%3Fie%3DUTF8%26nodeId%3D508088&H=QFXNMFUJQWZAR7A03UJYDJHTKN8A&ref_=pe_2640190_232748420_TE_simp_p
-