General
-
Target
a676afce18ee39426b19f1fe0824fcd8_JaffaCakes118
-
Size
185KB
-
MD5
a676afce18ee39426b19f1fe0824fcd8
-
SHA1
6428f4f8a8b4ece6ad6833e28988b6de1f61b902
-
SHA256
a12924a1cebb62891538a6a3af1857b2b66dbf604db9bcb89d7d906d9169d0c7
-
SHA512
9e1bbeb2ce3aa733c980f6e936761bbdcbb9aff171d4936fa50b55cf4846d87a93bfb27a45b4d4993a8a4be6d5eba5a1236e2dfef58bc01fd365e638268b5954
-
SSDEEP
3072:C2irbxzGAFYDMxud7fKg3dXVmbOn5ug6KjnnQNl5o6rHrfUcGrKSd:C2MKlWQ7Sg3d4bOFQzPb1Gf
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
a676afce18ee39426b19f1fe0824fcd8_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%87%D0%B0%D0%BA+%D0%BF%D0%B0%D0%BB%D0%B0%D0%BD%D0%B8%D0%BA+%D1%83%D1%86%D0%B5%D0%BB%D0%B5%D0%B2%D1%88%D0%B8%D0%B9+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+fb2&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184383_biletuy_na_pogruzchik.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184400_kallanetika_s_ekaterinoy_ruykovoy_skachat_besplatno.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183260_shema_ponizhayuschego_transformatora.pdf
-
http://www.liveinternet.ru/click
-