General
-
Target
a761f714a5f0a837e6525c2ba9a1c241_JaffaCakes118
-
Size
186KB
-
MD5
a761f714a5f0a837e6525c2ba9a1c241
-
SHA1
a51eb317cf5af54bed9f1652c3d72b140b3261a4
-
SHA256
5eeb5a768ca8f80d3bec61ec1cf289a0b8be21a487107f3334fdb48875391b05
-
SHA512
4eba066f328a7dcd2983044dfa3a791cb4f4557e48685ee729c2719bced7d907229ce223b5a3613672fe4e386b5fa95f87207d8951e7ff63ad770db334c65499
-
SSDEEP
3072:s2irbxzGAFYDMxud7fKg3dXVmbOn5ui6KjnH3zfvIJGdEIj7q0BNjQS1KvS5:s2MKlWQ7Sg3d4bObXzfv4K7lUSb
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
a761f714a5f0a837e6525c2ba9a1c241_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B4%D0%BE%D0%B3%D0%BE%D0%B2%D0%BE%D1%80+%D0%BC%D0%B0%D1%82%D0%B5%D1%80%D0%B8%D0%B0%D0%BB%D1%8C%D0%BD%D0%BE%D0%B9+%D0%BE%D1%82%D0%B2%D0%B5%D1%82%D1%81%D1%82%D0%B2%D0%B5%D0%BD%D0%BD%D0%BE%D1%81%D1%82%D0%B8+%D1%81+%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%BC&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4300/4300234_solidworks_2011_skachat_torrent.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304652_skachat_drayvera_windows_7.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4305/4305105_goluye_na_scene_teatra_video.pdf
-
http://www.liveinternet.ru/click
-