General
-
Target
a878468e691977147d8a2174892509d3_JaffaCakes118
-
Size
183KB
-
MD5
a878468e691977147d8a2174892509d3
-
SHA1
836dc0151db0bd6ec0c5ee99aeaff41a4dfe002c
-
SHA256
b6e8f385dd34a08c8b30a6429c1d571e4915ef7133f735dd5025711f5d947b7f
-
SHA512
6a9f66fb95c30713a15c9cfa440b2392c7fdf1fa53609bf5c611a4af8007f781d9eeb66a96d550804f594d8686e899f0674a403c6aff74d392aaa98a14143928
-
SSDEEP
3072:+2irbxzGAFYDMxud7fKg3dXVmbOn5uk6KjnHU9x69/mLsTfDEMTSh:+2MKlWQ7Sg3d4bORExxsu
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
a878468e691977147d8a2174892509d3_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B8%D0%B3%D1%80%D0%B0%D1%82%D1%8C+%D1%81%D0%B8%D0%BC%D1%81+4+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304476_titulnuyy_list_po_chercheniyu_a4.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304507_programma_dostupnoe_zhile_moloduym_semyam.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4304/4304540_yuriy_sigov_singapur_skachat_besplatno.pdf
-
http://www.liveinternet.ru/click
-