General
-
Target
b436332f4e8e9d1f65f323a2a1abf840_JaffaCakes118
-
Size
184KB
-
MD5
b436332f4e8e9d1f65f323a2a1abf840
-
SHA1
24321ee0fb55188fbcfa31f08256a4e53675a905
-
SHA256
7f33742e12b3ad9e9f63128b2024e4b1b1ce6c1ebbdec5eebca6fc6b2265c04a
-
SHA512
cb161b1d9a54232ee1cb929b093b0881fa76283673477cca6bb608caeea8affd52f31726e2b5adb2d3fa200e38ca2abeeab83c5ab3eb75d688b90d89b8a30289
-
SSDEEP
3072:h2irbxzGAFYDMxud7fKg3dXVmbOn5u06Kjnb/i2tOCLulxOWjQS15zV/roSm:h2MKlWQ7Sg3d4bORW2EdUSTV/2
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
b436332f4e8e9d1f65f323a2a1abf840_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BA%D0%BE%D0%B4%D1%8B+%D0%BD%D0%B0+%D0%B3%D1%82%D0%B0+%D0%B2%D0%B0%D0%B9+%D1%81%D0%B8%D1%82%D0%B8+%D0%BD%D0%B0+%D0%BF%D0%B8%D0%B8%D1%81%D0%BF%D0%B8&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184521_skachat_minecraft_pe_0_8_1_na_android_igruy.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184793_anketa_na_shengenskuyu_vizu_v_finlyandiyu.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184822_kod_aktivacii_dlya_kaspersky_internet_security_2015_na_365_dney.pdf
-
http://www.liveinternet.ru/click
-