General
-
Target
b709e1c1d99d8488b76d699d8bac3062_JaffaCakes118
-
Size
362KB
-
MD5
b709e1c1d99d8488b76d699d8bac3062
-
SHA1
bffae78d24e5ccc2d87cc68825602d13f1ef6a0c
-
SHA256
93ca6b6d720470f4a93aed8b6a82a056a9174257b34e7828ab45234c8270ebb3
-
SHA512
4feae5703b01914a95530292bad49ff91de28a40f049ad8f6bebf0015283d297a36db88afcd177e665a216e6852a0a3a85abe59750152e5e0c1fad81a01df9d7
-
SSDEEP
6144:Sk7kV+5QLTie62QZJ5hsSg6jffAkM54rXlyWXMgMkEzjgFrhVCRbX0ZhkC:SKH5QLnQZJ0Sg6jffAepyWBEAZhVCMT
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
b709e1c1d99d8488b76d699d8bac3062_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B3%D0%BE%D1%82%D0%BE%D0%B2%D1%8B%D0%B9+%D1%81%D0%B5%D1%80%D0%B2%D0%B5%D1%80+%D0%BC%D0%B0%D0%B9%D0%BD%D0%BA%D1%80%D0%B0%D1%84%D1%82+175+%D1%81+%D0%BF%D0%BB%D0%B0%D0%B3%D0%B8%D0%BD%D0%B0%D0%BC%D0%B8+%D0%B8+%D1%81%D0%BF%D0%B0%D0%B2%D0%BD%D0%BE%D0%BC&charset=utf-8
-
http://img1.liveinternet.ru/images/attach/c/6//4725/4725421_skachat__antivirus__kasperskogo_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4725/4725554_garmin__unlock__generator_.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4725/4725737_skachat__unturned_.pdf
-