General
-
Target
bd871b39ec86168095c9c320d1bcf4e1_JaffaCakes118
-
Size
186KB
-
MD5
bd871b39ec86168095c9c320d1bcf4e1
-
SHA1
4f256fa101575dd08f50a50b723c24a5101d31f4
-
SHA256
e59ac5ded1fc79c89d737404b3552d86d21b6d727257a0945bb12656fc6336fb
-
SHA512
ac1aa3e66ba7642514070c3f569cfa6bf79b78a2a6e9cb4cf2b4b2acf666cec9114ed4421d10dd4d0b0ee97c0d79347450befc4bf6aaf2e652de0e850f0503f6
-
SSDEEP
3072:02irbxzGAFYDMxud7fKg3dXVmbOn5uM6KjngUEYD9R0x/wKwSP:02MKlWQ7Sg3d4bOxgUb4Ya
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
bd871b39ec86168095c9c320d1bcf4e1_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%B0%D0%B2%D0%B8%D1%80%D0%B0+2015+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE+%D1%80%D1%83%D1%81%D1%81%D0%BA%D0%B0%D1%8F+%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F+%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384153_skachat_aytyuns_9.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4384/4384652_skachat_windows_7_home_basic_x64_oem.pdf
-
http://img1.liveinternet.ru/images/attach/c/6//4385/4385688_skachat_admin_hak.pdf
-
http://www.liveinternet.ru/click
-