General
-
Target
cffe4f976d3067c7af41a9b185e22f45_JaffaCakes118
-
Size
361KB
-
MD5
cffe4f976d3067c7af41a9b185e22f45
-
SHA1
bc55ac757f6d07ea7364a7c469267b9f9d049670
-
SHA256
b9f4ca37cacd3ba696c3099d89b40b8b0548175e1d5a4d40876bd891f03b48a1
-
SHA512
4360b0fd0dba2eb85d7946553baa4412f807995159ad07ff7bf0f45a3e8d9288c8934f9d772564f1a2b05e6012242381ab3b78d780164e884af8d3467e2dd1f2
-
SSDEEP
6144:FPwKOAkLGSSRye5Nshse9MzrOlfIYKhboRu1wiVcC2LyNzuRpDx06YC8Z96VMiV0:1w/BCSC1oee9MN1uurCCeyNzcnJYC8SM
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
cffe4f976d3067c7af41a9b185e22f45_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=solidworks+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE+%D1%80%D1%83%D1%81%D1%81%D0%BA%D0%B0%D1%8F+%D0%B2%D0%B5%D1%80%D1%81%D0%B8%D1%8F+%D0%B1%D0%B5%D0%B7+%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D0%B8&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/6//4654/4654676_chek_order_sberbanka_shrift.pdf
-
http://img0.liveinternet.ru/images/attach/c/6//4654/4654704_24_demona_billi_milligana_skachat_torrent.pdf
-