General
-
Target
d03b005449b94775ec3bae7956983f1d_JaffaCakes118
-
Size
383KB
-
MD5
d03b005449b94775ec3bae7956983f1d
-
SHA1
b7924af925c467a0c9e788d40647395b5aedacc9
-
SHA256
c5db00c1c036aa057ccae00678a7860cb3a7fba61dc41fe895aa17a65c73935c
-
SHA512
f230325d1f6da59910980341f852e69375872e1526613d433c57757da9948e5f98107f56e9ddfe71ec33d3f1849a2ccd13c2565dadcce594c12f7a5fe91c9f3e
-
SSDEEP
6144:h4T7iwSEGxzf7WZ8rqutznvA1oJ14UWu/2cCZ5dk9H3T1YYMt4JSvEQYc:hgtSEGZWZsqutznvfJKdcC+x3TxS4JSD
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
d03b005449b94775ec3bae7956983f1d_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%87%D0%B8%D1%82+%D0%BA%D0%BE%D0%B4+%D0%BD%D0%B0+%D0%B3%D1%82%D0%B0+%D0%BA%D1%80%D0%B8%D0%BC%D0%B8%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D0%B0%D1%8F+%D1%80%D0%BE%D1%81%D1%81%D0%B8%D1%8F+%D0%BD%D0%B0+%D0%BC%D0%B0%D1%88%D0%B8%D0%BD%D1%8B+mmohelper&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4752/4752333_zippo__nebo__chto_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4752/4752335_programma__diagnostiki_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4751/4751659_zayavlenie__na__povuyshenie_.pdf
-