General
-
Target
d485ea27eeb97f6559a724295604895f_JaffaCakes118
-
Size
185KB
-
MD5
d485ea27eeb97f6559a724295604895f
-
SHA1
7af651a256c877982bc6804dbb30460c3527e6ca
-
SHA256
f6911f0d32b6497849cf52f68f04bfc3984713151c64ca52c78a72cbf51308c9
-
SHA512
a67b6a16aa9f0c2d4257789bb46f5c3e393b84e9fa4d84be009dc23a8852c99dc981ecd05386fcf2e7e25f34e51b0932c0af2dec25b92b7c184c9be39bc38507
-
SSDEEP
3072:G2irbxzGAFYDMxud7fKg3dXVmbOn5uK6KjnH1tU3ygqVzWmw5/iQ/O4St:G2MKlWQ7Sg3d4bO3x+iQ+
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
d485ea27eeb97f6559a724295604895f_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A0%D0%B5%D0%B0%D0%BB%D1%8C%D0%BD%D0%BE%D0%B5+%D0%B8%D0%B7%D0%BD%D0%B0%D1%81%D0%B8%D0%BB%D0%BE%D0%B2%D0%B0%D0%BD%D0%B8%D0%B5+%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184534_hspa_locker_13b_skachat_besplatno.pdf
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184789_evaphone_na_russkom_skachat.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4189/4189507_videoadapter_matrox_g55_mdha32db_drayver.pdf
-
http://www.liveinternet.ru/click
-