General
-
Target
dd1dfb6e8922eea09707ac08ce6b37ad_JaffaCakes118
-
Size
186KB
-
MD5
dd1dfb6e8922eea09707ac08ce6b37ad
-
SHA1
83d4ea26fdfd1b9158e1169732d6e91173587601
-
SHA256
210bd29310c188d4ed268a0501c0c5f2df14c9273d3cdb2b41f83e5819071512
-
SHA512
a86a1057426e4c655888c76f3fd6dc69d2a90689d19e56cd955cca749b8c22550fb1d39c3a9275a06d975d01cd1bfb1ab33778c823c178fb56d6964757a18153
-
SSDEEP
3072:o2irbxzGAFYDMxud7fKg3dXVmbOn5uw6KjnnQAN5NcVclAcEE8t7ba0Ss:o2MKlWQ7Sg3d4bO9QAn8VN
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
dd1dfb6e8922eea09707ac08ce6b37ad_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B2%D0%B7%D0%BB%D0%BE%D0%BC%D0%B0%D0%BD%D0%BD%D1%83%D1%8E+%D0%B8%D0%B3%D1%80%D1%83+swamp+attack+%D0%BD%D0%B0+%D0%B0%D0%BD%D0%B4%D1%80%D0%BE%D0%B8%D0%B4&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4192/4192684_kod_aktivacii_dlya_kasperskogo_internet_sekyuriti_2015.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4191/4191065_skachat_realnuye_pacanuy_1_sezon_cherez_torrent.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4191/4191758_skachat_moduy_na_farming_simulyator_2015_besplatno.pdf
-
http://www.liveinternet.ru/click
-