General
-
Target
df2b7ab0ff2d5b2ad4595758df5e88ab_JaffaCakes118
-
Size
389KB
-
MD5
df2b7ab0ff2d5b2ad4595758df5e88ab
-
SHA1
6d674110f6c3a538861a73a4fdba3cdca451a2f1
-
SHA256
db0c3f025c976a578462654d87998d3064d194f797ad4c956f0ea1f3c5182816
-
SHA512
9fc10534e8dc01a5ab9da07ac3f36084915e76c639e9b878e2c4491f41155fe99fdc51c6c94007096d547855304247a9af2b52898eabcc166d22b11079329ff5
-
SSDEEP
6144:ihcgu+kuq4h5EDKF8QpMOWqYI2VbaeQ/l6ivUBaw3UXcDjnP7iI2at/78g00N6Eq:kcgwu/8QAfI2lKnvI3VjnziI7b0Y63
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
df2b7ab0ff2d5b2ad4595758df5e88ab_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%BF%D1%80%D0%B5%D0%B6%D0%B4%D0%B5+%D1%87%D0%B5%D0%BC+%D0%B2%D0%B0%D1%88+%D1%80%D0%B5%D0%B1%D0%B5%D0%BD%D0%BE%D0%BA+%D1%81%D0%B2%D0%B5%D0%B4%D0%B5%D1%82+%D0%B2%D0%B0%D1%81+%D1%81+%D1%83%D0%BC%D0%B0+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE+pdf&charset=utf-8
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787839_skachat__word__2007_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787927_kak__razblokirovat__sim_.pdf
-
http://img1.liveinternet.ru/images/attach/c/7//4787/4787956_programma__dlya__laykov_.pdf
-