General
-
Target
fa849ef7dc21c4d2fb195723a15283fd_JaffaCakes118
-
Size
357KB
-
MD5
fa849ef7dc21c4d2fb195723a15283fd
-
SHA1
2b55ae35aa21a42d0b5484da367356488b4d8f47
-
SHA256
1cf4aad34882b137586cf3eeb8c0809c64300b0a668aa0112ea20818c6ee49a1
-
SHA512
c687503a42647ef2b3a7289f5ae8f60a883086ea3b7c3397ca60c24017524efd29a04ea52c43327b1c796c26fa5d8f882319846fb8a208ddddf094ab6f018c46
-
SSDEEP
6144:lsuEG6HWPrkAtCP/syk2POJVnxz+8rKqw0K6umCoovW2se/RAIl42DwU:ChWVtI/1k2Cxz5rjvtuLvlseJlTDL
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
fa849ef7dc21c4d2fb195723a15283fd_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D0%A1%D1%85%D0%B5%D0%BC%D0%B0+%D0%B1%D0%BB%D0%BE%D0%BA%D0%B0+%D0%BF%D1%80%D0%B5%D0%B4%D0%BE%D1%85%D1%80%D0%B0%D0%BD%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9+%D0%BE%D0%BF%D0%B5%D0%BB%D1%8C+%D0%B7%D0%B0%D1%84%D0%B8%D1%80%D0%B0&charset=utf-8
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802368_tank__t72__balkanuy_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802406_prikaz__o__naznachenii_.pdf
-
http://img0.liveinternet.ru/images/attach/c/7//4802/4802450_instrukciya__po__upravleniyu_.pdf
-