General
-
Target
fc408f5a987add3940d32791ed680705_JaffaCakes118
-
Size
186KB
-
MD5
fc408f5a987add3940d32791ed680705
-
SHA1
a8910d1d03232f04be902bbc1ab3c0ac0a27a5ab
-
SHA256
3d3d0d014c21bd87c5056780fa773f9e635daf5537d41d34566b02110a1c709f
-
SHA512
9575a66dcef2aba9ae4670785f26a0ed8e11098044bcb2369762b901732af81e851814407878307cf8e420f7c1d49bce020d898ed02ebf043c5e66dd634065fd
-
SSDEEP
3072:I2irbxzGAFYDMxud7fKg3dXVmbOn5uU6KjnC8FWrH3UwdYy/LTR6RgS6:I2MKlWQ7Sg3d4bOBCTrXU7ypx
Malware Config
Signatures
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
fc408f5a987add3940d32791ed680705_JaffaCakes118
-
http://botcraftman.ru/?lip&keyword=windows+xp+sp3+zver+2014+%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C+%D1%82%D0%BE%D1%80%D1%80%D0%B5%D0%BD%D1%82+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE+64+bit+iso&charset=utf-8
-
http://fastpic.ru/
-
http://img0.liveinternet.ru/images/attach/c/5//4184/4184327_kupit_licenzionnuyy_maynkraft_za_10_rubley.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183193_lambreken_svoimi_rukami_shema_vuykroyki.pdf
-
http://img1.liveinternet.ru/images/attach/c/5//4183/4183246_model_idef0_primer.pdf
-
http://www.liveinternet.ru/click
-