Mobile and print friendly view | Contagio Exchange - Contagio community malware dump

Tuesday, November 10, 2009

Nov.8 PDF attack 國防部人力司招聘「專案研究助理」 from administrators@mnd.gov.tw Sun, Nov 08, 2009 8:13 PM

From: 國防部人力司 [mailto:administrators@mnd.gov.tw]
Sent: Sunday, November 08, 2009 8:13 PM
To: ouruser@ourdomain
Subject: 國防部人力司招聘「專案研究助理」
如附件所示,請 鑒核。
國防部人力司李意超敬上
地址:臺北市博愛路172號.

Approx. Translation:
Dept of Defense Manpower Division is recruiting a special research assistant
Please see attached.
Department of Defense Manpower Division
LI Yi-chao Sincerely,
Address: No. 172 Po-ai Road, Taipei.


Wepawet Analysis report for 國防部人力司招聘「專案研究助理 .pdf
Sample Overview
File 國防部人力司招聘「專案研究助理.pdf
MD5 35300c972545b9ae6efac2d24fea8b67
Analysis Started 2009-11-10 20:44:08
Report Generated 2009-11-10 20:44:18
Jsand version 1.03.02
Detection results
Detector Result
Jsand 1.03.02 malicious

Exploits



http://www.virustotal.com/analisis/0eb3ec50b891c437186233ac2058c849269b384bbeda23cbde6e64f6443b1802-1257914994

AntiVir
7.9.1.61
2009.11.10
HTML/Shellcode.Gen
Antiy-AVL
2.0.3.7
2009.11.11
-
Authentium
5.2.0.5
2009.11.11
-
Avast
4.8.1351.0
2009.11.10
JS:Pdfka-HU
AVG
8.5.0.423
2009.11.11
-
BitDefender
7.2
2009.11.11
Exploit.PDF-JS.Gen
CAT-QuickHeal
10.00
2009.11.10
-
ClamAV
0.94.1
2009.11.10
-
Comodo
2912
2009.11.11
-
DrWeb
5.0.0.12182
2009.11.10
-
eSafe
7.0.17.0
2009.11.10
-
eTrust-Vet
35.1.7113
2009.11.10
-
F-Prot
4.5.1.85
2009.11.10
-
F-Secure
9.0.15370.0
2009.11.09
Exploit.PDF-JS.Gen
Fortinet
3.120.0.0
2009.11.10
-
GData
19
2009.11.11
Exploit.PDF-JS.Gen
Ikarus
T3.1.1.74.0
2009.11.11
-
Jiangmin
11.0.800
2009.11.10
-
K7AntiVirus
7.10.893
2009.11.10
-
Kaspersky
7.0.0.125
2009.11.11
Exploit.JS.Pdfka.aiu
McAfee
5798
2009.11.10
-
McAfee+Artemis
5798
2009.11.10
-
McAfee-GW-Edition
6.8.5
2009.11.11
Script.Shellcode.Gen
Microsoft
1.5202
2009.11.10
Exploit:Win32/ShellCode.A
NOD32
4594
2009.11.11
PDF/Exploit.Gen
Norman
6.03.02
2009.11.10
JS/ShellCode.B
nProtect
2009.1.8.0
2009.11.10
-
Panda
10.0.2.2
2009.11.10
-
PCTools
7.0.3.5
2009.11.10
-
Prevx
3.0
2009.11.11
-
Rising
22.21.02.01
2009.11.11
-
Sophos
4.47.0
2009.11.11
Mal/JSShell-B
Sunbelt
3.2.1858.2
2009.11.11
Exploit.AdobeReader.gen (v)
Symantec
1.4.4.12
2009.11.11
-
TheHacker
6.5.0.2.065
2009.11.11
-
TrendMicro
9.0.0.1003
2009.11.10
Expl_ShellCodeSM
VBA32
3.12.10.11
2009.11.10
-
ViRobot
2009.11.11.2030
2009.11.11
-
VirusBuster
4.6.5.0
2009.11.10
-
Additional information
File size: 178204 bytes
MD5   : 35300c972545b9ae6efac2d24fea8b67
SHA1  : 5bf4fbce673f8a3471afc7de08dec025c00dc43e
SHA256: 0eb3ec50b891c437186233ac2058c849269b384bbeda23cbde6e64f6443b1802
TrID  : File type identification
Adobe Portable Document Format (100.0%)
ssdeep: 1536:GS0e9yjQ9vH80fs5ceMgrukffi9TItFIyJX+CH8ocGte9k7JYbwiLTS:GS0qG5ce9i9+FFlhcGte9k76bFm

No comments:

Post a Comment