Thursday, October 15, 2009

Oct. 15, 2009 Attack of the Day. Trojan.Swifi /Trojan.SWF.HeapSpray.B / Exploit:Win32/Pidief.S 中共二炮部隊導彈之發展 The Development of Communist China's Second Artillery Corps Missile from F560123@ms13.hinet.net Thu 10/15/2009 10:50 PM


Download infected pdf 新型導彈技術發展.pdf (Password protected archive. Please contact me if you need the password)


From: CHaiwang [mailto:F560123@ms13.hinet.net]
Sent: Thursday, October 15, 2009 10:50 PM
To:
Subject: 中共二炮部隊導彈之發展

請參閱附件!!!!

中共解放軍研究所
蔡萬助
2009/10/16

注意: 若要保護電腦對抗病毒,電子郵件程式可以防止傳送或接收特定類型的檔案附件。請檢查您的電子郵件安全性設定來確定附件如何處理


    machine translation (pls contribute a better one, thank you)

 From: CHaiwang [mailto: F560123@ms13.hinet.net]
    
Sent: Thursday, October 15, 2009 10:50 PM
    
To:
    
Subject:
    
Please refer to Annex!!!!
    
Chinese People's Liberation Army Institute of ?

        2009/10/16
    Note: To protect your computer against viruses, e-mail program can prevent sending or receiving certain types of file attachments. Please check your e-mail security settings to determine how to handle attachments

Virustotal results
http://www.virustotal.com/analisis/e13fa200c0b2ac9c9f2c722b261ca881a7bee277014ca6e85cff5db3941d6643-1261108031File ________________________.pdf received on 2009.12.18 03:47:11 (UTC)
Result: 18/41 (43.90%)
 Compact Print results  Antivirus Version Last Update Result
a-squared 4.5.0.43 2009.12.18 Exploit.Win32.Pidief!IK
AntiVir 7.9.1.114 2009.12.17 EXP/Pidief.ban
Antiy-AVL 2.0.3.7 2009.12.17 Exploit/Win32.Pidief
Authentium 5.2.0.5 2009.12.02 PDF/Expl.CG
Avast 4.8.1351.0 2009.12.18 PDF:Dropper-D
BitDefender 7.2 2009.12.18 Trojan.SWF.HeapSpray.B
ClamAV 0.94.1 2009.12.18 Exploit.PDF-247
Comodo 3279 2009.12.18 UnclassifiedMalware
eSafe 7.0.17.0 2009.12.16 Win32.Swifi
F-Secure 9.0.15370.0 2009.12.17 Exploit:W32/Pidief.JC
GData 19 2009.12.18 Trojan.SWF.HeapSpray.B
Ikarus T3.1.1.79.0 2009.12.18 Exploit.Win32.Pidief
Kaspersky 7.0.0.125 2009.12.18 Exploit.Win32.Pidief.crd
McAfee-GW-Edition 6.8.5 2009.12.18 Exploit.Pidief.ban
Microsoft 1.5302 2009.12.18 Exploit:Win32/Pidief.S
Panda 10.0.2.2 2009.12.15 Exploit/Pdfka
PCTools 7.0.3.5 2009.12.18 Trojan.Swifi
Symantec 1.4.4.12 2009.12.18 Trojan.Swifi 




Additional information
File size: 167486 bytes
MD5   : 16a9f340c0d353332ba6f525376c93e1
SHA1  : bf1dda63ee7c947d20e8ce600d92c4cfa0aacdef
SHA256: e13fa200c0b2ac9c9f2c722b261ca881a7bee277014ca6e85cff5db3941d6643

Wepawet
http://wepawet.iseclab.org/view.php?hash=16a9f340c0d353332ba6f525376c93e1&type=js
File 新型導彈技術發展.pdf
MD5 16a9f340c0d353332ba6f525376c93e1
Analysis Started 2009-12-17 20:04:05
Report Generated 2009-12-17 20:04:07
Jsand version 1.03.02

Detection results
Detector Result
Jsand 1.03.02 benign  :(


No comments:

Post a Comment