Clicky

Pages

Thursday, July 1, 2010

July 01 CVE-2009-4324 PDF draft document from ly203972@gmail.com


Download d3c23ff3f116f0f80cb8d3e0e1496d93 ATT58351.pdf  as a password protected archive (contact me if you need the password)
From: 楊千惠 [mailto:ly203972@gmail.com]
Sent: Thursday, July 01, 2010 10:57 PM
Subject: 輸入文件初稿,請參考!

提供輸入文件議題之粗淺資料,請大家參考指教。加油! 

From: Yang Qianhui [mailto: ly203972@gmail.com]Sent: Thursday, July 01, 2010 10:57 PM
Subject: draft document..
 
Issue of providing superficial information on the input file, please refer to teach. Come on!


 File ATT58351.pdf received on 2010.07.04 03:26:21 (UTC)
http://www.virustotal.com/analisis/310f2caa515f58c48b355a3813b48512201d419495f8410e97c8c9e8512da0a1-1278213981
Result: 12/41 (29.27%)
Antivirus     Version     Last Update     Result
a-squared    5.0.0.31    2010.07.03    Exploit.JS.Pdfka!IK
AntiVir    8.2.4.2    2010.07.02    EXP/Pidief.244965
BitDefender    7.2    2010.07.04    Exploit.PDF-JS.Gen
CAT-QuickHeal    11.00    2010.06.30    Exploit.PDF.FlateDecode
DrWeb    5.0.2.03300    2010.07.04    Exploit.PDF.687
F-Prot    4.6.1.107    2010.07.03    JS/ShellCode.X.gen
F-Secure    9.0.15370.0    2010.07.03    Exploit.PDF-JS.Gen
GData    21    2010.07.04    Exploit.PDF-JS.Gen
Ikarus    T3.1.1.84.0    2010.07.03    Exploit.JS.Pdfka
McAfee-GW-Edition    2010.1    2010.07.02    Heuristic.BehavesLike.JS.BufferOverflow.A
Norman    6.05.10    2010.07.03    JS/Shellcode.FL
nProtect    2010-07-03.02    2010.07.03    Exploit.PDF-JS.Gen
Additional information
File size: 272098 bytes
MD5...: d3c23ff3f116f0f80cb8d3e0e1496d93 



Vicheck result
PDF Exploit call to media.newPlayer CVE-2009-4324 
https://www.vicheck.ca/malware.php?hash=d3c23ff3f116f0f80cb8d3e0e1496d93 

No comments:

Post a Comment