Filename: Golf Clinic.pdf | MD5: 9c5cd8f4a5988acae6c2e2dce563446a

Link to here

Document information

Original filename: Golf Clinic.pdf

Size: 763188 bytes

Submitted: 2010-09-07 12:18:24

md5: 9c5cd8f4a5988acae6c2e2dce563446a

sha1: 18272cf888d8779d466901864537b732f842c351

sha256: d55aa45223606db795d29ab9e341c1c703e5a2e26bd98402779f52b6c2e9da2b

ssdeep: 12288:KSgEI13mS1AjMSgEI13mS1Ajgm9hJrRiI9q:2BhBE9hKIA

content/type: PDF document, version 1.4

analysis time: 22.95 s

Analysis: Malware [330] Beta OpenIOC

-1.-1@496925: suspicious.warning: end of file contains content

26.0 @ 266830: suspicious.obfuscation using String.replace

26.0 @ 266830: suspicious.string obfuscated unicode NOP sled

26.0 @ 266830: suspicious.warning: object contains JavaScript

26.0 @ 18367: suspicious.obfuscation using unescape

26.0 @ 266830: suspicious.obfuscation using unescape

26.0 @ 18367: suspicious.warning: object contains JavaScript

26.0 @ 18367: suspicious.string obfuscated unicode NOP sled

26.0 @ 18367: suspicious.obfuscation using String.replace

97.0 @ 84401: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

97.0 @ 332864: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

97.0 @ 84401: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

97.0 @ 332864: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

101.0 @ 124946: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

101.0 @ 373409: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

101.0 @ 373409: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

101.0 @ 124946: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

105.0 @ 165488: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

105.0 @ 165488: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

105.0 @ 413951: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

105.0 @ 413951: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

109.0 @ 205975: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

109.0 @ 454438: pdf.exploit fontfile SING table overflow CVE-2010-2883 A

109.0 @ 454438: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic

109.0 @ 205975: pdf.exploit fontfile SING table overflow CVE-2010-2883 generic