Malware Hash Query

This utility queries our own database, VirusTotal.com, TheatExpert.com, and Team-CYMRU for known malware hashes and links to analysis reports.

Hash:


File: p600.pdf.vir
File size: 336141 bytes
File type: PDF document, version 1.4
MD5: e9b6bd98f6e38ac529ae33c18b3e7d2a
SHA1: 34918c7428a4ac8d90f562e9ed5a119aea921abc
SHA256: e6e36efb4a26863dca5de7c92e32fb59327f78d12df650e217dfffbb0458c7ee
SSDEEP: 6144:SuWhJud7A8U45qIlFwRtHQ2L9PTSF80wn0:SLnu5As5bFwRtn9PTGti0
Reported: 2010-07-20 01:58:50
Detection engine: 193
Result: Suspicious file - Javascript obfuscation syncAnnotScan to hide blocks
Confidence: 75
Scan hits: 2

Detected entities:

Javascript obfuscation getAnnots to hide blocks [ Octal | Octal ] show hexdump

Javascript obfuscation syncAnnotScan to hide blocks [ Octal | Octal ] show hexdump

RepositoryStatusMore Info

vicheck.ca

Javascript obfuscation syncAnnotScan to hide blocks
Confidence: 75
Scan hits: 2

Search type: pdfexploit
Matching: full
Type: Javascript obfuscation syncAnnotScan to hide blocks

VirusTotal.com

New/Nothing Found

none

ThreatExpert.com

New/Nothing Found

none

Team-CYMRU.org

New/Nothing Found

none


Shellcode Scan:

Shellcode not found.


Exploit Scan:

Exploit: not found.

Extracted 1864 bytes of Javascript code or XFA block.

JavaScript available on request.

Sandbox report:

Processing...this can take from 20 minutes to several hours depending on the load.

Comments (0): show/hide