depth[.]external[.]network[.]penetration[.]test[.]sample[.]deliverable-1-2[.]pdf

Sharing

Copy URL

Twitter E-mail

General

Target

depth.external.network.penetration.test.sample.deliverable-1-2.pdf
Size

3.4MB
MD5

ef13278c3cf033f2e6235aad05953364
SHA1

496a349f8e7dd0f9ce92646cf64890021e970ed4
SHA256

5234a39e855b69dce4b93478b28a54682afa57904f3a75417dd564886faa0db4
SHA512

bdef2b99f58360567afed1bac88cecd768b5b38415469cb2fc9ffd247713a02e1728f8b8f32da4f557ab2de24c4ec7e6e2139d549ba8c1ca3328cbc6ab77cc13
SSDEEP

98304:wnqQSZP0ZrseUX/+8JZd5fszUAA7nEMEJ:+qVsZr8JtYr9J

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

pdf link

resource	yara_rule
sample	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Files

depth.external.network.penetration.test.sample.deliverable-1-2.pdf
.pdf
- http://zerodayinitiative.com/advisories/ZDI-13-229/
- http://seclists.org/bugtraq/2013/Oct/126
- http://10.10.33.105/
- http://10.10.33.105/invoker/EJBInvokerServlet
- https://support.microsoft.com/en-us/help/3197835/description-of-the-security-update-for-windows-xp-and-windows-server
- https://technet.microsoft.com/en-us/mt227395.aspx
- http://10.10.33.110:8161/admin
- https://80.69.11.10/jamon/jamonadmin.jsp
- https://80.69.16.93/jamon/mondetail.jsp
- http://10.10.33.112/server-info
- http://10.10.33.112/server-status
- http://php.net/eol.php
- https://www.owasp.org/index.php/Top_10_2013-A9-Using_Components_with_Known_Vulnerabilities
- https://www.owasp.org/index.php/Top_10_2010-A6-Security_Misconfiguration
- https://www.pcisecuritystandards.org/documents/Migrating_from_SSL_Early_TLS_Information%20Supplement_v1.pdf
- http://blog.pcisecuritystandards.org/migrating-from-ssl-and-early-tls
- http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r1.pdf
- http://www.nist.gov/itl/csd/tls-043014.cfm
- https://raymii.org/s/tutorials/Strong_SSL_Security_On_Apache2.html
- https://www.ssllabs.com/ssltest/
- https://www.openssl.org/~bodo/ssl-poodle.pdf
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
- https://www.rc4nomore.com/
- https://sweet32.info/
- https://en.wikipedia.org/wiki/Forward_secrecy
- https://weakdh.org/
- https://freakattack.com/
- https://en.wikipedia.org/wiki/Transport_Layer_Security
- http://10.10.33.105/invokerJMXInvokerServlet
- http://www.pentest-standard.org/
- http://www.sampleclient.com
- http://api.sampleclient.com
- http://cms.sampleclient.com
- https://httpd.apache.org/docs/2.4/mod/mod_status.html
- https://httpd.apache.org/docs/2.4/mod/mod_info.html
- http://mail.sampleclient.com
- http://var_unserializer.re
- http://tomcat.sampleclient.com
- http://vpn.sampleclient.com
- https://www.rc4nomore.com
- https://sweet32.info
- https://weakdh.org
- https://freakattack.com
- http://secure.sampleclient.com
- http://portal.sampleclient.com
- http://www2.sampleclient.com
- http://customer.sampleclient.com
- http://staging1.sampleclient.com
- http://scmysql01.sampleclient.com
- http://remote.sampleclient.com
- http://siem.sampleclient.com
- http://sampleclient.com
- http://google-public-dns-a.google.com
- http://dbru.br.ns.els-gms.att.net
- http://dmtu.mt.ns.els-gms.att.net
- http://ha.ckers.org/fierce/
- http://depthsecurity.com
- http://Censys.io
- http://Shodan.io
- http://Ysoserial.net
- Show all