8d937b43fb32cf85af9520432d1abae8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8d937b43fb32cf85af9520432d1abae8_JaffaCakes118
Size

10.7MB
MD5

8d937b43fb32cf85af9520432d1abae8
SHA1

a98f54e67557dfebc3aaf7548cf9d9e99b67180a
SHA256

bee26265452fbc911a13478c95483c8886d2102a67be5ea474a7a0a3849eedd9
SHA512

57cca63cb572594b1092ca1e3bc2399a9763e59420c3b12e8d3342d69a5ed24cd39ed4cf452720b2a25163cfa06282dc2474ddb7bd8ffda71a6633e4480404fd
SSDEEP

196608:ZeJn2zGzyQJfdtb/5dxOMyxF0pOq979/uVMIbCyGKZH8UIvhqn:m2zGzyG/5byxF0UqpwSIWyGCH8+

Score

6^/10

pdf link javascript

Malware Config

Signatures

PDF contains JavaScript
Detects presence of JavaScript in PDF files.
pdf javascript
PDF contains one or more embedded files
Detects presence of embedded files in PDF files.
pdf
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/addjs2pdf_win/bin/addjs2pdf.exe

Files

8d937b43fb32cf85af9520432d1abae8_JaffaCakes118
.zip
addjs2pdf_win/bin/AddNavigationButtons.txt
.js
addjs2pdf_win/bin/ApplySecurityPolicy.txt
.js
addjs2pdf_win/bin/BookmarkReport.txt
.js
addjs2pdf_win/bin/CarbonCopy.txt
.js
addjs2pdf_win/bin/CreatePageBookmarks.txt
.js
addjs2pdf_win/bin/DeletePagesWithoutText.txt
.js
addjs2pdf_win/bin/ExtractEmails.txt
.js
addjs2pdf_win/bin/ExtractISBN.txt
.js
addjs2pdf_win/bin/ExtractSSNs.txt
.js
addjs2pdf_win/bin/ExtractURLs.txt
.js
addjs2pdf_win/bin/MarkMisspelledWordsWithSquiggly.txt
.js
addjs2pdf_win/bin/RenameUsingBookmarks.txt
.js
addjs2pdf_win/bin/RotatePages.txt
.js
addjs2pdf_win/bin/RotatePagesLandscape.txt
.js
addjs2pdf_win/bin/SaveFilesWithTimeStamp.txt
.js
addjs2pdf_win/bin/addjs2pdf.exe
.exe windows:4 windows x86 arch:x86

530b1cb0936e4b47bc6a4a8b2858e2c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
WideCharToMultiByte
GetExitCodeProcess
GetStartupInfoA
FreeLibrary
IsBadReadPtr
CreateFileA
GetLastError
WriteFile
SetFilePointer
InitializeCriticalSection
DeleteCriticalSection
FormatMessageA
GetLocalTime
CreateProcessA
GetACP
SetEndOfFile
IsBadCodePtr
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
CompareStringW
CompareStringA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
SetStdHandle
SetEnvironmentVariableA
GetOEMCP
ReadFile
WaitForSingleObject
CloseHandle
GetVersionExA
GetFileAttributesA
GetCurrentProcessId
GetFullPathNameA
GetCurrentDirectoryA
LoadLibraryA
GetProcAddress
GetCPInfo
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
GetModuleFileNameA
DeleteFileA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
HeapAlloc
RaiseException
HeapReAlloc
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
GetDriveTypeA
MultiByteToWideChar
MoveFileA
DuplicateHandle
GetSystemTimeAsFileTime
GetCommandLineA
GetVersion
GetModuleHandleA
FlushFileBuffers
SetHandleCount
GetStdHandle
GetFileType
HeapSize
HeapDestroy
HeapCreate
VirtualFree
GetLocaleInfoW

advapi32

RegEnumValueA
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteA

Exports

Exports

?ConvertPDFToText@@YGHPBD0HHH00PADH@Z
?PDF2TXTSetOptions@@YGHPBD0@Z

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 988KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
addjs2pdf_win/bin/encoding/CMap/78-EUC-H
addjs2pdf_win/bin/encoding/CMap/78-EUC-V
addjs2pdf_win/bin/encoding/CMap/78-H
addjs2pdf_win/bin/encoding/CMap/78-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/78-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/78-V
addjs2pdf_win/bin/encoding/CMap/78ms-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/78ms-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/83pv-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/90ms-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/90ms-RKSJ-UCS2
addjs2pdf_win/bin/encoding/CMap/90ms-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/90msp-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/90msp-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/90pv-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/90pv-RKSJ-UCS2
addjs2pdf_win/bin/encoding/CMap/90pv-RKSJ-UCS2C
addjs2pdf_win/bin/encoding/CMap/90pv-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/Add-H
addjs2pdf_win/bin/encoding/CMap/Add-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/Add-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/Add-V
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-0
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-1
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-2
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-3
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-B5pc
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-ETen-B5
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-H-CID
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-H-Host
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-H-Mac
addjs2pdf_win/bin/encoding/CMap/Adobe-CNS1-UCS2
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-0
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-1
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-2
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-3
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-4
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-GBK-EUC
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-GBpc-EUC
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-H-CID
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-H-Host
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-H-Mac
addjs2pdf_win/bin/encoding/CMap/Adobe-GB1-UCS2
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-0
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-1
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-2
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-3
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-4
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-90ms-RKSJ
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-90pv-RKSJ
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-H-CID
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-H-Host
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-H-Mac
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-PS-H
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-PS-V
addjs2pdf_win/bin/encoding/CMap/Adobe-Japan1-UCS2
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-0
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-1
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-2
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-H-CID
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-H-Host
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-H-Mac
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-KSCms-UHC
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-KSCpc-EUC
addjs2pdf_win/bin/encoding/CMap/Adobe-Korea1-UCS2
addjs2pdf_win/bin/encoding/CMap/AdobeFnt.lst
addjs2pdf_win/bin/encoding/CMap/B5-H
addjs2pdf_win/bin/encoding/CMap/B5-V
addjs2pdf_win/bin/encoding/CMap/B5pc-H
addjs2pdf_win/bin/encoding/CMap/B5pc-UCS2
addjs2pdf_win/bin/encoding/CMap/B5pc-UCS2C
addjs2pdf_win/bin/encoding/CMap/B5pc-V
addjs2pdf_win/bin/encoding/CMap/CNS-EUC-H
addjs2pdf_win/bin/encoding/CMap/CNS-EUC-V
addjs2pdf_win/bin/encoding/CMap/CNS1-H
addjs2pdf_win/bin/encoding/CMap/CNS1-V
addjs2pdf_win/bin/encoding/CMap/CNS2-H
addjs2pdf_win/bin/encoding/CMap/CNS2-V
addjs2pdf_win/bin/encoding/CMap/ETHK-B5-H
addjs2pdf_win/bin/encoding/CMap/ETHK-B5-V
addjs2pdf_win/bin/encoding/CMap/ETen-B5-H
addjs2pdf_win/bin/encoding/CMap/ETen-B5-UCS2
addjs2pdf_win/bin/encoding/CMap/ETen-B5-V
addjs2pdf_win/bin/encoding/CMap/ETenms-B5-H
addjs2pdf_win/bin/encoding/CMap/ETenms-B5-V
addjs2pdf_win/bin/encoding/CMap/EUC-H
addjs2pdf_win/bin/encoding/CMap/EUC-V
addjs2pdf_win/bin/encoding/CMap/Ext-H
addjs2pdf_win/bin/encoding/CMap/Ext-RKSJ-H
addjs2pdf_win/bin/encoding/CMap/Ext-RKSJ-V
addjs2pdf_win/bin/encoding/CMap/Ext-V
addjs2pdf_win/bin/encoding/CMap/GB-EUC-H
addjs2pdf_win/bin/encoding/CMap/GB-EUC-V
addjs2pdf_win/bin/encoding/CMap/GB-H
addjs2pdf_win/bin/encoding/CMap/GB-V
addjs2pdf_win/bin/encoding/CMap/GBK-EUC-H
addjs2pdf_win/bin/encoding/CMap/GBK-EUC-UCS2
addjs2pdf_win/bin/encoding/CMap/GBK-EUC-V
addjs2pdf_win/bin/encoding/CMap/GBK2K-H
addjs2pdf_win/bin/encoding/CMap/GBK2K-V
addjs2pdf_win/bin/encoding/CMap/GBKp-EUC-H
addjs2pdf_win/bin/encoding/CMap/GBKp-EUC-V
addjs2pdf_win/bin/encoding/CMap/GBT-EUC-H
addjs2pdf_win/bin/encoding/CMap/GBT-EUC-V
addjs2pdf_win/bin/encoding/CMap/GBT-H
addjs2pdf_win/bin/encoding/CMap/GBT-V
addjs2pdf_win/bin/encoding/CMap/GBTpc-EUC-H
addjs2pdf_win/bin/encoding/CMap/GBTpc-EUC-V
addjs2pdf_win/bin/encoding/CMap/GBpc-EUC-H
addjs2pdf_win/bin/encoding/CMap/GBpc-EUC-UCS2
addjs2pdf_win/bin/encoding/CMap/GBpc-EUC-UCS2C
addjs2pdf_win/bin/encoding/CMap/GBpc-EUC-V
addjs2pdf_win/bin/encoding/CMap/H
addjs2pdf_win/bin/encoding/CMap/HKdla-B5-H
addjs2pdf_win/bin/encoding/CMap/HKdla-B5-V
addjs2pdf_win/bin/encoding/CMap/HKdlb-B5-H
addjs2pdf_win/bin/encoding/CMap/HKdlb-B5-V
addjs2pdf_win/bin/encoding/CMap/HKgccs-B5-H
addjs2pdf_win/bin/encoding/CMap/HKgccs-B5-V
addjs2pdf_win/bin/encoding/CMap/HKm314-B5-H
addjs2pdf_win/bin/encoding/CMap/HKm314-B5-V
addjs2pdf_win/bin/encoding/CMap/HKm471-B5-H
addjs2pdf_win/bin/encoding/CMap/HKm471-B5-V
addjs2pdf_win/bin/encoding/CMap/HKscs-B5-H
addjs2pdf_win/bin/encoding/CMap/HKscs-B5-V
addjs2pdf_win/bin/encoding/CMap/Hankaku
addjs2pdf_win/bin/encoding/CMap/Hiragana
addjs2pdf_win/bin/encoding/CMap/Identity-H
addjs2pdf_win/bin/encoding/CMap/Identity-V
addjs2pdf_win/bin/encoding/CMap/KSC-EUC-H
addjs2pdf_win/bin/encoding/CMap/KSC-EUC-V
addjs2pdf_win/bin/encoding/CMap/KSC-H
addjs2pdf_win/bin/encoding/CMap/KSC-Johab-H
addjs2pdf_win/bin/encoding/CMap/KSC-Johab-V
addjs2pdf_win/bin/encoding/CMap/KSC-V
addjs2pdf_win/bin/encoding/CMap/KSCms-UHC-H
addjs2pdf_win/bin/encoding/CMap/KSCms-UHC-HW-H
addjs2pdf_win/bin/encoding/CMap/KSCms-UHC-HW-V
addjs2pdf_win/bin/encoding/CMap/KSCms-UHC-UCS2
addjs2pdf_win/bin/encoding/CMap/KSCms-UHC-V
addjs2pdf_win/bin/encoding/CMap/KSCpc-EUC-H
addjs2pdf_win/bin/encoding/CMap/KSCpc-EUC-UCS2
addjs2pdf_win/bin/encoding/CMap/KSCpc-EUC-UCS2C
addjs2pdf_win/bin/encoding/CMap/KSCpc-EUC-V
addjs2pdf_win/bin/encoding/CMap/Katakana
addjs2pdf_win/bin/encoding/CMap/NWP-H
addjs2pdf_win/bin/encoding/CMap/NWP-V
addjs2pdf_win/bin/encoding/CMap/RKSJ-H
addjs2pdf_win/bin/encoding/CMap/RKSJ-V
addjs2pdf_win/bin/encoding/CMap/Roman
addjs2pdf_win/bin/encoding/CMap/UCS2-90ms-RKSJ
addjs2pdf_win/bin/encoding/CMap/UCS2-90pv-RKSJ
addjs2pdf_win/bin/encoding/CMap/UCS2-B5pc
addjs2pdf_win/bin/encoding/CMap/UCS2-ETen-B5
addjs2pdf_win/bin/encoding/CMap/UCS2-GBK-EUC
addjs2pdf_win/bin/encoding/CMap/UCS2-GBpc-EUC
addjs2pdf_win/bin/encoding/CMap/UCS2-KSCms-UHC
addjs2pdf_win/bin/encoding/CMap/UCS2-KSCpc-EUC
addjs2pdf_win/bin/encoding/CMap/UniCNS-UCS2-H
addjs2pdf_win/bin/encoding/CMap/UniCNS-UCS2-V
addjs2pdf_win/bin/encoding/CMap/UniCNS-UTF16-H
addjs2pdf_win/bin/encoding/CMap/UniCNS-UTF16-V
addjs2pdf_win/bin/encoding/CMap/UniCNS-UTF8-H
addjs2pdf_win/bin/encoding/CMap/UniCNS-UTF8-V
addjs2pdf_win/bin/encoding/CMap/UniGB-UCS2-H
addjs2pdf_win/bin/encoding/CMap/UniGB-UCS2-V
addjs2pdf_win/bin/encoding/CMap/UniGB-UTF16-H
addjs2pdf_win/bin/encoding/CMap/UniGB-UTF16-V
addjs2pdf_win/bin/encoding/CMap/UniGB-UTF8-H
addjs2pdf_win/bin/encoding/CMap/UniGB-UTF8-V
addjs2pdf_win/bin/encoding/CMap/UniJIS-UCS2-H
addjs2pdf_win/bin/encoding/CMap/UniJIS-UCS2-HW-H
addjs2pdf_win/bin/encoding/CMap/UniJIS-UCS2-HW-V
addjs2pdf_win/bin/encoding/CMap/UniJIS-UCS2-V
addjs2pdf_win/bin/encoding/CMap/UniJIS-UTF16-H
addjs2pdf_win/bin/encoding/CMap/UniJIS-UTF16-V
addjs2pdf_win/bin/encoding/CMap/UniJIS-UTF8-H
addjs2pdf_win/bin/encoding/CMap/UniJIS-UTF8-V
addjs2pdf_win/bin/encoding/CMap/UniJISPro-UCS2-HW-V
addjs2pdf_win/bin/encoding/CMap/UniJISPro-UCS2-V
addjs2pdf_win/bin/encoding/CMap/UniJISPro-UTF8-V
addjs2pdf_win/bin/encoding/CMap/UniKS-UCS2-H
addjs2pdf_win/bin/encoding/CMap/UniKS-UCS2-V
addjs2pdf_win/bin/encoding/CMap/UniKS-UTF16-H
addjs2pdf_win/bin/encoding/CMap/UniKS-UTF16-V
addjs2pdf_win/bin/encoding/CMap/UniKS-UTF8-H
addjs2pdf_win/bin/encoding/CMap/UniKS-UTF8-V
addjs2pdf_win/bin/encoding/CMap/V
addjs2pdf_win/bin/encoding/CMap/WP-Symbol
addjs2pdf_win/bin/encoding/d050000l.pfb
addjs2pdf_win/bin/encoding/n019003l.pfb
addjs2pdf_win/bin/encoding/n019004l.pfb
addjs2pdf_win/bin/encoding/n019023l.pfb
addjs2pdf_win/bin/encoding/n019024l.pfb
addjs2pdf_win/bin/encoding/n021003l.pfb
addjs2pdf_win/bin/encoding/n021004l.pfb
addjs2pdf_win/bin/encoding/n021023l.pfb
addjs2pdf_win/bin/encoding/n021024l.pfb
addjs2pdf_win/bin/encoding/n022003l.pfb
addjs2pdf_win/bin/encoding/n022004l.pfb
addjs2pdf_win/bin/encoding/n022023l.pfb
addjs2pdf_win/bin/encoding/n022024l.pfb
addjs2pdf_win/bin/encoding/s050000l.pfb
addjs2pdf_win/bin/help.pdf
.pdf
- http://VeryPDF.com
addjs2pdf_win/bin/js-alert.txt
.js
addjs2pdf_win/bin/js-diskfile1.txt
.js
addjs2pdf_win/bin/js-diskfile2.txt
.js
addjs2pdf_win/bin/js-full.txt
.js
addjs2pdf_win/bin/js-hide-buttons.txt
addjs2pdf_win/bin/js-runat-after-printing-remove-watermark.txt
addjs2pdf_win/bin/js-runat-after-printing.txt
.js
addjs2pdf_win/bin/js-runat-after-saving.txt
.js
addjs2pdf_win/bin/js-runat-before-printing-add-watermark.txt
.js
addjs2pdf_win/bin/js-runat-before-printing.txt
.js
addjs2pdf_win/bin/js-runat-before-saving.txt
.js
addjs2pdf_win/bin/js-runat-close.txt
.js
addjs2pdf_win/bin/js-runat-open-printing-remove-watermark.txt
addjs2pdf_win/bin/js-runat-open-watermark.txt
.js
addjs2pdf_win/bin/js-runat-open.txt
.js
addjs2pdf_win/bin/js-runat-printing-watermark.txt
.js
addjs2pdf_win/bin/js-set-expiration-date.txt
.js
addjs2pdf_win/bin/test-add-bookmarks.bat
addjs2pdf_win/bin/test-all.bat
addjs2pdf_win/bin/test-diskfile.bat
addjs2pdf_win/bin/test-expiration-date.bat
addjs2pdf_win/bin/test-hide-buttons.bat
addjs2pdf_win/bin/test-printing-watermark.bat
addjs2pdf_win/doc/readme.txt
addjs2pdf_win/sample/AcorXFA_BasicToggle.pdf
.pdf
- http://www.adobe.com/products/acroba
- http://www.adobe.com/support/products/acrreader.html
addjs2pdf_win/sample/AcquireMenuItemNames.pdf
.pdf
- http://www.pdfscripting.com
- http://www.windjack.com
addjs2pdf_win/sample/AcroForm_BasicToggle.pdf
.pdf
AcroForm_BasicToggle.doc
.doc windows office2003
addjs2pdf_win/sample/AcroForm_ToggleButton_Sample.pdf
.pdf
- http://www.pdfscripting.com
- http://www.windjack.com
GearRatioCalculator.doc
.doc windows office2003
addjs2pdf_win/sample/BouncingButton.pdf
.pdf
- http://www.windjack.com
addjs2pdf_win/sample/ConditionalCalcScripts.pdf
.pdf
addjs2pdf_win/sample/DynamicEmail_XFAForm_V2.pdf
.pdf
addjs2pdf_win/sample/Eliza.pdf
.pdf
addjs2pdf_win/sample/ImExportAttachSample.pdf
.pdf
addjs2pdf_win/sample/JSPopupCalendar.pdf
.pdf
addjs2pdf_win/sample/JavaScriptClock.pdf
.pdf
addjs2pdf_win/sample/Matrix2DOperations.pdf
.pdf
addjs2pdf_win/sample/ModifySubmit_Example.pdf
.pdf
addjs2pdf_win/sample/RobotArm_3Ddemo.pdf
.pdf
addjs2pdf_win/sample/SDKJSSnippet1.pdf
.pdf
addjs2pdf_win/sample/SimpleFormCalculations.pdf
.pdf
addjs2pdf_win/sample/TheFlyv3.pdf
.js .pdf polyglot
addjs2pdf_win/sample/ToolbarButton.pdf
.pdf
addjs2pdf_win/sample/jsprint.pdf
.pdf
addjs2pdf_win/sample/ppjs_eventexamples.pdf
.pdf
addjs2pdf_win/sample/ppjslc_commonex_1.pdf
.pdf
addjs2pdf_win/sample/ppjslc_commonex_2.pdf
.pdf
addjs2pdf_win/sample/ppjslc_commonex_3.pdf
.pdf
addjs2pdf_win/sample/ppjslc_commonex_4.pdf
.pdf

Sharing

General

Malware Config

Signatures

Files

530b1cb0936e4b47bc6a4a8b2858e2c5

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

Exports

Exports

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 2.0MB - Virtual size: 2.0MB

.data Size: 988KB - Virtual size: 1.2MB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 2.0MB - Virtual size: 2.0MB

.data
Size: 988KB - Virtual size: 1.2MB

.rsrc
Size: 4KB - Virtual size: 1KB