A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #1590  by Brookit
 Sun Jul 18, 2010 10:03 am
Good analysis! Recently I have a lot to do with PDF format, so can you provide the malformed PDF file?

I hope Daniel will release his PDF Insider for free, since zynamics sells their PDF Dissector for 250 €, at least. And visually I don't see a great difference between the features of both. ;)
 #1594  by EP_X0FF
 Sun Jul 18, 2010 12:29 pm
Indeed interesting stuff.

Also would be great to have a samples attached here :D

p.s.
Use reputation buttons if you like this analysis :)
 #1600  by Antelox
 Sun Jul 18, 2010 4:44 pm
First of all sorry for the delay with which I have responded to the thread then I'm sorry to tell you that I no longer have the sample with me, but you can always do a search through md5 hash :(

Thx very much for the positive feedback!

@Brookit: I do not know exactly when and how Daniel release his fantastic new tool, visit and contact ntcore.com for more info =). I can only tell you that, although it is still in development, PDF Insider is UBER :D

Bye. =)