tag:blogger.com,1999:blog-920941880988420853.post3141430570647765246..comments2021-11-25T03:38:55.535-03:00Comments on Sp0oKeR Labs: Malicious PDF not detected by any antivirus signature (Updated/Incorrect)Unknownnoreply@blogger.comBlogger1125tag:blogger.com,1999:blog-920941880988420853.post-26303245567473900002010-07-20T03:24:37.887-03:002010-07-20T03:24:37.887-03:00Increasingly heavy obfuscation techniques continue...Increasingly heavy obfuscation techniques continue to render AV detection ineffective. Reminds me of a Java exploit class using a large number of dynamic string reassembly tricks to greatly decrease detection. I've found JSUnpack and JoeDoc to be very useful in this analysis, and may obtain the Zynamics PDF tool in the near future. Thanks, @curtwcwhttps://www.blogger.com/profile/02911210741016337508noreply@blogger.com