Security Basics mailing list archives

Re: Possible Payload inside PDF or HTML files

From: Shawn <swarzkopf () legolas sinnerz us>
Date: Wed, 13 Jun 2007 15:22:28 -0400 (EDT)

Hmmm...I'm a novice, but I have to immediatley think that your system hasalready been compromised by a trojan or ohter malware allowing them tomonitor your activity...the PDFs and files you are receiving now could beperfectly clean...


-Shawn

On Tue, 12 Jun 2007, Danux wrote:

Hi experts,

Is there a way to know if exist a payload inside a PDF or HTML File,

Let me explain the problem, i marketing company is sending me emails
and is able to know if i open, delete, sent to spam or forward the
message so i think there is a payload inside that files.

Let me tell you that the HTML file looks like a normal one without
javascript or obfuscation or another malicious payload, only links and
images,

Is there a tool to look inside PDF files?
Or a Steganos tool to test the images from HTML file?

What you think?

Thanks in advance





--
Danux, CISSP
Chief Information Security Officer
Macula Security Consulting Group
www.macula-group.com

Current thread:

Possible Payload inside PDF or HTML files Danux (Jun 13)
- Re: Possible Payload inside PDF or HTML files Shawn (Jun 13)
- Re: Possible Payload inside PDF or HTML files security.xentek (Jun 13)
  - Re: Possible Payload inside PDF or HTML files Alcides (Jun 14)
    - Re: Possible Payload inside PDF or HTML files Danux (Jun 14)
    - Re: Possible Payload inside PDF or HTML files Danux (Jun 15)
- <Possible follow-ups>
- Re: Possible Payload inside PDF or HTML files krymson (Jun 13)
  - RE: Possible Payload inside PDF or HTML files David Harley (Jun 14)