ACAD/Medre.A a case study of an individual attack - SANS ...
ACAD/Medre.A a case study of an individual attack - SANS ...
ACAD/Medre.A a case study of an individual attack - SANS ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
he contents <strong>of</strong> the directory compressed in the encrypted RAR<br />
rchive (password = “1”) are:<br />
Acad.fas (worm body)<br />
Payload #1 (to 163.com)<br />
ȤλúеÖÆͼ.dxf (is 趣味机械制图 in Chinese encoding).<br />
he .DXF file (AutoCAD Drawing Exch<strong>an</strong>ge Format) is generated by<br />
CAD/<strong>Medre</strong>.A <strong>an</strong>d contains metadata regarding the stolen AutoCAD<br />
rawing