Submitting a malware PDF document – aleppo_plan_cercs.pdf

In this section, we'll deal with PDF documents that contain malware samples and prepare to submit those. Please make sure you have installed a PDF reader application in your VM environment (I recommend you use Adobe Acrobat Reader). Internet connection in your VM environment is also needed to make sure that the malware analysis can run smoothly in your VM environment.

We will now submit a PDF file as a malware document. Let us see the steps involved:

  1. Open a new Terminal tab (Shift + Ctrl + T) and type in the following command line:
    $ python uti
    ls/ --platform windows --package pdf shares/aleppo_plan_cercs.pdf
  2. After that, press Tab when the typing reaches aleppo (document real name ...

Get Cuckoo Malware Analysis now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.