Identified spread malicious file using vulnerabilities of adobe product Family

1. Introduction

Spread malicious file using vulnerability of Adobe Flash Player, Acrobat Reader is identified on April 12, 2011.
This malicious file uses vulnerability, old versions of Adobe applications, on executing attachment of e-mail.
Adobe released security notice about that security issue on April 11, 2011, user who are using adobe family's product needs to be careful on using those applications.

* Adobe CVE-2011-0611 Security Bulletin & Common Vulnerabilities Application Programs

[Security Advisory for Adobe Flash Player, Adobe Reader and Acrobat]

2. Spreading path and symptoms of infection

Currently, this malicious file consists of .DOC file of MS Office which name is "Disentangling Industrial Policy and Competition Policy.doc". And it contains SWF file its inside.

Following figure is attached DOC file. And it can spread as a different file name.


When you excute this document file, you can find this title, "Disentangling Industrial Policy and Competition Policy in China".

Executed malicious file will create another malicious file on following path. And it will change normal"mspmsnsv.dll" file to malicious .DLL file.

C:\Document and Settings\User account folder\Local Settings\Temp\svchost.exe (3,728 bytes) C:\WINDOWS\System32\mspmsnsv.dll (8,704 bytes)

* Comparison between normal mspmsnsv.dll and malicious mspmsnsv.dll

Furthermore, it will create additional file, some of created files contains certain system process information of user's PC.

3. How to prevent

General user can hardly notice something happened in his PC while spreading malicious file with using social engineering.
To use PC safely from security threats of these malicious attachments, we recommend following "Security management tips" for general users.

Security management tips

1. Maintain the latest security update on OS and applications
2. Use anti-virus SW from believable security company and keep updating the latest engine and using real time detecting function
3. Do not see and download attached file from suspicious e-mail.
4. Keep caution to link from instant messenger and SNS.

INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function such as malicious file stated above and runs responding system against various security threats.


  1. What about useful advices, you can read https://homework-writer.com/blog/research-paper-structure if you are interested in education. Here you can read research paper structure.

  2. I will try to find more info now. This file is pretty dangerous. That's scary.

  3. This might work, but I wouldn't be so sure. If you need to learn more on the subject you should better look more on the internet resources. If you want to know my opinion I find this one the most reliable https://bestwritingservice.com/the-vancouver-citation-style.html

  4. Rather than risking failure, you should consider hiring Custom Paper Writing Services and Online Term Papers Writing help provider that will save you a lot of time to complete Custom Research Papers.

  5. Are you looking to hire top quality Custom Term Paper Help Services and cheap Legitimate Term Paper Writing Services? Rather than risking abject failure, you should consider hiring Legitimate Term Paper Help Provider.

  6. Online religion research paper writing services are very difficult to complete and many students are always searching for Religion Research Paper Services companies to help them complete their custom religion essay writing services.

  7. It's very good post which I really enjoyed reading. It is not everyday that I have the possibility to see something like this.

    download android apk

  8. Thank you for sharing valuable information. Nice post. I enjoyed reading this post.

  9. There are many cultural studies paper writing services and Cultural Studies Research Paper Services to choose from for those stuck with their cultural studies coursework writing services and research papers on cultural diversity.

  10. Such a wonderful information blog post on this topic Allassignmentservices.com provides assignment service at affordable cost in a wide range of subject areas for all grade levels, we are already trusted by thousands of students who struggle to write their academic papers and also by those students who simply want write my assignment to save their time and make life easy.

  11. دکتر علی ستایش جزو یکی از برترین جراحان و فوق تخصص در حوزه جراحی عروق می باشند و با مشاهده علائم، درمان را شروع می نمایند و در صورت نیاز با جراحی درمان خواهند نمود. یک دکتر فوق تخصص عروق بیماری های عروق پا و توده های عروقی را درمان می کند.