DOCSLIB.ORG

Automated Malware Analysis Report For

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Automated Malware Analysis Report For ID: 195729 Sample Name: hellofax_document_169111792.doc Cookbook: defaultwindowsofficecookbook.jbs Time: 15:35:30 Date: 12/12/2019 Version: 28.0.0 Lapis Lazuli Table of Contents Table of Contents 2 Analysis Report hellofax_document_169111792.doc 4 Overview 4 General Information 4 Detection 4 Confidence 5 Classification 5 Mitre Att&ck Matrix 6 Signature Overview 7 AV Detection: 7 Software Vulnerabilities: 7 Networking: 7 System Summary: 7 Hooking and other Techniques for Hiding and Protection: 7 Malware Analysis System Evasion: 8 Language, Device and Operating System Detection: 8 Malware Configuration 8 Behavior Graph 8 Simulations 8 Behavior and APIs 8 Antivirus, Machine Learning and Genetic Malware Detection 9 Initial Sample 9 Dropped Files 9 Unpacked PE Files 9 Domains 9 URLs 9 Yara Overview 9 Initial Sample 9 PCAP (Network Traffic) 9 Dropped Files 9 Memory Dumps 9 Unpacked PEs 9 Sigma Overview 9 System Summary: 9 Joe Sandbox View / Context 10 IPs 10 Domains 10 ASN 10 JA3 Fingerprints 10 Dropped Files 10 Screenshots 10 Thumbnails 10 Startup 11 Created / dropped Files 11 Domains and IPs 15 Contacted Domains 15 Contacted IPs 15 Static File Info 15 General 15 File Icon 16 Static OLE Info 16 General 16 OLE File "hellofax_document_169111792.doc" 16 Indicators 16 Summary 16 Document Summary 16 Streams with VBA 16 VBA File Name: ThisDocument.cls, Stream Size: 8684 16 General 17 Copyright Joe Security LLC 2019 Page 2 of 45 VBA Code Keywords 17 VBA Code 19 Streams 19 Stream Path: \x1CompObj, File Type: data, Stream Size: 114 19 General 19 Stream Path: \x5DocumentSummaryInformation, File Type: data, Stream Size: 280 19 General 19 Stream Path: \x5SummaryInformation, File Type: data, Stream Size: 448 19 General 19 Stream Path: 1Table, File Type: data, Stream Size: 7318 19 General 19 Stream Path: Data, File Type: data, Stream Size: 105481 20 General 20 Stream Path: Macros/PROJECT, File Type: ASCII text, with CRLF line terminators, Stream Size: 445 20 General 20 Stream Path: Macros/PROJECTwm, File Type: data, Stream Size: 41 20 General 20 Stream Path: Macros/VBA/_VBA_PROJECT, File Type: data, Stream Size: 4396 20 General 20 Stream Path: Macros/VBA/dir, File Type: VAX-order 68k Blit mpx/mux executable, Stream Size: 778 21 General 21 Stream Path: ObjectPool/_1637576468/\x1CompObj, File Type: data, Stream Size: 112 21 General 21 Stream Path: ObjectPool/_1637576468/\x3OCXNAME, File Type: data, Stream Size: 16 21 General 21 Stream Path: ObjectPool/_1637576468/\x3ObjInfo, File Type: data, Stream Size: 6 21 General 21 Stream Path: ObjectPool/_1637576468/f, File Type: data, Stream Size: 92 21 General 21 Stream Path: ObjectPool/_1637576468/o, File Type: empty, Stream Size: 0 21 General 22 Stream Path: WordDocument, File Type: data, Stream Size: 311173 22 General 22 Network Behavior 22 Code Manipulations 22 Statistics 22 Behavior 22 System Behavior 22 Analysis Process: WINWORD.EXE PID: 3668 Parent PID: 548 23 General 23 File Activities 23 File Created 23 File Deleted 23 File Written 24 File Read 34 Registry Activities 34 Key Created 34 Key Value Created 35 Key Value Modified 42 Analysis Process: wscript.exe PID: 3784 Parent PID: 3668 44 General 44 File Activities 45 File Read 45 Disassembly 45 Code Analysis 45 Copyright Joe Security LLC 2019 Page 3 of 45 Analysis Report hellofax_document_169111792.doc Overview General Information Joe Sandbox Version: 28.0.0 Lapis Lazuli Analysis ID: 195729 Start date: 12.12.2019 Start time: 15:35:30 Joe Sandbox Product: CloudBasic Overall analysis duration: 0h 4m 19s Hypervisor based Inspection enabled: false Report type: light Sample file name: hellofax_document_169111792.doc Cookbook file name: defaultwindowsofficecookbook.jbs Analysis system description: Windows 7 SP1 (with Office 2010 SP2, IE 11, FF 54, Chrome 60, Acrobat Reader DC 17, Java 8.0.1440.1, Flash 30.0.0.113) Run name: Without Instrumentation Number of analysed new started processes analysed: 5 Number of new started drivers analysed: 0 Number of existing processes analysed: 0 Number of existing drivers analysed: 0 Number of injected processes analysed: 0 Technologies: HCA enabled EGA enabled HDC enabled AMSI enabled Analysis stop reason: Timeout Detection: MAL Classification: mal72.expl.evad.winDOC@3/14@0/0 EGA Information: Failed HDC Information: Failed HCA Information: Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0 Cookbook Comments: Adjust boot time Enable AMSI Found application associated with file extension: .doc Found Word or Excel or PowerPoint or XPS Viewer Found warning dialog Click Ok Attach to Office via COM Scroll down Close Viewer Warnings: Show All Exclude process from analysis (whitelisted): dllhost.exe, WmiPrvSE.exe Report size getting too big, too many NtCreateFile calls found. Report size getting too big, too many NtOpenKeyEx calls found. Report size getting too big, too many NtQueryAttributesFile calls found. Report size getting too big, too many NtSetInformationFile calls found. Detection Strategy Score Range Reporting Whitelisted Detection Copyright Joe Security LLC 2019 Page 4 of 45 Strategy Score Range Reporting Whitelisted Detection Threshold 72 0 - 100 false Confidence Strategy Score Range Further Analysis Required? Confidence Threshold 5 0 - 5 false Classification Copyright Joe Security LLC 2019 Page 5 of 45 Ransomware Miner Spreading mmaallliiiccciiioouusss malicious Evader Phishing sssuusssppiiiccciiioouusss suspicious cccllleeaann clean Exploiter Banker Spyware Trojan / Bot Adware Mitre Att&ck Matrix Initial Privilege Credential Lateral Command Network Access Execution Persistence Escalation Defense Evasion Access Discovery Movement Collection Exfiltration and Control Effects Valid Windows Winlogon Process Masquerading 1 Credential Virtualization/Sandbox Remote File Data from Data Remote File Eavesdrop on Accounts Management Helper DLL Injection 1 Dumping Evasion 1 Copy 1 Local Compressed Copy 1 Insecure Instrumentation 1 System Network Communication Replication Scripting 2 3 Port Accessibility Virtualization/Sandbox Network Peripheral Device Remote Data from Exfiltration Fallback Exploit SS7 to Through Monitors Features Evasion 1 Sniffing Discovery 1 Services Removable Over Other Channels Redirect Phone Removable Media Network Calls/SMS Media Medium External Exploitation for Accessibility Path Process Injection 1 Input Security Software Windows Data from Automated Custom Exploit SS7 to Remote Client Features Interception Capture Discovery 1 Remote Network Exfiltration Cryptographic Track Device Services Execution 2 Management Shared Protocol Location Drive Drive-by Graphical User System DLL Search Scripting 2 3 Credentials File and Directory Logon Input Data Multiband SIM Card Compromise Interface 2 Firmware Order in Files Discovery 1 Scripts Capture Encrypted Communication Swap Hijacking Exploit Command-Line Shortcut File System Obfuscated Files or Account System Information Shared Data Scheduled Standard Manipulate Public- Interface Modification Permissions Information 1 Manipulation Discovery 4 Webroot Staged Transfer Cryptographic Device Facing Weakness Protocol Communication Application Copyright Joe Security LLC 2019 Page 6 of 45 Signature Overview • AV Detection • Software Vulnerabilities • Networking • System Summary • Hooking and other Techniques for Hiding and Protection • Malware Analysis System Evasion • Language, Device and Operating System Detection Click to jump to signature section AV Detection: Machine Learning detection for sample Software Vulnerabilities: Document exploit detected (creates forbidden files) Document exploit detected (process start blacklist hit) Networking: Downloads files System Summary: Document contains an embedded VBA macro which may check the active printer (possible anti-VM) Document contains an embedded VBA macro with suspicious strings Microsoft Office drops suspicious files Document contains an embedded VBA macro which executes code when the document is opened / closed Document contains embedded VBA macros Classification label Creates files inside the user directory Creates temporary files Document contains an OLE Word Document stream indicating a Microsoft Word file Document contains summary information with irregular field values Queries process information (via WMI, Win32_Process) Reads ini files Reads software policies Spawns processes Uses an in-process (OLE) Automation server Found GUI installer (many successful clicks) Found graphical window changes (likely an installer) Checks if Microsoft Office is installed Document has a 'comments' value indicative of goodware Uses new MSVCR Dlls Hooking and other Techniques for Hiding and Protection: Copyright Joe Security LLC 2019 Page 7 of 45 Document contains an embedded VBA macro which may check the active printer (possible anti-VM) Disables application error messsages (SetErrorMode) Document contains OLE streams with high entropy indicating encrypted embedded content Malware Analysis System Evasion: Found WSH timer for Javascript or VBS script (likely evasive script) May sleep (evasive loops) to hinder dynamic analysis Language, Device and Operating System Detection: Queries the cryptographic machine GUID Malware Configuration No configs have been found Behavior Graph Hide Legend Legend: Process Behavior Graph Signature ID: 195729 Created File Sample: hellofax_document_169111792.doc Startdate: 12/12/2019 DNS/IP Info Architecture: WINDOWS Is Dropped Score: 72 Is Windows Process Number of created Registry Values Document contains an Document contains an Sigma detected: Microsoft
Load more

Recommended publications
  • Cloud Fonts in Microsoft Office
    APRIL 2019 Guide to Cloud Fonts in Microsoft® Office 365® Cloud fonts are available to Office 365 subscribers on all platforms and devices. Documents that use cloud fonts will render correctly in Office 2019. Embed cloud fonts for use with older versions of Office. Reference article from Microsoft: Cloud fonts in Office DESIGN TO PRESENT Terberg Design, LLC Index MICROSOFT OFFICE CLOUD FONTS A B C D E Legend: Good choice for theme body fonts F G H I J Okay choice for theme body fonts Includes serif typefaces, K L M N O non-lining figures, and those missing italic and/or bold styles P R S T U Present with most older versions of Office, embedding not required V W Symbol fonts Language-specific fonts MICROSOFT OFFICE CLOUD FONTS Abadi NEW ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Abadi Extra Light ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Note: No italic or bold styles provided. Agency FB MICROSOFT OFFICE CLOUD FONTS ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Agency FB Bold ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Note: No italic style provided Algerian MICROSOFT OFFICE CLOUD FONTS ABCDEFGHIJKLMNOPQRSTUVWXYZ 01234567890 Note: Uppercase only. No other styles provided. Arial MICROSOFT OFFICE CLOUD FONTS ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Arial Italic ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Arial Bold ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz 01234567890 Arial Bold Italic ABCDEFGHIJKLMNOPQRSTUVWXYZ
    [Show full text]
  • Hebrew Type Design in the Context of the Book Art Movement and New
    Philipp Messner Hebrew Type Design in the Context of the Book Art Movement and New Typography "New Book Art" ("Neue Buchkunst") was the motto under which efforts were made, in the spirit of the English Arts and Crafts Movement, toward the revival of book and type design in turn-of-the-twentieth­ century Germany. This revival movement perceived itself as a reaction to the country's accelerated industrialization, especially since the founding of the Reich in 1871. The replacement of traditional craft by increasingly industrial production lines effected a variety of everyday consumer products, including the manufacturing of books. According to contemporary commentators this led to deterioration in the material and aesthetic quality of books. Similarly to other industrially manufactured products around the turn of the century, an expectation emerged for books to have a contemporary, functional, and materially sound form. This demand encompassed all aspects of the book, including printing types. Consequently, visual artists were now engaged to design typefaces. Early examples were still heavily influenced by Art Nouveau, but after World War I there was a turn to historical forms with a bias toward handwritten scripts. This was influenced largely by the English calligrapher and type designer Edward Johnston, who taught at the Central School of Arts and Crafts in London. His calligraphic method, which he based on old handwriting forms, became famous in Germany, in part thanks to the work of his pupil and translator, Anna Simons. Type design issues thus received a notably traditional treatment, defined above all by intensive engagement with historical forms. This tendency largely defined the personal styles of Franzisca Baruch and Henri Friedlaender.
    [Show full text]
  • Fonts Installed with Each Windows OS
    FONTS INSTALLED WITH EACH WINDOWS OPERATING SYSTEM WINDOWS95 WINDOWS98 WINDOWS2000 WINDOWSXP WINDOWSVista WINDOWS7 Fonts New Fonts New Fonts New Fonts New Fonts New Fonts Arial Abadi MT Condensed Light Comic Sans MS Estrangelo Edessa Cambria Gabriola Arial Bold Aharoni Bold Comic Sans MS Bold Franklin Gothic Medium Calibri Segoe Print Arial Bold Italic Arial Black Georgia Franklin Gothic Med. Italic Candara Segoe Print Bold Georgia Bold Arial Italic Book Antiqua Gautami Consolas Segoe Script Georgia Bold Italic Courier Calisto MT Kartika Constantina Segoe Script Bold Georgia Italic Courier New Century Gothic Impact Latha Corbel Segoe UI Light Courier New Bold Century Gothic Bold Mangal Lucida Console Nyala Segoe UI Semibold Courier New Bold Italic Century Gothic Bold Italic Microsoft Sans Serif Lucida Sans Demibold Segoe UI Segoe UI Symbol Courier New Italic Century Gothic Italic Palatino Linotype Lucida Sans Demibold Italic Modern Comic San MS Palatino Linotype Bold Lucida Sans Unicode MS Sans Serif Comic San MS Bold Palatino Linotype Bld Italic Modern MS Serif Copperplate Gothic Bold Palatino Linotype Italic Mv Boli Roman Small Fonts Copperplate Gothic Light Plantagenet Cherokee Script Symbol Impact Raavi NOTE: Trebuchet MS The new Vista fonts are the Times New Roman Lucida Console Trebuchet MS Bold Script newer cleartype format Times New Roman Bold Lucida Handwriting Italic Trebuchet MS Bold Italic Shruti designed for the new Vista Times New Roman Italic Lucida Sans Italic Trebuchet MS Italic Sylfaen display technology. Microsoft Times
    [Show full text]
  • Sketch Block Bold Accord Heavy SF Bold Accord SF Bold Aclonica Adamsky SF AFL Font Pespaye Nonmetric Aharoni Vet Airmole Shaded
    Sketch Block Bold Accord Heavy SF Bold Accord SF Bold Aclonica Adamsky SF AFL Font pespaye nonmetric Aharoni Vet Airmole Shaded Airmole Stripe Airstream Alegreya Alegreya Black Alegreya Black Italic Alegreya Bold Alegreya Bold Italic Alegreya Italic Alegreya Sans Alegreya Sans Black Alegreya Sans Black Italic Alegreya Sans Bold Alegreya Sans Bold Italic Alegreya Sans ExtraBold Alegreya Sans ExtraBold Italic Alegreya Sans Italic Alegreya Sans Light Alegreya Sans Light Italic Alegreya Sans Medium Alegreya Sans Medium Italic Alegreya Sans SC Alegreya Sans SC Black Alegreya Sans SC Black Italic Alegreya Sans SC Bold Alegreya Sans SC Bold Italic Alegreya Sans SC ExtraBold Alegreya Sans SC ExtraBold Italic Alegreya Sans SC Italic Alegreya Sans SC Light Alegreya Sans SC Light Italic Alegreya Sans SC Medium Alegreya Sans SC Medium Italic Alegreya Sans SC Thin Alegreya Sans SC Thin Italic Alegreya Sans Thin Alegreya Sans Thin Italic AltamonteNF AMC_SketchyOutlines AMC_SketchySolid Ancestory SF Andika New Basic Andika New Basic Bold Andika New Basic Bold Italic Andika New Basic Italic Angsana New Angsana New Angsana New Cursief Angsana New Vet Angsana New Vet Cursief Annie BTN Another Typewriter Aparajita Aparajita Bold Aparajita Bold Italic Aparajita Italic Appendix Normal Apple Boy BTN Arabic Typesetting Arabolical Archive Arial Arial Black Bold Arial Black Standaard Arial Cursief Arial Narrow Arial Narrow Vet Arial Unicode MS Arial Vet Arial Vet Cursief Aristocrat SF Averia-Bold Averia-BoldItalic Averia-Gruesa Averia-Italic Averia-Light Averia-LightItalic
    [Show full text]
  • H-1297-1, Creating Section 508 Compliant Documents
    Form 1221-2 (June 1969) UNITED STATES DEPARTMENT OF THE INTERIOR Release BUREAU OF LAND MANAGEMENT 1-1766 Date MANUAL TRANSMITTAL SHEET 03/09/2015 Subject H-1297-1 Creating Section 508 Compliant Documents 1. Explanation of Material Transmitted: This handbook provides step-by-step instructions to assist BLM employees in creating accessible documents compliant with Section 508 of the Rehabilitation Act of 1973, as amended (29 U.S.C. 794d). Section 508 requires the federal government to ensure that the electronic and information technology that it develops, procures, maintains, or uses is accessible to persons with disabilities. 2. Reports Required: None. 3. Material Superseded: None. 4. Filing Instructions: File as directed below. REMOVE INSERT Total: 108 sheets Janine Valesco Assistant Director, Business, Fiscal, and Information Resources Management Handbook for Creating Section 508 Compliant Documents This document contains basic recommended guidelines for development of documents and PDF files. BLM Handbook Rel. No. 1-1766 03/09/2015 H-1297-1 Handbook for Creating Section 508 Compliant Documents (P) i Table of Contents Table of Contents ............................................................................................................................ i Chapter 1 - Introduction to 508 Compliance ............................................................................. 1-1 Chapter 2 - Microsoft Word Document Creation ...................................................................... 2-1 A. Font Group versus Style Group
    [Show full text]
  • Suitcase Fusion 7 Guide
    Copyright © 2014–2017 Celartem, Inc., doing business as Extensis. This document and the software described in it are copyrighted with all rights reserved. This document or the software described may not be copied, in whole or part, without the written consent of Extensis, except in the normal use of the software, or to make a backup copy of the software. This exception does not allow copies to be made for others. Licensed under U.S. patents issued and pending. Extensis is a registered trademark of Celartem, Inc. The Extensis logos, Extensis Portfolio, Font Sense, Font Vault, FontLink, QuickComp, QuickFind, QuickMatch, QuickType, Suitcase, Suitcase Attaché, TurboSync, Universal Type, Universal Type Client, and Universal Type Core are trademarks of Extensis. Portfolio Flow, Portfolio NetPublish, Suitcase Fusion, Type Server, and Universal Type Server are registered trademarks of Extensis. Celartem, Celartem, Inc., and the Celartem logo are trademarks of Celartem, Inc. Adobe, Acrobat, After Effects, Creative Cloud, Creative Suite, Illustrator, InCopy, InDesign, Photoshop, PostScript, Typekit and XMP are either registered trademarks or trademarks of Adobe Systems Incorporated in the United States and/or other countries. Apple, Bonjour, the Bonjour logo, Finder, iBooks, iPhone, Mac, the Mac logo, Mac OS, OS X, Safari, and TrueType are trademarks of Apple Inc., registered in the U.S. and other countries. macOS is a trademark of Apple Inc. App Store is a service mark of Apple Inc. IOS is a trademark or registered trademark of Cisco in the U.S. and other countries and is used under license. Microsoft, Excel, Internet Explorer, PowerPoint, SQL Server, and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries.
    [Show full text]
  • ABBYY ® Finereader Version 11 User's Guide
    ® ABBYY FineReader Version 11 User’s Guide © 2011 ABBYY. All rights reserved. ABBYY FineReader 11 User’s Guide Information in this document is subject to change without notice and does not bear any commitment on the part of ABBYY. The software described in this document is supplied under a license agreement. The software may only be used or copied in strict accordance with the terms of the agreement. It is a breach of the "On legal protection of software and databases" law of the Russian Federation and of international law to copy the software onto any medium unless specifically allowed in the license agreement or nondisclosure agreements. No part of this document may be reproduced or transmitted in any from or by any means, electronic or other, for any purpose, without the express written permission of ABBYY. © 2011 ABBYY. All rights reserved. ABBYY, the ABBYY logo, ABBYY FineReader, ADRT are either registered trademarks or trademarks of ABBYY Software Ltd. © 1984-2008 Adobe Systems Incorporated and its licensors. All rights reserved. Protected by U.S. Patents 5,929,866; 5,943,063; 6,289,364; 6,563,502; 6,185,684; 6,205,549; 6,639,593; 7,213,269; 7,246,748; 7,272,628; 7,278,168; 7,343,551; 7,395,503; 7,389,200; 7,406,599; 6,754,382; Patents Pending. Adobe® PDF Library is licensed from Adobe Systems Incorporated. Adobe, Acrobat®, the Adobe logo, the Acrobat logo, the Adobe PDF logo and Adobe PDF Library are either registered trademarks or trademarks of Adobe Systems Incorporated in the United States and/or other countries.
    [Show full text]
  • Styleframe Documentation Release 1.3
    StyleFrame Documentation Release 1.3 Dec 23, 2017 Contents 1 Installation and testing 3 2 Basic Usage Examples 5 3 API Documentation 7 3.1 utils....................................................7 3.2 Styler Class................................................9 3.3 StyleFrame Class............................................. 10 4 Commandline Interface 15 4.1 General Information........................................... 15 4.2 Usage................................................... 15 4.3 JSON Format............................................... 15 i ii StyleFrame Documentation, Release 1.3 A library that wraps pandas and openpyxl and allows easy styling of dataframes in excel. Contents: Contents 1 StyleFrame Documentation, Release 1.3 2 Contents CHAPTER 1 Installation and testing $ pip install styleframe To make sure everything works as expected, run StyleFrame’s unittests: from StyleFrame import tests tests.run() 3 StyleFrame Documentation, Release 1.3 4 Chapter 1. Installation and testing CHAPTER 2 Basic Usage Examples StyleFrame’s init supports all the ways you are used to initiate pandas dataframe. An existing dataframe, a dictionary or a list of dictionaries: from StyleFrame import StyleFrame, Styler, utils sf= StyleFrame({'col_a': range(100)}) Applying a style to rows that meet a condition using pandas selecting syntax. In this example all the cells in the col_a column with the value > 50 will have blue background and a bold, sized 10 font: sf.apply_style_by_indexes(indexes_to_style=sf[sf['col_a']> 50], cols_to_style=['col_a'], styler_obj=Styler(bg_color=utils.colors.blue, bold=True, ,!font_size=10)) Creating ExcelWriter used to save the excel: ew= StyleFrame.ExcelWriter(r'C:\my_excel.xlsx') sf.to_excel(ew) ew.save() It is also possible to style a whole column or columns, and decide whether to style the headers or not: sf.apply_column_style(cols_to_style=['a'], styler_obj=Styler(bg_color=utils.colors.
    [Show full text]
  • An Anotated Bibliography of Hebrew Typesetting
    An Anotated Bibliography of Hebrew Typesetting Sivan Toledo Tel-Aviv University September 23, 2001 1 Introduction Information about Hebrew type and typesetting is available, but hard to find. In- formation about the design and use of typefaces and about the design of books and other publications is useful for fine typesetting and printing. Publications about type and typesetting in the Latin script are widely available in bookstores, libraries, and online, but similar publications concerning other scripts are hard to find. This annotated bibliography is an attempt to make information about Hebrew typefaces and typesetting easier to find. The focus of this bibliography is on how Hebrew is printed, and not on what is printed, where, or by whom. Thus, the main areas that are covered are Hebrew typefaces and typesetting of Hebrew. The contents of the publications listed here also apply to other languages that are printed using the Hebrew alphabet, mainly Yiddish and Ladino. Publications about non-graphic aspects of Hebrew printing, about Hebrew typography before the 19th century, and about Hebrew calligraphy are excluded. These subjects are less relevant to modern Hebrew typesetting, and I exclude them in order to keep the scope of this bibliography reasonable. Hebrew typefaces are covered in Sections 2, 3, and 4. Section 2 lists articles and books that describe the design of Hebrew typefaces. Section 3 lists old typeface specimen books that display Hebrew typefaces. Section 4 lists articles that focus on readability and legibility in Hebrew. I refer to Hebrew typefaces by name and assume that the reader is familiar with the main Hebrew typefaces.
    [Show full text]
  • Das Ist Ein Test Agency FB Das Ist Ein Test Aharoni Das Ist Ein Test Algerian Das Ist Ein Test American-Uncial-Normal Das Ist Ei
    Das ist ein Test Agency FB Das ist ein Test Aharoni Das ist ein Test Algerian Das ist ein Test American-Uncial-Normal Das ist ein Test Andalus Das ist ein Test Angsana New Das ist ein Test AngsanaUPC Das ist ein Test Aparajita Das ist ein Test AR DARLING Das ist ein Test Arabic Typesetting Das ist ein Test Arial Das ist ein Test Arial Black Das ist ein Test Arial Narrow Das ist ein Test Arial Rounded MT Bold Das ist ein Test Arial Unicode MS Das ist ein Test Baskerville Old Face Das ist ein Test Batang Das ist ein Test BatangChe Das ist ein Test Bauhaus 93 Das ist ein Test Bell MT Das ist ein Test Berlin Sans FB Das ist ein Test Berlin Sans FB Demi Das ist ein Test Bernard MT Condensed Das ist ein Test Besom 2 Das ist ein Test Blackadder ITC Das ist ein Test Bodoni MT Das ist ein Test Bodoni MT Black Das ist ein Test Bodoni MT Condensed Das ist ein Test Bodoni MT Poster Compressed Das ist ein Test Book Antiqua Das ist ein Test Bookman Old Style Das ist ein Test Bookshelf Symbol 7 Das ist ein Test Bradley Hand ITC Das ist ein Test Britannic Bold Das ist ein Test Broadway Das ist ein Test Browallia New Das ist ein Test BrowalliaUPC Das ist ein Test Brush Script MT Das ist ein Test Calibri Das ist ein Test Calibri Das ist ein Test Calibri Light Das ist ein Test Californian FB Das ist ein Test Calisto MT Das ist ein Test Cambria Das ist ein Test Cambria Math Das ist ein Test Candara capella3 Das ist ein Test Das ist ein Test Castellar Das ist ein Test Centaur Das ist ein Test Century Das ist ein Test Century Gothic Das ist ein Test Century
    [Show full text]
  • American Recycled Plastic, Inc Font Listing
    American Recycled Plastic, Inc Font Listing Most Popular Fonts Font Example Arial Rounded MT Bold ABCDEFG abcdefg 1234567890 Century Gothic ABCDEFG abcdefg 1234567890 Comic Sans MS ABCDEFG abcdefg 1234567890 Lucida Sans ABCDEFG abcdefg 1234567890 Tahoma ABCDEFG abcdefg 1234567890 Times New Roman ABCDEFG abcdefg 1234567890 Alphabetical Font List Font Example Agency FB ABCDEFG abcdefg 1234567890 Aharoni ABCDEFG abcdefg 1234567890 Andalus ABCDEFG abcdefg 1234567890 AR BLANCA ABCDEFG abcdefg 1234567890 AR ESSENCE ABCDEFG abcdefg 1234567890 Arial ABCDEFG abcdefg 1234567890 Arial Black ABCDEFG abcdefg 1234567890 Arial Narrow ABCDEFG abcdefg 1234567890 Arial Rounded MT Bold ABCDEFG abcdefg 1234567890 Book Antiqua ABCDEFG abcdefg 1234567890 Century Gothic ABCDEFG abcdefg 1234567890 Comic Sans MS ABCDEFG abcdefg 1234567890 Corbel ABCDEFG abcdefg 1234567890 DokChampa ABCDEFG abcdefg 1234567890 Dotum ABCDEFG abcdefg 1234567890 Ebrima ABCDEFG abcdefg 1234567890 Eras Bold ITC ABCDEFG abcdefg 1234567890 Eras Demi ITC ABCDEFG abcdefg 1234567890 Eras Medium ITC ABCDEFG abcdefg 1234567890 Estrangelo Edessa ABCDEFG abcdefg 1234567890 Franklin Gothic Book ABCDEFG abcdefg 1234567890 Franklin Gothic Demi ABCDEFG abcdefg 1234567890 Garamond ABCDEFG abcdefg 1234567890 Gautami ABCDEFG abcdefg Gill Sans MT ABCDEFG abcdefg 1234567890 Gisha ABCDEFG abcdefg 1234567890 KaiTi ABCDEFG abcdefg 1234567890 Kalinga ABCDEFG abcdefg 1234567890 Kartika ABCDEFG abcdefg 1234567890 Khmer UI ABCDEFG abcdefg 1234567890 Lao UI ABCDEFG abcdefg 1234567890 Latha ABCDEFG abcdefg 1234567890
    [Show full text]
  • CSS Typography Fonts & Formatting
    CSS Typography Fonts & Formatting Group to whom I’m speaking ! R. Scott Granneman © 2007 R. Scott Granneman Last updated 20140320 You are free to use this work, with certain restrictions. For full licensing information, please see the last slide/page. 1 Basics 2 Types 3 Most basic: ! Serif Sans-serif Monospaced/Monospaced 4 Adobe Type Classifications www.adobe.com/type/browser/classifications.html 5 Adobe Originals Greek Sans Serif: Grotesque, ! ! Neo-Grotesque, Blackletter Hand-tooled, Inline, Geometric and Humanist ! Outline, Stencil ! Capitals ! Script ! Japanese ! Computer Related ! Slab Serif ! Mathematical ! Cyrillic ! Small Caps & Old Style ! Monospaced Figures Decorative & Display ! ! ! OpenType Pro Swash Didone (Modern) ! ! ! Opticals Symbol Expert Collection Ornamentals ! ! ! Transitional Garalde Oldstyle Phonetic ! ! ! Venetian Oldstyle Glyphic 6 Serif font Serif font with serifs in red Sans-serif font commons.wikimedia.org/wiki/File:Serif_and_sans-serif_02.svg en.wikipedia.org/wiki/File:Serif_and_sans-serif_03.svg 7 en.wikipedia.org/wiki/File:Typography_Line_Terms.svg 8 1 x-height 11 counter 2 ascender line 12 collar 3 apex 13 loop 4 baseline 14 ear 5 ascender 15 tie 6 crossbar 16 horizontal bar 7 stem 17 arm 8 serif 18 vertical bar 9 leg 19 cap height 10 bowl 20 descender line en.wikipedia.org/wiki/File:Typoghaphia.svg en.wikipedia.org/wiki/Typeface_anatomy 9 Measure 10 Measure ! Length of a line of text ! Measure should be pleasing to the eye & facilitate reading 11 Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. 12 Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
    [Show full text]