CLEAN
20
Risk Score
Machine Learning
- Nyx PDF Classifier clean score 0.0001
Heuristics 1
-
Callback phishing phone lure medium SE_CALLBACK_LUREDocument asks the user to call a phone number in billing, refund, subscription, fraud, or security context — consistent with callback phishing or tech-support scam patterns. Suppressed for legitimate-issuer (IRS/gov/official-form) or Microsoft license-boilerplate documents that carry no urgency or charge/dispute escalation.
Extracted artifacts 7
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
stream_020_off0002ee01.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x2EE01 | 149916 bytes |
SHA-256: e6a93d4928fb028ae81986dc42f07ecd1697ba9e3816e959bc3fa8b850f3d55b |
|||
font_00_sfnt_off0002e58c.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x2E58C | 16128 bytes |
SHA-256: 6f9a9ae17a273886d06ac00fac2cd3e0b385210c61a6363dc5b6bff90de44dcc |
|||
font_02_sfnt_off00037a1a.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x37A1A | 221704 bytes |
SHA-256: 984ca6eaeb38306b798a453ee6d4b0a048a9d983d6046188c1840d7bda3902ea |
|||
font_03_sfnt_off00038ec2.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x38EC2 | 13508 bytes |
SHA-256: bd9e83287b0d68b69d51ade3b1a6d88c9d79616100fdc6bf8b94f35bdafefa18 |
|||
font_04_sfnt_off0003b127.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x3B127 | 58700 bytes |
SHA-256: 16b785ce24fb4e24e32eec5ccb25b8a136aba6d7738591df8e924f14b27e4e91 |
|||
font_05_sfnt_off0003db79.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x3DB79 | 39420 bytes |
SHA-256: a76b41df5cd647deca11bf82afd73b796c6a7d19ae58f3aa7801e43d4a28e10b |
|||
font_06_sfnt_off000492f2.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x492F2 | 183540 bytes |
SHA-256: 29c87822b253a979b17fe825ffa76b795508b98782fa525849521d4c39c89477 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.