PDF malware analysis — malicious · 1dd7c6631b65ab76

MALICIOUS

PDF

2.1 KB

MD5: b495941604d8f88776873e09b4f46830 SHA-1: 9ac7fae7088763e235bd880afaa3b8a504023ecf SHA-256: 1dd7c6631b65ab76ad4a4fc5389e1b2424ea8a2adc6e1a05fff5f6aae261405f

90 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File: User Execution T1566.002 Phishing: Spearphishing Attachment

The file is identified as a malicious PDF by both a machine learning classifier and ClamAV with the signature Win.Exploit.Unicode_Mixed-1. This indicates the PDF likely contains an exploit targeting a known vulnerability, designed to execute a payload upon opening. The absence of document body text or scripts means the specific exploit and payload delivery mechanism cannot be further detailed.

Machine Learning

Nyx PDF Classifier malicious score 0.9664

Heuristics 1

ClamAV: Win.Exploit.Unicode_Mixed-1 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Exploit.Unicode_Mixed-1

Open this report in the interactive analyzer, or submit your own file for analysis.