PDF malware analysis — malicious · 26b7a42c4c008dab

MALICIOUS

PDF

34.2 KB

MD5: 7eacf40da428fdecfccc742abbd0dc17 SHA-1: dee53d98ab90e207c52040aadf6a7e80d70ae04e SHA-256: 26b7a42c4c008dabda61d71c93c80d0967647272246a3c03deaed995a2d6ce3e

76 Risk Score

Malware Insights

The PDF file contains embedded JavaScript, indicated by multiple heuristic firings related to PDF and JavaScript. ClamAV also flagged it as malicious due to obfuscated objects. The embedded JavaScript is likely used to execute arbitrary code, a common technique for delivering malware via PDF documents.

Heuristics 3

ClamAV: Heuristics.PDF.ObfuscatedNameObject critical CLAMAV_DETECTION

ClamAV detected this file as malware: Heuristics.PDF.ObfuscatedNameObject
JavaScript action low PDF_JAVASCRIPT

PDF contains a /JavaScript action. Generic JavaScript is common in benign forms; specific dangerous APIs are scored by separate rules.
Embedded JS stream low PDF_JS

PDF references a /JS stream. Generic JavaScript is common in benign forms; specific dangerous APIs are scored by separate rules.

Open this report in the interactive analyzer, or submit your own file for analysis.