MALICIOUS
80
Risk Score
Machine Learning
- Nyx PDF Classifier malicious score 0.9949
Heuristics 3
-
Hex-obfuscated structural name object high PDF_OBFUSCATED_NAME_OBJECTA structurally-dangerous PDF name (e.g. /OpenAction, /Launch, /AA, /EmbeddedFile, /SubmitForm) is written with #XX hex escapes to evade string-based scanners. Legitimate producers write these names literally; hex-encoding them is a deliberate obfuscation technique.
-
XFA form low PDF_XFAPDF uses XML Forms Architecture — can contain script logic
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://github.com/jonaslejon/malicious-pdf In PDF document text
- https://github.com/jonaslejon/malicious-pdf1In PDF document text
Open this report in the interactive analyzer, or submit your own file for analysis.