PDF malware analysis — malicious · 3f3b3c2953336375

MALICIOUS

PDF

989 B

MD5: 9e953d27effda54903d3d53e7ddadd85 SHA-1: 4b77b2b074e25095b9a71a633ca87c4142378a97 SHA-256: 3f3b3c2953336375cd2abf900ec0cf07ccd4f974bf0a896b080a9257750282fa

100 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File: User Execution: Malicious File

The PDF file contains a launch action that executes notepad.exe. This is a common technique to trick users into running malicious payloads disguised as legitimate applications or to bypass security controls. The document body is minimal and does not provide further context.

Heuristics 2

Launch action critical PDF_LAUNCH

PDF contains a /Launch action whose target is an executable, URL, or UNC path — can start an external application
/Launch action target: notepad.exe high PDF_LAUNCH_COMMAND

PDF /Launch action specifies an executable target.

Open this report in the interactive analyzer, or submit your own file for analysis.