Malicious PDF — malware analysis report

Static analysis result for SHA-256 77a9bc2f2a173818…

MALICIOUS

PDF

12.1 KB
MD5: b29c719ca539275c49a286b17b5d5bf0 SHA-1: 1f7b77f97af51d47e0055bb8a67cce0ec1cf8e6c SHA-256: 77a9bc2f2a173818cfee0d9554aaea5962516a43d17ddcd056ed1ebca22be6ce
60 Risk Score

Malware Insights

MITRE ATT&CK
T1027 Obfuscated Files or Information

The primary indicator of maliciousness is the ClamAV detection for Heuristics.PDF.ObfuscatedNameObject, suggesting the PDF employs techniques to hide its true nature. The document body content is heavily obfuscated and unreadable, further supporting the heuristic finding. Without readable content or scripts, the exact attack vector remains unclear, but the obfuscation points to an attempt to conceal malicious functionality.

Heuristics 1

  • ClamAV: Heuristics.PDF.ObfuscatedNameObject critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Heuristics.PDF.ObfuscatedNameObject

Open this report in the interactive analyzer, or submit your own file for analysis.