Agent PDF malware analysis — malicious · 83bba7edd1f1c065

MALICIOUS

PDF

16.8 KB

MD5: e9d9ebc48eabddbe4bd7e8d176a92b8d SHA-1: dd022d2fa2830c19894d487bebc96c12795b0b46 SHA-256: 83bba7edd1f1c065652c85ddcdbd54f5be8d2eb81be9d10da14ec0e4c22f3f72

62 Risk Score

Malware Insights

Agent · confidence 95%

MITRE ATT&CK

T1204.002 Malicious File

The ClamAV heuristic 'Pdf.Dropper.Agent-7169053-0' strongly indicates that this PDF is designed to drop and execute a malicious agent. The document body is heavily obfuscated and contains no readable content, further supporting its role as a malicious container. The file size is also consistent with a dropper.

Machine Learning

Nyx PDF Classifier clean score 0.0249

Heuristics 1

ClamAV: Pdf.Dropper.Agent-7169053-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Pdf.Dropper.Agent-7169053-0

Extracted artifacts 1

Files carved from inside the sample during analysis.

Filename	Kind	Source	Size
`font_00_type1_off000003eb.bin` `d6a3531ced11dfca17aecb9e1bd071bd44ce926db04e4c8c5d39f3d51da61ed7`	pdf-font-stream	PDF embedded font (type1) at offset 0x3EB	421128 bytes

Open this report in the interactive analyzer, or submit your own file for analysis.