Pdf.Dropper.Agent-7287039-0 — PDF malware analysis

Static analysis result for SHA-256 9dd2394613241380…

MALICIOUS

PDF

226.8 KB
MD5: ca6a73119de4847322bf7740fc7e25b5 SHA-1: 795cdf0c250b052e873df7b065a27f16affd1b3d SHA-256: 9dd23946132413802f3e4fa626d5c6cc388487c005aba2cbb35b8698fd0d3fe5
90 Risk Score

Malware Insights

Pdf.Dropper.Agent-7287039-0 · confidence 95%

MITRE ATT&CK
T1204.002 Malicious File

The file was detected by ClamAV as Pdf.Dropper.Agent-7287039-0 and flagged by an ML classifier with high confidence. This indicates the PDF is designed to drop and execute a secondary payload, likely exploiting a vulnerability within the PDF reader itself. The presence of the SHA256 hash serves as a primary indicator for this malicious document.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9956

Heuristics 1

  • ClamAV: Pdf.Dropper.Agent-7287039-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Dropper.Agent-7287039-0

Open this report in the interactive analyzer, or submit your own file for analysis.