Malicious PDF — malware analysis report

Static analysis result for SHA-256 a05a9adb177bbb5b…

MALICIOUS

PDF

2.4 KB Created: 2008-07-26 19:43:58 Authoring application: Scribus 1.3.3.12 (via Scribus PDF Library 1.3.3.12)
MD5: 796aa15a2f39ed421965887856a2a041 SHA-1: 651c72c1fa8fac0477945574a4340b850d1f6f5d SHA-256: a05a9adb177bbb5bf80802ee3af6077b67ae44ba43a5d9329fc494342a6fa512
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file is identified by ClamAV as 'Pdf.Dropper.Agent-7596813-0', indicating its function as a dropper. While no specific malicious scripts or URLs were extracted, the detection signature strongly suggests the PDF is designed to deliver a secondary payload. The document body contains only metadata and no user-facing content, further supporting its role as a container for malicious code rather than a lure document.

Heuristics 1

  • ClamAV: Pdf.Dropper.Agent-7596813-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Dropper.Agent-7596813-0

Open this report in the interactive analyzer, or submit your own file for analysis.