Malicious PDF — malware analysis report

Static analysis result for SHA-256 a10b8ffb4f0188fd…

MALICIOUS

PDF

6.2 KB
MD5: 5c6fddf5e1f6a19a4a037706f5b43352 SHA-1: d3a07bd85b2bb5b78182aeab3877d1fcd7f97d1c SHA-256: a10b8ffb4f0188fd9105c12ce49438c6e3558d84a85d32fbea5a397940026fc3
76 Risk Score

Malware Insights

The PDF file contains embedded JavaScript, indicated by heuristic firings for PDF_JAVASCRIPT and PDF_JS. ClamAV also flagged the file as Heuristics.PDF.ObfuscatedNameObject, suggesting malicious intent. The presence of JavaScript actions within the PDF points to an attempt to execute code, likely to exploit vulnerabilities or download further malicious content.

Heuristics 3

  • ClamAV: Heuristics.PDF.ObfuscatedNameObject critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Heuristics.PDF.ObfuscatedNameObject
  • JavaScript action low PDF_JAVASCRIPT
    PDF contains a /JavaScript action. Generic JavaScript is common in benign forms; specific dangerous APIs are scored by separate rules.
  • Embedded JS stream low PDF_JS
    PDF references a /JS stream. Generic JavaScript is common in benign forms; specific dangerous APIs are scored by separate rules.

Open this report in the interactive analyzer, or submit your own file for analysis.