PDF static analysis report

Static analysis result for SHA-256 a7b103d4da57df58…

CLEAN

PDF

527.0 KB Created: 2019-10-09 13:46:37 +07:00 Authoring application: Microsoft® Word 2010 First seen: 2026-05-09
MD5: ac45da98c0d6c1f567b61672800bb4ae SHA-1: 153b15a56752c6b0308ba57b47c024bdfcc63fbd SHA-256: a7b103d4da57df589602f98f4d9d56e0d778703d0821c62fa85c401c9f8b4988
4 Risk Score

Machine Learning

  • Nyx PDF Classifier clean score 0.0001

Heuristics 2

  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://www.dephan.go.id/modules.php?name PDF link annotation
    • http://www.dephan.go.id/PDF link annotation
    • http://ocsp.verisign.com0In PDF document text
    • http://crl.verisign.com/ThawteTimestampingCA.crl0In PDF document text
    • http://crl.verisign.com/tss-ca.crl0In PDF document text
    • http://crl.microsoft.com/pki/crl/products/CodeSignPCA.crl0In PDF document text
    • http://www.microsoft.com/typographyIn PDF document text
    • http://crl.microsoft.com/pki/crl/products/MicrosoftTimeStampPCA.crl0XIn PDF document text
    • http://www.microsoft.com/pki/certs/MicrosoftTimeStampPCA.crt0In PDF document text
    • http://crl.microsoft.com/pki/crl/products/MicCodSigPCA_08-31-2010.crl0ZIn PDF document text
    • http://www.microsoft.com/pki/certs/MicCodSigPCA_08-31-2010.crt0In PDF document text
    • http://crl.microsoft.com/pki/crl/products/microsoftrootcert.crl0TIn PDF document text
    • http://www.microsoft.com/pki/certs/MicrosoftRootCert.crt0In PDF document text

Extracted artifacts 4

Files carved from inside the sample during analysis.

FilenameKindSourceSize
stream_034_off0003aac0.bin decompressed-pdf-stream PDF FlateDecoded stream at offset 0x3AAC0 73560 bytes
SHA-256: 28ac586f6d51890ac546a63e0743a9d1cf44ff6f738a5edf6b9cb64bf261b341
stream_036_off00043ca7.bin decompressed-pdf-stream PDF FlateDecoded stream at offset 0x43CA7 75428 bytes
SHA-256: 7a96c366559e364d87d87e66416ef47b81d6bf20d62bb4989c4159e70979ed30
stream_038_off0004d7c8.bin decompressed-pdf-stream PDF FlateDecoded stream at offset 0x4D7C8 74912 bytes
SHA-256: 12743a806343fe3c7acb3569842d5b152c3d57945de29f0b4d8dc5c0acace645
stream_050_off0007066e.bin decompressed-pdf-stream PDF FlateDecoded stream at offset 0x7066E 132584 bytes
SHA-256: e2704069a5fb909295223be8eea72cbd3236d7502feeb9ea5b9875898149f32d