CLEAN
22
Risk Score
Machine Learning
- Nyx PDF Classifier clean score 0.0013
Heuristics 2
-
Unusually high stream count medium PDF_MANY_STREAMSPDF contains 501+ stream objects — may indicate heap spray or heavy obfuscation
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://prismstandard.org/namespaces/basic/2.0/ In PDF document text
- http://calibre-ebook.com])/KeywordsIn PDF document text
- http://calibre-ebook.com])/TitleIn PDF document text
- http://calibre-ebook.comIn PDF document text
- http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
- http://purl.org/dc/elements/1.1/In PDF document text
- http://ns.adobe.com/xmp/Identifier/qual/1.0/In PDF document text
- http://ns.adobe.com/xap/1.0/In PDF document text
- http://ns.adobe.com/pdfx/1.3/In PDF document text
- http://calibre-ebook.com/xmp-namespace-series-indexIn PDF document text
- http://calibre-ebook.com/xmp-namespace-custom-columnsIn PDF document text
- http://calibre-ebook.com/xmp-namespaceIn PDF document text
Extracted artifacts 3
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
stream_197_off0021ff97.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x21FF97 | 91496 bytes |
SHA-256: 5c6568fe9d731dfefecb0d14a859862d2f523378103bee433e9b6f1fd5444070 |
|||
stream_199_off0023261d.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x23261D | 115384 bytes |
SHA-256: 19b3c31d2726aa86411f485cda846a29427748f347a6229d0db828efa3e88c9e |
|||
stream_200_off00241205.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x241205 | 76180 bytes |
SHA-256: 8b33a305e6034e53f52221a187e1392a129a1956708b302f59b71bb229cfc085 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.