CLEAN
20
Risk Score
Machine Learning
- Nyx PDF Classifier clean score 0.0001
Heuristics 1
-
Callback phishing phone lure medium SE_CALLBACK_LUREDocument asks the user to call a phone number in billing, refund, subscription, fraud, or security context — consistent with callback phishing or tech-support scam patterns. Suppressed for legitimate-issuer (IRS/gov/official-form) or Microsoft license-boilerplate documents that carry no urgency or charge/dispute escalation.
Extracted artifacts 7
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
stream_024_off0002472d.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x2472D | 149444 bytes |
SHA-256: d5154ee2e26e7f2f67fcc8237af0623d654cab03c88acdaf5a2c2a5139816f25 |
|||
font_01_sfnt_off0002d226.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x2D226 | 15572 bytes |
SHA-256: b8b247496d3a0c4918773781d351ab9edfada60c1af87a85d0beecdb322806dd |
|||
font_02_sfnt_off000305fd.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x305FD | 13508 bytes |
SHA-256: bd9e83287b0d68b69d51ade3b1a6d88c9d79616100fdc6bf8b94f35bdafefa18 |
|||
font_03_sfnt_off00032863.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x32863 | 220792 bytes |
SHA-256: 86846322da3d79bdb423de239457a9b02e4d1bbe3e8acfda1cbe6d14251f31e3 |
|||
font_04_sfnt_off00033ad1.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x33AD1 | 52208 bytes |
SHA-256: 21c87430fbfb532045eaef4e36684fbb7d05c379f7193b5591a48567d1efcdce |
|||
font_05_sfnt_off00035148.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x35148 | 47796 bytes |
SHA-256: e63a51dfd52b6a8c3166c59ef4814eb245c5181b09637107ec97ab4eb48e1cf5 |
|||
font_06_sfnt_off0004258e.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x4258E | 6096 bytes |
SHA-256: 03c02e05377f87b7ffcfeecda6ee9d693b22f57d196f7e92f5eec09b0c4d8096 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.