Malicious PDF — malware analysis report

Static analysis result for SHA-256 cfb418f54310a070…

MALICIOUS

PDF

226.7 KB
MD5: 66d8bc0a9fd0932c2c15710f6a75ea75 SHA-1: ad5b432099a5048d0936a992a0f9fe19da7860ae SHA-256: cfb418f54310a0703e26b05f1027d8ed8761ef861ec1f2c797bb4873747a2702
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file is identified as a PDF by ClamAV with the signature 'Pdf.Dropper.Agent-7306369-0', indicating it functions as a dropper. The document body contains seemingly random data, suggesting it is not intended for direct user interaction but rather to facilitate the execution of malicious code. The primary IOC is the file's SHA256 hash.

Heuristics 1

  • ClamAV: Pdf.Dropper.Agent-7306369-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Dropper.Agent-7306369-0

Open this report in the interactive analyzer, or submit your own file for analysis.