PDF malware analysis — malicious · fa2fbcb15932dd38

MALICIOUS

PDF

226.7 KB

MD5: 1af911ad0c3127a27c00bddf908c5996 SHA-1: cbf27f99394f921fc7fbdd97b92fc2bee91aba08 SHA-256: fa2fbcb15932dd38a5204169e24b7fe69a2d9dc8f5e91f2c8a8ebf4371c0538e

90 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File

The file was detected as malicious by both a machine learning classifier and ClamAV, specifically identified as a PDF dropper. The document body contains minimal text, suggesting the primary function is to exploit vulnerabilities or deliver a payload rather than social engineering through content. The presence of the SHA256 hash is included as a primary indicator for this malicious PDF.

Machine Learning

Nyx PDF Classifier malicious score 0.9956

Heuristics 1

ClamAV: Pdf.Dropper.Agent-7326772-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Pdf.Dropper.Agent-7326772-0

Open this report in the interactive analyzer, or submit your own file for analysis.