Malicious PDF — malware analysis report

Static analysis result for SHA-256 fb349c3ef0db337a…

MALICIOUS

PDF

226.7 KB
MD5: 74b88a0924d537acbb089776495142aa SHA-1: d5b35020813b7f9af5fc42171ff1d33287e22b8f SHA-256: fb349c3ef0db337a5bd264e74e5238b5bb1ae396b72942f38792557dcfe0060c
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file is identified as a PDF by its metadata and is flagged by ClamAV as a known dropper. The document body contains obfuscated data, suggesting it is not intended for direct user interaction but rather to facilitate the execution of malicious code. The ClamAV detection name 'Pdf.Dropper.Agent-7327325-0' strongly indicates its function as a dropper.

Heuristics 1

  • ClamAV: Pdf.Dropper.Agent-7327325-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Dropper.Agent-7327325-0

Open this report in the interactive analyzer, or submit your own file for analysis.