PDFExaminer


Recent PDF malware detections. This list is delayed 2 weeks. +Submit one

MD5filenamesizeseverityjsflashembedencrypt
6bbfd9364a7afc9b1f2574efb690a51d view report See what the IHS Markit Score report has to say about Bunge Ltd..pdf 77184 16        
78.0@20981: suspicious.embedded external content
80.0@21302: suspicious.embedded external content
82.0@21572: suspicious.embedded external content
84.0@21886: suspicious.embedded external content
86.0@22102: suspicious.embedded external content
88.0@22405: suspicious.embedded external content
90.0@22714: suspicious.embedded external content
92.0@23010: suspicious.embedded external content
94.0@23328: suspicious.embedded external content
96.0@23639: suspicious.embedded external content
98.0@23876: suspicious.embedded external content
100.0@24174: suspicious.embedded external content
102.0@24447: suspicious.embedded external content
104.0@24722: suspicious.embedded external content
106.0@24959: suspicious.embedded external content
108.0@25174: suspicious.embedded external content
df0de9ad9e5bf00a60f8de3d37683c5b view report navy procurement.pdf 222903 38 J      
5.0@248: suspicious.javascript object
6.0@301: suspicious.obfuscation toString
6.0@301: pdf.suspicious util.printd used to fill buffers
6.0@301: pdf.exploit media.newPlayer CVE-2009-4324
6.0@301: suspicious.warning: object contains JavaScript
-1.-1@162192: suspicious.warning: end of file contains content
ee0865cb05ee55ed9dd36d8e29c49798 view report Claim_05158997701010233-01.pdf 33591 1        
3.0@9: suspicious.embedded external content
c37ae9efc4eefcf1fe9cefa69a9e51f4 view report infected.pdf 6771 49 J      
6.0@425: suspicious.obfuscation using unescape
6.0@425: suspicious.obfuscation using substring
6.0@425: pdf.exploit util.printf CVE-2008-2992
6.0@425: suspicious.warning: object contains JavaScript
b106d62d0df6841cbf16fba19a18b14c view report [Graduate texts in mathematics 231] Anders Bjorner, Francesco Brenti - Combinatorics of Coxeter Groups (2005, Springer).pdf 3237455 4        
7.0@49240: suspicious.obfuscation using eval
7c360f5bb498a107850fbc6505ed9fc1 view report Invitation to Japan Dinner 6-25-18.pdf 2637342 1        
25.0@2618596: suspicious.embedded external content
59d8c592c6451993fde31255972398df view report 00670720.pdf 319547 2 J      
5.0@248: suspicious.javascript object
6.0@301: suspicious.warning: object contains JavaScript
59d8c592c6451993fde31255972398df view report 00670720.pdf 319547 2 J      
5.0@248: suspicious.javascript object
6.0@301: suspicious.warning: object contains JavaScript
e7869c1373498741636810b105ff315e view report MongoDB.pdf 7538998 4        
475.0@5864045: suspicious.obfuscation using String.replace
df0de9ad9e5bf00a60f8de3d37683c5b view report navy_procurement.pdf 222903 38 J      
5.0@248: suspicious.javascript object
6.0@301: suspicious.obfuscation toString
6.0@301: pdf.suspicious util.printd used to fill buffers
6.0@301: pdf.exploit media.newPlayer CVE-2009-4324
6.0@301: suspicious.warning: object contains JavaScript
-1.-1@162192: suspicious.warning: end of file contains content
e7869c1373498741636810b105ff315e view report Francesco Marchioni - MongoDB for Java Developers_ Design, build, and deliver efficient Java applications using the most advanced NoSQL database (2015, Packt Publishing).pdf 7538998 4        
475.0@5864045: suspicious.obfuscation using String.replace
fd2840c8ac2f407489cf098f9b349a55 view report 20 Lynn Dr Foundation Report.pdf 2369512 1        
2.0@210: block size over 10MB
d210403a9d63879c0b2acf41b6d82720 view report XykpdWhZZ2.pdf 9940 7 J      
17.0@7556: suspicious.javascript in XFA block
17.0@7556: suspicious.warning: object contains JavaScript
17a9d6a6b8bc75e370637aea37336241 view report 3D_adesk_site-3d.pdf 90188 3        
21.0@81897: suspicious.obfuscation using substring
4e6b17825e645732a1cf6394844a5b47 view report CVE_2010-2883_PDF_4E6B17825E645732A1CF6394844A5B47 602714 121 J      
11.0@1607: pdf.exploit fontfile SING table overflow CVE-2010-2883 A
12.0@12056: pdf.exploit fontfile SING table overflow CVE-2010-2883 A
30.0@25357: suspicious.obfuscation using unescape
30.0@25357: suspicious.obfuscation using charCodeAt
30.0@25357: suspicious.obfuscation toString
30.0@25357: suspicious.obfuscation using substr
30.0@25357: suspicious.obfuscation using String.replace
30.0@25357: suspicious.obfuscation using substring
30.0@25357: suspicious.string Shellcode NOP sled
30.0@25357: suspicious.string shellcode
30.0@25357: suspicious.string -shellcode-
30.0@25357: pdf.exploit Collab.collectEmailInfo CVE-2008-0655
30.0@25357: pdf.exploit util.printf CVE-2008-2992
30.0@25357: suspicious.warning: object contains JavaScript