PDFExaminer


Recent PDF malware detections. This list is delayed 2 weeks. +Submit one

MD5filenamesizeseverityjsflashembedencrypt
1c011356da01da91c6982642a5592fd4 view report Bjarne Stroustrup - A Tour of C++-Addison-Wesley Professional (2018).pdf 4544433 4        
2089.0@458888: suspicious.obfuscation using String.replace
bda1ce82121b565101a3eb160d91d551 view report document.pdf 812448 1 J     E
659.0@794964: suspicious.warning: object contains JavaScript
a8248961302799f1e3cf4c11428c60e0 view report Tkinter GUI Application Development Blueprints [eBook].pdf 4058712 30        
230.0@1161806: suspicious.obfuscation using eval
249.0@1240235: suspicious.obfuscation using eval
388.0@1706248: suspicious.obfuscation using eval
539.0@2142790: suspicious.obfuscation using eval
539.0@2142790: suspicious.obfuscation using String.replace
8c942360ab4de8c6502f750a8d4d1c29 view report Engagement (4).pdf 175907 25 J      
3.0@1105: suspicious.javascript in XFA block
3.0@1105: suspicious.obfuscation toString
3.0@1105: suspicious.obfuscation using substr
3.0@1105: suspicious.obfuscation using String.replace
3.0@1105: suspicious.obfuscation using substring
3.0@1105: suspicious.warning: object contains JavaScript
34.0@142841: suspicious.warning: object contains JavaScript
35.0@143328: suspicious.warning: object contains JavaScript
36.0@143675: suspicious.warning: object contains JavaScript
8091826b330414979fcc5e8828335268 view report OP(CD)43.pdf 105748 3 J      
14.0@11910: suspicious.warning: object contains JavaScript
15.0@12355: suspicious.warning: object contains JavaScript
16.0@12745: suspicious.warning: object contains JavaScript
b98376a657c3c51731cb88dca73a3116 view report a.pdf 520810 2 J   P  
11.0@693: suspicious.pdf embedded PDF file
11.0@693: suspicious.warning: object contains embedded PDF
4.0@519599: suspicious.warning: object contains JavaScript
coms_openssl
4c1b4032a51584f684e6e0f3096f6fdb view report Violent_Python_A_Cookbook_for_Hackers_Forensic_Ana.pdf 7228085 60        
142.0@546396: suspicious.obfuscation using String.replace
719.0@2438368: suspicious.obfuscation using String.replace
728.0@2472223: suspicious.obfuscation using String.replace
750.0@2546076: suspicious.obfuscation using String.replace
956.0@3231559: suspicious.obfuscation using String.replace
979.0@3308484: suspicious.obfuscation using String.replace
1491.0@5080987: suspicious.obfuscation using String.replace
1500.0@5116425: suspicious.obfuscation using String.replace
1678.0@5769335: suspicious.obfuscation using String.replace
1829.0@6260832: suspicious.obfuscation using String.replace
1846.0@6310614: suspicious.obfuscation using unescape
1853.0@6334384: suspicious.obfuscation using unescape
2056.0@6936097: suspicious.obfuscation using String.replace
2064.0@6960183: suspicious.obfuscation using String.replace
735e7750f2d6ab5f859ecbaebce5ddfc view report Newsletter June:July 2019 Final KT.pdf 169576 30        
118.0@77153: suspicious.embedded external content
120.0@77473: suspicious.embedded external content
121.0@77649: suspicious.embedded external content
122.0@77825: suspicious.embedded external content
124.0@78122: suspicious.embedded external content
125.0@78304: suspicious.embedded external content
126.0@78480: suspicious.embedded external content
128.0@78778: suspicious.embedded external content
129.0@78959: suspicious.embedded external content
130.0@79134: suspicious.embedded external content
132.0@79411: suspicious.embedded external content
134.0@79685: suspicious.embedded external content
136.0@79932: suspicious.embedded external content
138.0@80239: suspicious.embedded external content
139.0@80414: suspicious.embedded external content
141.0@80664: suspicious.embedded external content
142.0@80839: suspicious.embedded external content
144.0@81089: suspicious.embedded external content
145.0@81264: suspicious.embedded external content
147.0@81602: suspicious.embedded external content
148.0@81783: suspicious.embedded external content
149.0@81963: suspicious.embedded external content
151.0@82205: suspicious.embedded external content
153.0@82511: suspicious.embedded external content
155.0@82809: suspicious.embedded external content
157.0@83052: suspicious.embedded external content
158.0@83230: suspicious.embedded external content
160.0@83530: suspicious.embedded external content
162.0@83830: suspicious.embedded external content
164.0@84125: suspicious.embedded external content
657ade45c5f06e2d065da1d8a3903a6c view report Resume Tech0.pdf 40011 1        
25.0@8108: suspicious.embedded external content
6f26580dc2463551413ba1c283f29bf8 view report sample.pdf 5005 6 J     E
1.0@15: suspicious.warning: object contains JavaScript
13.0@935: suspicious.obfuscation using eval
13.0@935: suspicious.warning: object contains JavaScript
6f26580dc2463551413ba1c283f29bf8 view report sample.pdf 5005 6 J     E
1.0@15: suspicious.warning: object contains JavaScript
13.0@935: suspicious.obfuscation using eval
13.0@935: suspicious.warning: object contains JavaScript
b986f888ab5c5c46fcf620d7bea40b3a view report CCIE Routing and Switching v5.0 Official Cert Guide, Volume 2 ( PDFDrive.com ).pdf 5357247 1     P  
9999.0@3892746: suspicious.embedded external content
9999.0@3892746: suspicious.warning: object contains embedded PDF
75e3865d1cab4170492959443d8a5244 view report Gwl4U5fqQZlJxEpPlgFL0hRNQrG4mmhg.pdf 33498 21 J      
82.0@26626: suspicious.obfuscation using charCodeAt
82.0@26626: suspicious.obfuscation using eval
82.0@26626: suspicious.obfuscation toString
82.0@26626: suspicious.obfuscation using String.fromCharCode
82.0@26626: suspicious.obfuscation using String.replace
82.0@26626: suspicious.warning: object contains JavaScript
83.0@31336: suspicious.warning: object contains JavaScript
fc508e708bba5da90c63338857b58115 view report ch7.pdf 33781 21 J      
82.0@26626: suspicious.obfuscation using charCodeAt
82.0@26626: suspicious.obfuscation using eval
82.0@26626: suspicious.obfuscation toString
82.0@26626: suspicious.obfuscation using String.fromCharCode
82.0@26626: suspicious.obfuscation using String.replace
82.0@26626: suspicious.warning: object contains JavaScript
83.0@31645: suspicious.warning: object contains JavaScript
6b0d89716ee815d132caec8edbb57f34 view report Classic Computer Science Problems in Python.pdf 4498085 6        
1433.0@1688393: suspicious.obfuscation using eval
1436.0@1693722: suspicious.obfuscation using eval