PDFExaminer


Recent PDF malware detections. This list is delayed 2 weeks. +Submit one

MD5filenamesizeseverityjsflashembedencrypt
8948e6f7f074dbdf4c7c1880b2c76257 view report 237612f46e6e641ec775cea7652206b9d2bb2cb25848274ef229e648a493bf8c 81390 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
8959905fcd5537ebbe691d9ac2d2efb7 view report 1c0305a1479316be558854cf0aa5ef62e17702573d4e7105828512a3676c65e7 12064 17 J      
15.0@4207: suspicious.obfuscation using unescape
15.0@4207: suspicious.javascript in XFA block
15.0@4207: suspicious.obfuscation using substr
15.0@4207: suspicious.warning: object contains JavaScript
91e18a3f47289dad4f72904447a92e33 view report ea2e6f177ee0b2bba0521e41e43ecd4a98e1b18e904cd94da5702418c9061a5c 102218 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
91e346083f2d7166f7a5f4e67e56b723 view report db5e6dff3bd3a6f04dc14a85c20ca674ba154dc647d41cc8b679648ddca34bad 102211 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
91e5f592216e3e42d7317a7cdd2dc170 view report 791a2a7122ad8bb9bd45798054ee389177cb29a0cad0b7f07e2dd44527a2a749 80881 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
91f478d1e9634517b2b7ef2f1fa1349a view report 2dd91d0985274283d3dbbff52514e391b7b26f6d4edc441dfde0d0c71c6ad6da 72627 13 J      
8.0@149: suspicious.obfuscation using eval
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.warning: object contains JavaScript
899676ed77e78a225ffd3b797028372b view report 44a7581e646fb320bc5f0cb3351105fb819caf8b84e45f410118d34ad2ec4aab 15113 19 J      
1.0@5229: suspicious.obfuscation using unescape
1.0@5229: suspicious.javascript in XFA block
1.0@5229: suspicious.obfuscation using substr
1.0@5229: suspicious.obfuscation using String.replace
1.0@5229: suspicious.warning: object contains JavaScript
899fa60a1e1447e3416851a0ce409541 view report 205432463a0ad2e478fc2e19e9b416116c0bbee6b97a96dec13a5e26d8c49e7f 4061 60        
1.0@17: pdf.exploit using TIFF overflow CVE-2010-0188
1.0@17: suspicious.string base 64 nop sled used in TIFF overflow CVE-2010-0188
9215e4dbeef9e697d2101e5bd9329b20 view report 6d91c8c15438cad9d55b1a31a45b267d32525f4b4ad1a39630dd2e6b72152841 95746 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
9216ea23d3e0e1a374cdda02550c22cf view report bbb3e137975cb77dd0069c0751ad05493a00d632583af505f6ff3ac4609eca2f 12058 9 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.warning: object contains JavaScript
89a4d4c9de8f93e645d501fe332136fa view report 17f771fd2bd5e5ea618f6604df1d232619d2eaea176db9436c663e4b451fe5bc 4063 60        
1.0@17: pdf.exploit using TIFF overflow CVE-2010-0188
1.0@17: suspicious.string base 64 nop sled used in TIFF overflow CVE-2010-0188
921a1c279942100821caf4cb17603581 view report 5dbadd45ab5fcb1effe21fdef4eaa0fff5968e788ccd0501e6a16499db96d9cc 102198 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
89bfdb08510105fa2e97b9519d9b46f6 view report a8ba4bfd630e4ae9455689eae7db1105306bb248ebf2a159cd5b53a258a8c638 15175 19 J      
1.0@5229: suspicious.obfuscation using unescape
1.0@5229: suspicious.javascript in XFA block
1.0@5229: suspicious.obfuscation using substr
1.0@5229: suspicious.obfuscation using String.replace
1.0@5229: suspicious.warning: object contains JavaScript
9235cc1a30b8a5373fdeca1b2e7fd82e view report efc981e63e2b033f96b1b723f9dc2633ef1cb6227651dc29b91c2b18b25444b7 102107 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript
89c597a7fd6c4fe3a9e6da4fcb5a7086 view report 4284828ad65bd84994a28407f4a8f553710103b3ed23815bf6478a9220fdae3b 102310 12 J      
8.0@149: suspicious.javascript in XFA block
8.0@149: suspicious.obfuscation using substr
8.0@149: suspicious.warning: object contains JavaScript