PDFExaminer


Recent PDF malware detections. This list is delayed 2 weeks. +Submit one

MD5filenamesizeseverityjsflashembedencrypt
a1ddc9ebe19a3d43ec25889085ad3ed8 view report pdf-doc-vba-eicar-dropper.pdf 10381 5 J      
8.0@907: suspicious.embedded OLE document header
9.0@9967: suspicious.warning: object contains JavaScript
d000e74163e34fc65914676674776284 view report peepdf.pdf 1928 50 J      
1.0@15: suspicious.warning: object contains JavaScript
13.0@934: suspicious.obfuscation using unescape
13.0@934: suspicious.obfuscation using substring
13.0@934: pdf.exploit printSeps memory heap corruption CVE-2010-4091
13.0@934: suspicious.warning: object contains JavaScript
d0c4bdad8b931111fafdf196bed8682a view report C Programming_ An Advanced Course [Kalicharan 2008-08-11].pdf 913862 4        
408.0@351303: suspicious.obfuscation using eval
d0c4bdad8b931111fafdf196bed8682a view report C Programming_ An Advanced Course [Kalicharan 2008-08-11].pdf 913862 4        
408.0@351303: suspicious.obfuscation using eval
00d35154f9890a90be7020994db79b99 view report Peter Block - Flawless Consulting_ A Guide to Getting Your Expertise Used, 3rd Edition (2011, Pfeiffer).pdf 7429853 1        
788.0@3834821: block size over 10MB
5934385b114c98bbde8926193d92237b view report 88809.pdf 108855 1 J      
12.0@6154: suspicious.warning: object contains JavaScript
db937f4223f93346cef25fbbe6e41d9e view report 12h.website.pdf 2959345 1        
58.0@2377870: block size over 10MB
db937f4223f93346cef25fbbe6e41d9e view report 12h.website.pdf 2959345 1        
58.0@2377870: block size over 10MB
c37ae9efc4eefcf1fe9cefa69a9e51f4 view report Car Price.pdf 6771 49 J      
6.0@425: suspicious.obfuscation using unescape
6.0@425: suspicious.obfuscation using substring
6.0@425: pdf.exploit util.printf CVE-2008-2992
6.0@425: suspicious.warning: object contains JavaScript
d113cd13983a1633984f2a89ff1a868a view report fff4a41fae69c302e005d47b00299125e5f7d590 9453 29 J      
6.0@358: suspicious.javascript object
7.0@411: suspicious.obfuscation using unescape
7.0@411: suspicious.obfuscation using String.replace
7.0@411: suspicious.obfuscation getAnnots access blocks
7.0@411: suspicious.warning: object contains JavaScript
8.0@714: suspicious.obfuscation using charCodeAt
8.0@714: suspicious.obfuscation using eval
8.0@714: suspicious.obfuscation toString
8.0@714: suspicious.obfuscation using substr
8.0@714: suspicious.obfuscation using String.fromCharCode
d113cd13983a1633984f2a89ff1a868a view report fff4a41fae69c302e005d47b00299125e5f7d590 9453 29 J      
6.0@358: suspicious.javascript object
7.0@411: suspicious.obfuscation using unescape
7.0@411: suspicious.obfuscation using String.replace
7.0@411: suspicious.obfuscation getAnnots access blocks
7.0@411: suspicious.warning: object contains JavaScript
8.0@714: suspicious.obfuscation using charCodeAt
8.0@714: suspicious.obfuscation using eval
8.0@714: suspicious.obfuscation toString
8.0@714: suspicious.obfuscation using substr
8.0@714: suspicious.obfuscation using String.fromCharCode
6354a39c95a58b85505e6c8152443100 view report 0a4f3f9acc61b85183108a31a306115fe34b571240da70920f0a1425fc32c3de 2345 3 J      
3.0@803: suspicious.warning: object contains JavaScript
4.0@1007: suspicious.javascript object
12.0@1632: suspicious.warning: object contains JavaScript
fdb882619543afa902e78d9d051165e3 view report 000334.pdf 206182 2       E
11.0@5767: suspicious.embedded external content
12.0@5969: suspicious.embedded external content
fdb882619543afa902e78d9d051165e3 view report 000334.pdf 206182 2       E
11.0@5767: suspicious.embedded external content
12.0@5969: suspicious.embedded external content
cd19a3b45d2dd2ff71601cee9fdd09b7 view report Linear Algebra.pdf 7578497 3        
790.0@5472656: suspicious.obfuscation using eval