× 쿠키가 비활성화 되어 있습니다! 이 사이트는 작업을 제대로 하려면 쿠키 활성화가 필요합니다.
SHA256: d9a96d193f63cefb3380ed5a7ec10e401dd46ca0d9e11a6a019574e058c89fcc
파일 이름: A4 Inv_Crd 914605.pdf
탐지 비율: 9 / 56
분석 날짜: 2017-06-05 09:23:45 UTC ( 5개월, 2주 전 ) 최신 보기
안티바이러스 결과 업데이트
AhnLab-V3 PDF/Expod.Gen 20170605
Avira (no cloud) W97M/Agent.7510415 20170605
F-Secure Trojan-Dropper:JS/PdfDropper.A 20170605
Kaspersky HEUR:Trojan-Downloader.Script.Generic 20170605
Panda O97M/Downloader 20170604
Qihoo-360 virus.office.obfuscated.1 20170605
Symantec Trojan.Pidief 20170605
TrendMicro HEUR_VBA.O2 20170605
ZoneAlarm by Check Point HEUR:Trojan-Downloader.Script.Generic 20170605
Ad-Aware 20170605
AegisLab 20170605
Alibaba 20170605
ALYac 20170605
Antiy-AVL 20170605
Arcabit 20170605
Avast 20170605
AVG 20170605
AVware 20170605
Baidu 20170601
BitDefender 20170605
Bkav 20170602
CAT-QuickHeal 20170605
ClamAV 20170605
CMC 20170605
Comodo 20170605
CrowdStrike Falcon (ML) 20170420
Cyren 20170605
DrWeb 20170605
Emsisoft 20170605
Endgame 20170515
ESET-NOD32 20170605
F-Prot 20170605
Fortinet 20170605
GData 20170605
Ikarus 20170605
Sophos ML 20170604
Jiangmin 20170605
K7AntiVirus 20170604
K7GW 20170605
Kingsoft 20170605
Malwarebytes 20170605
McAfee 20170605
McAfee-GW-Edition 20170604
Microsoft 20170605
eScan 20170605
NANO-Antivirus 20170605
nProtect 20170605
Palo Alto Networks (Known Signatures) 20170605
Rising 20170603
SentinelOne (Static ML) 20170516
Sophos AV 20170605
SUPERAntiSpyware 20170605
Symantec Mobile Insight 20170605
Tencent 20170605
TheHacker 20170605
TrendMicro-HouseCall 20170605
Trustlook 20170605
VBA32 20170605
VIPRE 20170605
ViRobot 20170605
Webroot 20170605
WhiteArmor 20170601
Yandex 20170602
Zillya 20170602
Zoner 20170605
The file being studied is a PDF document! The document's header reveals it is using the following file format specification: %PDF-1.4.
PDFiD information
This PDF file contains 2 JavaScript blocks. Malicious PDF documents often contain JavaScript to exploit JavaScript vulnerabilities and/or to execute heap sprays. Please note you can also find JavaScript in PDFs without malicious intent.
This PDF file contains an open action to be performed when the document is viewed. Malicious PDF documents with JavaScript very often use open actions to launch the JavaScript without user interaction.
The combination of automatic actions and JavaScript makes this PDF document suspicious.
This PDF document contains at least one embedded file. Embedded files can be used in conjunction with launch actions in order to run malicious executables in the machine viewing the PDF.
This PDF document has 1 page, please note that most malicious PDFs have only one page.
This PDF document has 12 object start declarations and 12 object end declarations.
This PDF document has 4 stream object start declarations and 4 stream object end declarations.
This PDF document has a cross reference table (xref).
This PDF document has a pointer to the cross reference table (startxref).
This PDF document has a trailer dictionary containing entries allowing the cross reference table, and thus the file objects, to be read.
ExifTool file metadata
MIMEType
application/pdf

ModifyDate
2017:06:05 11:43:50+03:00

Producer
iTextSharp 5.5.10 2000-2016 iText Group NV (AGPL-version)

PageCount
1

FileType
PDF

Linearized
No

FileTypeExtension
pdf

PDFVersion
1.4

CreateDate
2017:06:05 11:43:50+03:00

File identification
MD5 aaa7a53de29dc9cd175c1b6cfad897d1
SHA1 76f9512f840e32930763afa3ce013a8459b0f255
SHA256 d9a96d193f63cefb3380ed5a7ec10e401dd46ca0d9e11a6a019574e058c89fcc
ssdeep
1536:dPCMlY1AMZ1bkeMey7y0dlQd+B79ak7CM+/C/lJXtD4Z:dPCMlY1N1bieAy2X7r7CL/C/l34Z

File size 67.7 KB ( 69289 bytes )
File type PDF
Magic literal
PDF document, version 1.4

TrID Adobe Portable Document Format (100.0%)
Tags
attachment pdf file-embedded autoaction js-embedded

VirusTotal metadata
First submission 2017-06-05 09:23:13 UTC ( 5개월, 2주 전 )
Last submission 2017-06-06 08:43:19 UTC ( 5개월, 2주 전 )
파일 이름 A4 Inv_Crd 6698.pdf
A4 Inv_Crd 311487.pdf
A4 Inv_Crd 91511.pdf
A4 Inv_Crd 56238.pdf
A4 Inv_Crd 914605.pdf
ExifTool file metadata
MIMEType
application/pdf

ModifyDate
2017:06:05 11:43:50+03:00

Producer
iTextSharp 5.5.10 2000-2016 iText Group NV (AGPL-version)

PageCount
1

FileType
PDF

Linearized
No

FileTypeExtension
pdf

PDFVersion
1.4

CreateDate
2017:06:05 11:43:50+03:00

댓글이 없습니다.. 이 항목에 대해 댓글을 작성한 바이러스토탈 커뮤니티 회원이 아직 없습니다. 첫 번째로 댓글을 작성해 보십시오!

댓글 남기기...

?
댓글 달기

로그인 안됨. 등록된 사용자만 댓글을 남길 수 있습니다. 로그인하여 댓글을 남겨보십시오!

투표가 없습니다.. 아직 이 항목에 투표한 사람이 없습니다. 첫 번째로 투표해 보십시오!