× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0cbbb2707a88a3b65cbc1b6657081ea90c10a48418ccc99ef607cbb02c1bea9c
File name: Shipping Labels (938854744923).pdf
Detection ratio: 44 / 57
Analysis date: 2017-04-15 21:17:49 UTC ( 1 month, 1 week ago )
Antivirus Result Update
Ad-Aware Trojan.Doc.Agent.I 20170415
AegisLab Troj.Downloader.PDF.Agent.aw!c 20170414
AhnLab-V3 PDF/Dropper 20170415
ALYac Trojan.Doc.Agent.I 20170415
Antiy-AVL Trojan[Downloader]/PDF.Agent.aw 20170415
Arcabit Trojan.Doc.Agent.I 20170415
Avast VBA:Downloader-KN [Trj] 20170415
AVG W97M/Generic 20170415
Avira (no cloud) W97M/Agent.45397 20170415
AVware Trojan.PDF.Generic.a (v) 20170410
Baidu Multi.Threats.InArchive 20170414
BitDefender Trojan.Doc.Agent.I 20170415
CAT-QuickHeal O97M.Dropper.GO 20170415
Comodo UnclassifiedMalware 20170415
Cyren PP97M/Donoff 20170415
DrWeb W97M.DownLoader.555 20170415
Emsisoft Trojan.Doc.Agent.I (B) 20170415
ESET-NOD32 PDF/TrojanDropper.Agent.B 20170415
F-Prot New or modified PP97M/Donoff 20170415
F-Secure Trojan.Doc.Agent.I 20170415
Fortinet WM/Agent.BJC!tr.dldr 20170415
GData PDF.Trojan.Agent.A3JE2O 20170415
Ikarus Trojan-Dropper.PDF.Agent 20170415
K7AntiVirus Trojan ( 0001140e1 ) 20170415
K7GW Trojan ( 0001140e1 ) 20170415
Kaspersky Trojan-Downloader.PDF.Agent.ba 20170415
McAfee Generic.xm 20170415
McAfee-GW-Edition BehavesLike.PDF.Suspicious.pb 20170415
Microsoft TrojanDownloader:O97M/Donoff 20170415
eScan Trojan.Doc.Agent.I 20170415
NANO-Antivirus Trojan.Pdf.PDF.efgtco 20170415
Panda Trj/WLT.B 20170415
Qihoo-360 heur.macro.encodefeature.c 20170415
Rising Exploit.Generic!8.3E1 (cloud:S8LaMm0xhdT) 20170415
Sophos Troj/DocDl-XI 20170415
Symantec W97M.Downloader 20170415
Tencent OLE.Win32.Macro.700322 20170415
TrendMicro W2KM_DRIDEX.XCV 20170415
TrendMicro-HouseCall Suspicious_GEN.F47V0328 20170415
VIPRE Trojan.PDF.Generic.a (v) 20170415
ViRobot PDF.S.Agent.44202[h] 20170415
Yandex Trojan.Pdfer.Gen.ADE 20170414
ZoneAlarm by Check Point Trojan-Downloader.PDF.Agent.ba 20170415
Zoner Trojan.Agent 20170415
Alibaba 20170415
Bkav 20170415
ClamAV 20170415
CMC 20170415
CrowdStrike Falcon (ML) 20170130
Endgame 20170413
Invincea 20170413
Jiangmin 20170415
Kingsoft 20170415
Malwarebytes 20170415
nProtect 20170415
Palo Alto Networks (Known Signatures) 20170415
SentinelOne (Static ML) 20170330
SUPERAntiSpyware 20170415
Symantec Mobile Insight 20170414
TheHacker 20170412
TotalDefense 20170415
Trustlook 20170415
VBA32 20170414
Webroot 20170415
WhiteArmor 20170409
Zillya 20170414
The file being studied is a PDF document! The document's header reveals it is using the following file format specification: %PDF-1.4.
PDFiD information
This PDF file contains 3 JavaScript blocks. Malicious PDF documents often contain JavaScript to exploit JavaScript vulnerabilities and/or to execute heap sprays. Please note you can also find JavaScript in PDFs without malicious intent.
This PDF document contains at least one embedded file. Embedded files can be used in conjunction with launch actions in order to run malicious executables in the machine viewing the PDF.
This PDF document has 1 page, please note that most malicious PDFs have only one page.
This PDF document has 12 object start declarations and 12 object end declarations.
This PDF document has 2 stream object start declarations and 2 stream object end declarations.
This PDF document has a cross reference table (xref).
This PDF document has a pointer to the cross reference table (startxref).
This PDF document has a trailer dictionary containing entries allowing the cross reference table, and thus the file objects, to be read.
ExifTool file metadata
MIMEType
application/pdf

ModifyDate
2015:08:11 10:50:28+03:00

Producer
iTextSharp 5.5.5 2000-2014 iText Group NV (AGPL-version)

PageCount
1

FileType
PDF

Linearized
No

FileTypeExtension
pdf

PDFVersion
1.4

CreateDate
2015:08:11 10:50:28+03:00

File identification
MD5 b3db8bbbeec4624d94c5e1c8cdc9f986
SHA1 d14758206bbbc0b655413d9c6f5528b5e80fdd26
SHA256 0cbbb2707a88a3b65cbc1b6657081ea90c10a48418ccc99ef607cbb02c1bea9c
ssdeep
768:2Nvp/LD2aVam1z36gKwsk2U+Ql5x1j4evhb9xXwU3Q0gZGaMLCfHg67SaNoEp4Nr:2Nvp/xam1z6gKf+l5wev6zZdMmfHgKSj

File size 43.2 KB ( 44202 bytes )
File type PDF
Magic literal
PDF document, version 1.4

TrID Adobe Portable Document Format (100.0%)
Tags
pdf file-embedded attachment js-embedded

VirusTotal metadata
First submission 2015-08-11 08:19:54 UTC ( 1 year, 9 months ago )
Last submission 2016-04-08 15:21:56 UTC ( 1 year, 1 month ago )
File names DirectDebit Invoice_5262307_011220140151449702826.pdf
0cbbb2707a88a3b65cbc1b6657081ea90c10a48418ccc99ef607cbb02c1bea9c.pdf.000
Shipping Labels (938854744923).pdf
Shipping_Labels_938854744923.pdv
DirectDebit Invoice_5262307_011220140151449702826.pdf
Shipping Labels (938854744923).pdf
715643_Shippingx2520Labelsx2520x2528938854744923x2529.pdf
716019_Shippingx2520Labelsx2520x2528938854744923x2529.pdf
a57dbeb555b8958d989eba14c94d887d
4e8e4621c7202c06046198cfe5cb361b
Shipping Labels (938854744923).pdf
ExifTool file metadata
MIMEType
application/pdf

ModifyDate
2015:08:11 10:50:28+03:00

Producer
iTextSharp 5.5.5 2000-2014 iText Group NV (AGPL-version)

PageCount
1

FileType
PDF

Linearized
No

FileTypeExtension
pdf

PDFVersion
1.4

CreateDate
2015:08:11 10:50:28+03:00

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!