× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6b6fdc4b116802728ec763ac7b25472046465dd0cf58146b3755e7efcb83f135
File name: invoice621785.pdf
Detection ratio: 41 / 61
Analysis date: 2018-09-13 07:52:42 UTC ( 6 days, 11 hours ago )
Antivirus Result Update
Ad-Aware Exploit.PDF.CVE-2013-2729.A 20180913
AegisLab Hacktool.PDF.Agent.3!c 20180913
AhnLab-V3 PDF/Cve-2013-2729 20180913
ALYac PDF:Exploit.CVE-2013-2729.D 20180913
Arcabit Exploit.PDF.CVE-2013-2729.A 20180913
Avast JS:Pdfka-BZN [Expl] 20180913
AVG JS:Pdfka-BZN [Expl] 20180913
Avira (no cloud) EXP/Pidief.EB.100 20180913
AVware LooksLike.PDF.Malware.g (v) 20180913
Baidu PDF.Exploit.CVE-2013-2729.d 20180912
BitDefender Exploit.PDF.CVE-2013-2729.A 20180913
CAT-QuickHeal Exploit/CVE-2013-2729.A 20180912
ClamAV Pdf.Dropper.Agent-1422193 20180913
Comodo Exploit.PDF.Agent.~A 20180913
Cyren PDF/Trojan.EUYD-4 20180913
DrWeb Exploit.PDF.8895 20180913
Emsisoft Exploit.PDF.CVE-2013-2729.A (B) 20180913
ESET-NOD32 PDF/Exploit.CVE-2013-2729.G 20180913
F-Prot PDF/CVE132729 20180913
F-Secure Exploit.PDF.CVE-2013-2729.A 20180913
Fortinet PDF/CVE_2013_2729.G!exploit 20180913
GData PDF:Exploit.CVE-2013-2729.D 20180913
Ikarus Exploit.PDF 20180912
Kaspersky Exploit.PDF.Agent.c 20180913
McAfee Exploit-CVE2013-2729 20180913
McAfee-GW-Edition BehavesLike.PDF.Evasion.gr 20180913
Microsoft Exploit:JS/Pdfjsc.BC 20180913
eScan Exploit.PDF.CVE-2013-2729.A 20180913
NANO-Antivirus Exploit.Script.PDF.duewlb 20180913
Qihoo-360 Win32/Trojan.Exploit.4ff 20180913
Rising Hack.Exploit.MalPDF.a (CLASSIC) 20180913
SentinelOne (Static ML) static engine - malicious 20180830
Sophos AV Troj/20132729-I 20180913
Symantec Trojan.Pidief 20180912
TACHYON Trojan-Exploit/W32.CVE-2013-2729.476741 20180913
Tencent Win32.Trojan.Gen.Qsdb 20180913
TrendMicro TROJ_PIDIEF.SMAZ 20180913
TrendMicro-HouseCall TROJ_PIDIEF.SMAZ 20180913
VIPRE LooksLike.PDF.Malware.g (v) 20180913
ViRobot PDF.S.CVE-2013-2729.476741 20180913
ZoneAlarm by Check Point Exploit.PDF.Agent.c 20180913
Alibaba 20180713
Antiy-AVL 20180913
Avast-Mobile 20180913
Babable 20180907
Bkav 20180912
CMC 20180913
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20180913
eGambit 20180913
Endgame 20180730
Sophos ML 20180717
Jiangmin 20180912
K7AntiVirus 20180913
K7GW 20180913
Kingsoft 20180913
Malwarebytes 20180913
MAX 20180913
Palo Alto Networks (Known Signatures) 20180913
Panda 20180912
SUPERAntiSpyware 20180907
Symantec Mobile Insight 20180911
TheHacker 20180913
TotalDefense 20180913
Trustlook 20180913
VBA32 20180912
Webroot 20180913
Yandex 20180912
Zillya 20180912
Zoner 20180912
The file being studied is a PDF document! The document's header reveals it is using the following file format specification: %PDF-1.7.
PDFiD information
This PDF document has an invalid cross reference table.
This PDF document contains AcroForm objects. AcroForm Objects can specify and launch scripts or actions, that is why they are often abused by attackers.
This PDF document has 1 page, please note that most malicious PDFs have only one page.
This PDF document has 6 object start declarations and 6 object end declarations.
This PDF document has 2 stream object start declarations and 2 stream object end declarations.
This PDF document has a cross reference table (xref).
This PDF document has a pointer to the cross reference table (startxref).
This PDF document has a trailer dictionary containing entries allowing the cross reference table, and thus the file objects, to be read.
ExifTool file metadata
MIMEType
application/pdf

FileType
PDF

Linearized
No

Warning
Invalid xref table

FileTypeExtension
pdf

PDFVersion
1.7

File identification
MD5 536445d39de9f19947aa493c1ee57751
SHA1 3d478fcafa63159397eb34155fa15c099ddad503
SHA256 6b6fdc4b116802728ec763ac7b25472046465dd0cf58146b3755e7efcb83f135
ssdeep
1536:x/Bv8Az/mDLyw7J2b3pXqMl9abHfdp8ZSL3mFSdgLCO/ZL9KKXZ:xN9mDuw0p6MlAb/d6ZQdg1/vKKXZ

File size 465.6 KB ( 476741 bytes )
File type PDF
Magic literal
PDF document, version 1.7

TrID Adobe Portable Document Format (100.0%)
Tags
cve-2013-2729 exploit attachment pdf invalid-xref acroform

VirusTotal metadata
First submission 2014-10-15 13:31:37 UTC ( 3 years, 11 months ago )
Last submission 2018-05-05 23:58:55 UTC ( 4 months, 2 weeks ago )
File names invoice621785.pdf
sample.pdf
wargames1.pdf
invoice621785.pdf
invoice621785.pdf
invoice621785.pdf
invoice621785.pdf
BAD-invoice621785.pdf
invoice621785.pdf.malware
536445d39de9f19947aa493c1ee57751.pdf
invoice621785.pdf
infected.pdf
vti-rescan
invoice621785.txt
invoice621785 - Copy.pdf
invoice621785.pdf
file-7580290_pdf
_VIRUS_invoice621785.pdf
invoice621785.pdf
invoice621785.pdf.mal
flt1168_17404.pdf
VIRUS_invoice621785.pdf
536445d39de9f19947aa493c1ee57751_autospear.pdf
invoice621785.pdf
base64.pdf
ExifTool file metadata
MIMEType
application/pdf

FileType
PDF

Linearized
No

Warning
Invalid xref table

FileTypeExtension
pdf

PDFVersion
1.7

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!