× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: bc415d1f0c8d8af1b02008f03788de7e073650893eec01296c537346b42f7244
File name: bc415d1f0c8d8af1b02008f03788de7e073650893eec01296c537346b42f7244.doc
Detection ratio: 19 / 56
Analysis date: 2017-05-23 21:09:50 UTC ( 3 days, 18 hours ago )
Antivirus Result Update
AegisLab Troj.Downloader.Pdf!c 20170523
Avast Other:Malware-gen [Trj] 20170523
Avira (no cloud) EXP/Pidief.jjsd 20170523
AVware Trojan.PDF.Generic (v) 20170523
CAT-QuickHeal MalLink.A 20170523
Comodo UnclassifiedMalware 20170523
GData PDF.Trojan.Agent.FA66MP 20170523
Ikarus Trojan-Downloader.PDF.Agent 20170523
Kaspersky Trojan-Downloader.PDF.Agent.e 20170523
McAfee RDN/Generic Downloader.x 20170523
McAfee-GW-Edition RDN/Generic Downloader.x 20170523
Microsoft TrojanDownloader:Win32/FakeShak.C 20170523
Rising Downloader.FakeShak!8.1A1A (cloud:Hc6ubfJJEuQ) 20170523
Symantec Downloader 20170523
Tencent Pdf.Trojan-downloader.Agent.Bxj 20170523
TrendMicro PDF_MALDOWN.A 20170523
TrendMicro-HouseCall PDF_MALDOWN.A 20170523
VIPRE Trojan.PDF.Generic (v) 20170523
ZoneAlarm by Check Point Trojan-Downloader.PDF.Agent.e 20170523
Ad-Aware 20170523
AhnLab-V3 20170523
Alibaba 20170523
ALYac 20170523
Antiy-AVL 20170523
Arcabit 20170523
AVG 20170523
BitDefender 20170523
Bkav 20170523
ClamAV 20170523
CMC 20170523
CrowdStrike Falcon (ML) 20170130
Cyren 20170523
DrWeb 20170523
Emsisoft 20170523
Endgame 20170515
ESET-NOD32 20170523
F-Prot 20170523
F-Secure 20170523
Fortinet 20170523
Invincea 20170519
Jiangmin 20170523
K7AntiVirus 20170523
K7GW 20170523
Kingsoft 20170523
Malwarebytes 20170523
eScan 20170523
NANO-Antivirus 20170523
nProtect 20170523
Palo Alto Networks (Known Signatures) 20170523
Panda 20170523
Qihoo-360 20170523
SentinelOne (Static ML) 20170516
Sophos 20170523
SUPERAntiSpyware 20170523
Symantec Mobile Insight 20170523
TheHacker 20170522
TotalDefense 20170523
Trustlook 20170523
VBA32 20170523
ViRobot 20170523
Webroot 20170523
WhiteArmor 20170517
Yandex 20170518
Zillya 20170523
Zoner 20170523
The file being studied is a PDF document! The document's header reveals it is using the following file format specification: %PDF-1.5.
PDFiD information
This PDF document contains 1 object stream. A stream object is just a sequence of bytes and very often is only used to store images and page descriptions, however, since it is not limited in length many attackers use these artifacts in conjunction with filters to obfuscate other objects.
This PDF document has 1 page, please note that most malicious PDFs have only one page.
This PDF document has 18 object start declarations and 18 object end declarations.
This PDF document has 5 stream object start declarations and 5 stream object end declarations.
This PDF document has a cross reference table (xref).
This PDF document has a pointer to the cross reference table (startxref).
This PDF document has a trailer dictionary containing entries allowing the cross reference table, and thus the file objects, to be read.
ExifTool file metadata
MIMEType
application/pdf

ModifyDate
2015:03:05 17:03:02+02:00

Producer
Microsoft Word 2013

Language
en-ZA

Creator
Microsoft Word 2013

FileType
PDF

Author
Idealpc

Linearized
No

FileTypeExtension
pdf

PageCount
1

PDFVersion
1.5

CreateDate
2015:03:05 17:03:02+02:00

TaggedPDF
Yes

File identification
MD5 0323382619193827959ee85631f6043d
SHA1 f64e86177b5b5f8db8a78c346e2a165423b4a427
SHA256 bc415d1f0c8d8af1b02008f03788de7e073650893eec01296c537346b42f7244
ssdeep
1536:s3Orf9OoEPqFlpcTVrGxokqE/3wrqx8TnWOgQSawAgl4a+E7zQGBEkc4ryH:serf9nEUpOJGmTE/BaLJ4qE7EGbmH

File size 94.4 KB ( 96697 bytes )
File type PDF
Magic literal
PDF document, version 1.5

TrID Adobe Portable Document Format (100.0%)
Tags
pdf

VirusTotal metadata
First submission 2015-03-05 17:02:38 UTC ( 2 years, 2 months ago )
Last submission 2016-10-03 13:19:21 UTC ( 7 months, 3 weeks ago )
File names bc415d1f0c8d8af1b02008f03788de7e073650893eec01296c537346b42f7244.doc
bc415d1f0c8d8af1b02008f03788de7e073650893eec01296c537346b42f7244.bin
0323382619193827959ee85631f6043d.PDF
bc415d1f0c8d8af1b02008f03788de7e073650893eec01296c537346b42f7244.pdf
2015-03-05Label.pdf
ExifTool file metadata
MIMEType
application/pdf

ModifyDate
2015:03:05 17:03:02+02:00

Producer
Microsoft Word 2013

Language
en-ZA

Creator
Microsoft Word 2013

FileType
PDF

Author
Idealpc

Linearized
No

FileTypeExtension
pdf

PageCount
1

PDFVersion
1.5

CreateDate
2015:03:05 17:03:02+02:00

TaggedPDF
Yes

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!