× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: dbc0228a70c0eb148f5c6036bdb6cfb9332beaa6763a10fd18beb9d5b4ead6bb
File name: docudrive.pdf
Detection ratio: 2 / 60
Analysis date: 2019-04-15 12:44:12 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Microsoft Trojan:PDF/Sonbokli.A!cl 20190415
SentinelOne (Static ML) DFI - Malicious PDF 20190407
Acronis 20190415
Ad-Aware 20190415
AegisLab 20190415
AhnLab-V3 20190415
Alibaba 20190402
ALYac 20190415
Antiy-AVL 20190415
Arcabit 20190415
Avast 20190415
Avast-Mobile 20190415
AVG 20190415
Avira (no cloud) 20190415
Babable 20180918
Baidu 20190318
BitDefender 20190415
Bkav 20190412
CAT-QuickHeal 20190414
ClamAV 20190415
CMC 20190321
Comodo 20190415
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20190415
Cyren 20190415
DrWeb 20190415
eGambit 20190415
Emsisoft 20190415
Endgame 20190403
ESET-NOD32 20190415
F-Prot 20190415
F-Secure 20190415
FireEye 20190415
Fortinet 20190415
GData 20190415
Ikarus 20190415
Sophos ML 20190313
Jiangmin 20190415
K7AntiVirus 20190415
K7GW 20190415
Kaspersky 20190415
Kingsoft 20190415
Malwarebytes 20190415
MAX 20190415
McAfee 20190415
McAfee-GW-Edition 20190415
eScan 20190415
NANO-Antivirus 20190415
Palo Alto Networks (Known Signatures) 20190415
Panda 20190415
Qihoo-360 20190415
Rising 20190415
Sophos AV 20190415
SUPERAntiSpyware 20190410
Symantec 20190415
Symantec Mobile Insight 20190410
TACHYON 20190415
Tencent 20190415
TheHacker 20190411
TotalDefense 20190413
Trapmine 20190325
TrendMicro 20190415
TrendMicro-HouseCall 20190415
Trustlook 20190415
VBA32 20190415
ViRobot 20190415
Webroot 20190415
Yandex 20190412
Zillya 20190415
ZoneAlarm by Check Point 20190415
Zoner 20190414
The file being studied is a PDF document! The document's header reveals it is using the following file format specification: %PDF-1.7.
PDFiD information
This PDF document contains at least one embedded file. Embedded files can be used in conjunction with launch actions in order to run malicious executables in the machine viewing the PDF.
This PDF document contains 1 object stream. A stream object is just a sequence of bytes and very often is only used to store images and page descriptions, however, since it is not limited in length many attackers use these artifacts in conjunction with filters to obfuscate other objects.
This PDF document has 1 page, please note that most malicious PDFs have only one page.
This PDF document has 24 object start declarations and 24 object end declarations.
This PDF document has 7 stream object start declarations and 7 stream object end declarations.
This PDF document has a cross reference table (xref).
This PDF document has a pointer to the cross reference table (startxref).
This PDF document has a trailer dictionary containing entries allowing the cross reference table, and thus the file objects, to be read.
ExifTool file metadata
MIMEType
application/pdf

XMPToolkit
3.1-701

ModifyDate
2019:04:15 05:41:01-07:00

CreatorTool
Microsoft Word

Language
en-US

Creator
Microsoft Word

InstanceID
uuid:D2418240-8730-4AEE-92BB-E6D36A24FE75

FileType
PDF

PageCount
1

Linearized
No

FileTypeExtension
pdf

PDFVersion
1.7

CreateDate
2019:04:15 05:41:01-07:00

DocumentID
uuid:D2418240-8730-4AEE-92BB-E6D36A24FE75

TaggedPDF
Yes

File identification
MD5 a1ab4bcb8fd4da446a8ce72d76be1552
SHA1 c2a757d94023f2da4cfe9ac15c9049905539f20a
SHA256 dbc0228a70c0eb148f5c6036bdb6cfb9332beaa6763a10fd18beb9d5b4ead6bb
ssdeep
768:y4IGC8GncI0HpHcrMdZmhEQfqQ9uBezss6r2gxTQIP2TOB/f1t78koFXwkPwo2d4:XwI8+ZmL6M89/AOV1BHuAkwowifwM

File size 45.0 KB ( 46130 bytes )
File type PDF
Magic literal
PDF document, version 1.7

TrID Adobe Portable Document Format (100.0%)
Tags
pdf file-embedded

VirusTotal metadata
First submission 2019-04-15 12:44:12 UTC ( 1 month, 1 week ago )
Last submission 2019-04-15 12:44:12 UTC ( 1 month, 1 week ago )
File names docudrive.pdf
ExifTool file metadata
MIMEType
application/pdf

XMPToolkit
3.1-701

ModifyDate
2019:04:15 05:41:01-07:00

CreatorTool
Microsoft Word

Language
en-US

Creator
Microsoft Word

InstanceID
uuid:D2418240-8730-4AEE-92BB-E6D36A24FE75

FileType
PDF

PageCount
1

Linearized
No

FileTypeExtension
pdf

PDFVersion
1.7

CreateDate
2019:04:15 05:41:01-07:00

DocumentID
uuid:D2418240-8730-4AEE-92BB-E6D36A24FE75

TaggedPDF
Yes

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!