beaker logo [document malware analysis]

QuickSand Document Analysis | PDF Analysis | Cryptam Document Analysis

PDF Examiner Malware Analysis Suite

Automate malware PDF analysis and step through the objects of a malicious PDF. Support for basic PDF Javascript de-obfuscation, encrypted PDFs (RSA, AESV2, Revision 5 AESV3). Dissect PDF streams to discover new and known exploits. Detect variants of CVE-2007-5659, CVE-2009-3953, CVE-2009-3959, CVE-2009-0927, CVE-2008-2992, CVE-2009-4324, CVE-2009-1493, CVE-2010-0188, CVE-2010-1297, CVE-2010-2883, CVE-2010-3654, CVE-2010-4091, CVE-2011-0609, CVE-2011-0611, CVE-2011-2462, CVE-2011-4369, CVE-2012-0754, CVE-2013-0641, and CVE-2013-2729 etc. Run your own internal web-based PDF Examiner system internally as part of our enterprise site license - enable your malware analysts to collaborate securely on your own private internal network. Add your own detection signatures or use our subscription update service to stay up to date with the latest threats.

New:The PDFExaminer is also now available as a PHP command line scanning tool to analyse and report on PDFs instantly to provide a malware rating for a single file or directory of files. Integrate the command line version in your email gateway or network security solution to detect new emerging threats that most commercial antivirus products have difficulty detecting.

PDFExaminer is also available as a private hosted instance fully maintained and supported by MalwareTracker on a reliable RAID 10 infrastructure.




Quickly identify known exploits and obfuscated JavaScript of new threats.

View and extract decoded objects for further analysis.

View known exploits, some JavaScript obfuscation can be automatically unpacked.

Please contact us for more information.