These forums are now Read Only. If you have an Acrobat question, ask questions and get help from one of our experts.

Identify malicious pdf file

crackhammer
Registered: Apr 29 2010
Posts: 12

Hello folks,

We use a lot of pdfs at our work (and face problems associated with it too :) After a recent goof up at Google China using a pdf document, I have become extra cautious and sometimes paranoid. I was just wondering if there is any measure available to check if the pdf that you are about to open contains any malicious stuff.

To give you an example, recently I received a pdf file from a colleague. It was sent to him by someone outside work. I opened this pdf file at home computer which has my banking signature etc. This pdf file was digitally signed. There was a tiny bookmark like thing on the first page. I clicked on that link out of curiosity and it flagged as "Signed by My name". Essentially, it picked up my digital signature for the bank. I freaked out and deleted the pdf right away. My investigation on this pdf led me to a dead end.

Hence, to conclude my question, I am looking for something like antivirus program that will scan pdfs for any malicious code embedded inside them. Does such thing exist? If yes, any recommendations?

Thanks in advance.

My Product Information:
Acrobat Pro 9.3.1, Windows
UVSAR
Expert
Registered: Oct 29 2008
Posts: 1357
The short answer is "yes and no". Antivirus programs will often detect malicious PDFs that use known exploits they can scan for, but won't protect against "feature" exploits that use perfectly valid methods, but in a way that can deceive the user. The latest patches of Adobe Acrobat and Adobe Reader try to help by locking down more of the security trust options, and popping up more messages if you try to do something anyway, but there's no equivalent to a "phishing detector" as you get with web browsers or email clients.