PPDF> object 35<< /Names [ n.1. [ 2 0 R /XYZ 0 841.889764 0 ] n.1. [ 2 0 R /XYZ 0 841.889764 0 ] n.1. [ 2 0 R /XYZ 18 817.889764 0 ] ] >>
I see this makes reference to object 2
PPDF> object 2 << /Parent 1 0 R /Contents 4 0 R /Resources 3 0 R /Group << /Type /Group /S /Transparency /CS /DeviceRGB /I true >> /MediaBox [ 0 0 595.275591 841.889764 ] /Type /Page >>
But the result of this object references practically all other objects, and I thought it might be the MediaBox object in position 0 but when I try to read it *** Error: Object not found!!
Non-malicious file but created with Cherry Tree
Result: `File: ScriptKiddie.pdf MD5: 87756174ee7fa2294ab2996db3042bc2 SHA1: 4d8fc7e2512518320b11a9086cb187ea11b49e49 SHA256: 61ed8b5800e2217f6a869a57181a8cc2adde3b517d69991203b1a1a6edb95c04 Size: 33636 bytes Version: 1.5 Binary: True Linearized: False Encrypted: False Updates: 0 Objects: 38 Streams: 10 URIs: 0 Comments: 0 Errors: 0
Version 0: Catalog: 38 Info: 37 Objects (38): [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38] Streams (10): [4, 12, 14, 16, 19, 21, 25, 27, 30, 32] Encoded (10): [4, 12, 14, 16, 19, 21, 25, 27, 30, 32] Decoding errors (10): [4, 12, 14, 16, 19, 21, 25, 27, 30, 32] Suspicious elements: /Names (2): [35, 38]`
In interacting mode
PPDF> object 35<< /Names [ n.1. [ 2 0 R /XYZ 0 841.889764 0 ] n.1. [ 2 0 R /XYZ 0 841.889764 0 ] n.1. [ 2 0 R /XYZ 18 817.889764 0 ] ] >>I see this makes reference to object 2PPDF> object 2<< /Parent 1 0 R /Contents 4 0 R /Resources 3 0 R /Group << /Type /Group /S /Transparency /CS /DeviceRGB /I true >> /MediaBox [ 0 0 595.275591 841.889764 ] /Type /Page >>But the result of this object references practically all other objects, and I thought it might be the MediaBox object in position 0 but when I try to read it*** Error: Object not found!!