galvanist@josephcox are you hearing anything about malware embedded in the epstein file release? I had trouble reading one of the files and the strings / hexump results looked “off”. So I fetched it direct from DOJ again ( /epstein/files/DataSet%209/EFTA01220934.pdf ) and gave it to VT. There were some detections: https://www.virustotal.com/gui/file/0bec6e96db28d97a517a333aa1caed0b155e381cc6a4587e50842f41a584142a/detection
after more work I'm putting in the VT comments, it looks much less likely to be malware and more likely some kind of data carving / file creation issue.
using binwalk, I found data from dozens of files inside this PDF, but not properly encapsulated. most are incomplete.
the cuts happen at aligned offsets (multiples of common block sizes). maybe the file was created with a buggy pipeline? was it "undeleted?" maybe Jerry Lundegaard was responsible for producing the document?