PDF static analysis report

Static analysis result for SHA-256 030f18f6409a7d23…

SUSPICIOUS

PDF

122.0 KB Created: 2022-07-05 03:00:27 +00:00 Authoring application: kanyum (via PDF Master 1.0.1) First seen: 2022-07-15
MD5: 6c3884fd0b04f0126a3d25ac759322a0 SHA-1: a1d7a6126bb62630c760c1201b8bb26f405663b0 SHA-256: 030f18f6409a7d238318048565323c2483d0d041fd6c8c6e10de19ee8ac07c50
34 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF document contains heuristics indicating it advertises cracked software, with multiple links pointing to such sites. One of the embedded URLs, http://emailgoal.com/spectator/..., is particularly suspicious and likely serves as a download or redirection point for malicious content. The document body is heavily obfuscated, preventing a clear understanding of its direct intent beyond the cracked software lure.

Machine Learning

  • Nyx PDF Classifier clean score 0.0077

Heuristics 3

  • PDF link farm advertises cracked/pirated software medium PDF_CRACKED_SOFTWARE_LURE
    PDF contains many clickable links whose targets use cracked-software, keygen, serial-key, or warez vocabulary. These are SEO-spam lure documents that rank for software-piracy searches and route users to fake 'crack' download pages distributing potentially-unwanted programs, adware, or droppers. The PDF itself carries no exploit — the risk is the linked destinations.
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://emailgoal.com/spectator/cystine.obstruction.ZG93bmxvYWR8NFlWTTNVMU1YeDhNVFkxTmprNE1UVXdOSHg4TWpVNE4zeDhLRTBwSUVobGNtOXJkU0JiUm1GemRDQkhSVTVk/UGhvdG9zaG9wIENDIDIwMTkgdmVyc2lvbiAyMAUGh/vajrasna/touched PDF link annotation
    • https://innovacioncosmetica.com/photoshop-2021-version-22-4-2-activation-download-mac-win/In PDF document text
    • http://fokusparlemen.id/?p=26381In PDF document text
    • http://texocommunications.com/photoshop-cc-2015-version-16-crack-serial-number-free-registration-code-free-for-windows-march-2022-2/In PDF document text
    • https://pouss-mooc.fr/2022/07/05/photoshop-cc-2015-version-16-with-license-key-activation-key-download/In PDF document text
    • https://logocraticacademy.org/photoshop-2021-version-22-5-1-full-license-for-windows/In PDF document text
    • https://2z31.com/adobe-photoshop-cc-2015-version-17-patch-full-version-pc-windows-latest/In PDF document text
    • https://natsegal.com/adobe-photoshop-cc-2019-hacked-download/In PDF document text
    • https://www.tamtam.boutique/wp-content/uploads/2022/07/Adobe_Photoshop_2022_version_23.pdfIn PDF document text
    • https://www.raven-guard.info/adobe-photoshop-cc-2019-version-20-keygen-generator-license-key-download-mac-win-final-2022/In PDF document text
    • https://changetemplates.com/cameras/photoshop-cc-2019-full-product-key-3264bit-latest/In PDF document text
    • https://www.smc-sheeva-marketing-co-ltd.com/advert/adobe-photoshop-2020-version-21-crack-exe-file-free-for-windows/In PDF document text
    • https://thaiherbbank.com/social/upload/files/2022/07/7P7IwFSL1RkOn7Gmm8QA_05_7e812fddc7301e0e3c3c397ff0b1762a_file.pdfIn PDF document text
    • https://immense-peak-05094.herokuapp.com/gallou.pdfIn PDF document text
    • https://www.greatescapesdirect.com/2022/07/photoshop-cc-2015-version-16-march-2022/In PDF document text
    • http://yogaapaia.it/archives/35587In PDF document text
    • https://quiet-plateau-09344.herokuapp.com/gabroa.pdfIn PDF document text
    • https://www.saltroomhimalaya.com/adobe-photoshop-2021-version-22-2-free-download-mac-win-2022/In PDF document text
    • https://gafatv.com/adobe-photoshop-2021-version-22-0-0-lifetime-activation-code-3264bit-2022/In PDF document text
    • https://www.8premier.com/photoshop-2022-version-23-2-keygen-generator-torrent-activation-code-download-pc-windows/In PDF document text
    • https://delicatica.ru/2022/07/05/photoshop-2021-version-22-4-jb-keygen-exe-torrent-for-windows/In PDF document text
    • https://juliepetit.com/adobe-photoshop-2021-version-22-1-0-crack-full-version-3264bit-latest/In PDF document text
    • https://sbrelo.com/upload/files/2022/07/hrNVhxppap1qmBLxpmtz_05_631e16f4b0808cb70a773128e690102d_file.pdfIn PDF document text
    • https://autocracymachinery.com/photoshop-cc-2015-version-18-universal-keygen/In PDF document text
    • http://lifes1.com/index.php/2022/07/05/adobe-photoshop-2022-version-23-1-keygenerator-with-registration-code-3264bit/In PDF document text
    • https://pathslesstravelled.com/adobe-photoshop-2021-keygen-only/In PDF document text
    • https://ziovedesebankconsm.wixsite.com/inleuhilmont/post/adobe-photoshop-express-crack-serial-number-free-x64In PDF document text
    • https://wakelet.com/wake/JxJNqfOtjgo1rQkRJ2pMSIn PDF document text
    • https://wakelet.com/wake/iZacEwGM8dP99_O_jRuQgIn PDF document text
    • https://wakelet.com/wake/pbdDJav8w8P1qZHe9YtVZIn PDF document text
    • http://ilc.csic.es/en/system/files/webform/photoshop-2022-version-2341.pdfIn PDF document text
    • http://www.tcpdf.orgIn PDF document text
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
    • http://purl.org/dc/elements/1.1/In PDF document text
    • http://ns.adobe.com/xap/1.0/In PDF document text
    • http://ns.adobe.com/pdf/1.3/In PDF document text
    • http://ns.adobe.com/xap/1.0/mm/In PDF document text
    • http://www.aiim.org/pdfa/ns/extension/In PDF document text
    • http://www.aiim.org/pdfa/ns/schema#In PDF document text
    • http://www.aiim.org/pdfa/ns/property#In PDF document text
    • http://www.aiim.org/pdfa/ns/id/In PDF document text