Malicious PDF — malware analysis report

Static analysis result for SHA-256 2545e23ed652d42a…

MALICIOUS

PDF

17.4 KB Created: 2020-03-18 22:28:32 +00:00 Authoring application: mPDF 5.7 First seen: 2020-12-25
MD5: 7e48f04a9c7336e60d87d7f8514624da SHA-1: e425975eecd46911738b27c9d0a5041195f71dce SHA-256: 2545e23ed652d42a648a3f21a71d96e30aa0788f26b2672342d20444d8b37521
92 Risk Score

Machine Learning

  • Nyx PDF Classifier malicious score 0.9788

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://lwoscmobook.myhome.cx/452475244524052485247/The-Hoard-by-Alan-Ryker.pdf In PDF document text
    • http://lwoscmobook.myhome.cx/352475248524752455245/Dream-of-the-Serpent-by-Alan-Ryker.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/252455241524352455248/Blood-Secrets-A-Forensic-Expert-Reveals-How-Blood-Spatter-Tells-the-Crime-Scene-s-Story-by-Rod-Englert.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/552405241524852455245/Blood-Pressure-by-Alan-Gibbons.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/25246524452405243/Night-Visions-In-the-Blood-by-Alan-Ryan.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/252435247524852405243/Alien-Hand-Syndrome-and-Other-Too-Weird-Not-To-Be-True-Stories-by-Alan-Bellows.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/352475244524452465247/True-Blood-Vol-1---Where-Were-You-by-Ann-Nocenti.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/352415245524152475248/True-Blood-Volume-4-Where-Were-You-by-Michael-McMillian.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/352415245524152465248/True-Blood-Volume-5-Shake-for-Me-by-Ann-Nocenti.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/1524052425240524352445241/D-d-for-alltid-True-blood-13-by-Charlaine-Harris.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/252495247524052455249/True-of-Blood-Witch-Fairy-1-by-Bonnie-Lamer.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/352475248524552435249/Redemption-True-Blood-Mate-4-by-Stormy-Glenn.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/1524052425240524352435249/D-dens-time-True-blood-11-by-Charlaine-Harris.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/95249524052465241/Blood-Done-Sign-My-Name-A-True-Story-by-Timothy-B-Tyson.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/252455247524152445247/Wolf-s-Bane-True-Blood-Mate-5-by-Stormy-Glenn.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/152455245524952405247/King-s-Blood-Four-Land-of-the-True-Game-1-by-Sheri-S-Tepper.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/352435247524452405241/Heart-Song-True-Blood-Mate-1-by-Stormy-Glenn.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/252435247524352485243/The-Blood-Of-Strangers-True-Stories-From-The-Emergency-Room-by-Frank-Huyler.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/952445248524552445241/Bound-By-Blood-The-True-Story-Of-The-Wollongong-Murders-by-John-Suter-Linton.pdfIn PDF document text
    • http://lwoscmobook.myhome.cx/152485242524952455245/True-Blood-The-Sookie-Stackhouse-Novels-10-Book-Boxset-by-Charlaine-Harris.pdfIn PDF document text