Malicious PDF — malware analysis report

Static analysis result for SHA-256 2de5a8752ca13d6e…

MALICIOUS

PDF

16.8 KB Created: 2019-05-01 17:10:13 +01:00 Authoring application: mPDF 5.7 First seen: 2021-04-01
MD5: 6b4b90a64f4232abc88393370350ca43 SHA-1: fefb043ac433d676adfbd13f98f47bc2d66cb4ac SHA-256: 2de5a8752ca13d6e3eb21f645912864396ef680011a7a352e671b088327f9910
92 Risk Score

Machine Learning

  • Nyx PDF Classifier malicious score 0.9925

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/4090093098094/Slam-by-Nick-Hornby.pdf In PDF document text
    • http://loaminoo.linkpc.net/2097093092094099/How-To-Be-Good-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/1091096095094092099/How-to-be-Good-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/4091093091091092/Not-A-Star-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/2096096090098097/How-to-Be-Good-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/7091096097094093/Everyone-s-Reading-Bastard-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/7090099094095/High-Fidelity-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/4096098094090096/Fever-Pitch-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/3092094095096/High-Fidelity-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/8091099094094096/Alta-fidelidade-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/3091094090096093/Not-a-Star-and-Otherwise-Pandemonium-Stories-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/3092095096096099/Not-a-Star-and-Otherwise-Pandemonium-Stories-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/1091090099096090093/Weniger-reden-und-fter-mal-in-die-Badewanne---Mein-Leben-als-Leser-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/2097091094099099/Books-Movies-Rhythm-Blues-Twenty-Years-of-Writing-About-Film-Music-and-Books-by-Nick-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/1096091090099093/Kyle-s-New-Stepbrother-II-Long-Hot-Summer-Nick-and-Kyle-Book-2-by-Brad-Vance.pdfIn PDF document text
    • http://loaminoo.linkpc.net/1091096099098092097/Oxford-Advanced-Learner-s-Dictionary-by-A-S-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/7095097091094099/Toronto-and-the-Maple-Leafs-A-City-and-Its-Team-by-Lance-Hornby.pdfIn PDF document text
    • http://loaminoo.linkpc.net/2098095094096099/The-Secret-Life-of-the-Love-Song-and-The-Flesh-Made-Word-Two-Lectures-by-Nick-Cave-by-Nick-Cave.pdfIn PDF document text
    • http://loaminoo.linkpc.net/9097094098093096/Nick-and-Tesla-s-Special-Effects-Spectacular-A-Mystery-with-Animatronics-Alien-Makeup-Camera-Gear-and-Other-Movie-Magic-You-Can-Make-Yourself-Nick-and-Tesla-5-by-Bob-Pflugfelder.pdfIn PDF document text
    • http://loaminoo.linkpc.net/5099096095092/A-Long-Long-Time-Ago-and-Essentially-True-by-Brigid-Pasulka.pdfIn PDF document text