Malicious PDF — malware analysis report

Static analysis result for SHA-256 3138e2805b1f1a33…

MALICIOUS

PDF

18.2 KB Created: 2019-11-10 00:02:59 +00:00 Authoring application: mPDF 5.7
MD5: 7059ae2f1ff5659312ffe01aec13706e SHA-1: 9b35af8e771990fbfb9858ef49099024b67d8d3d SHA-256: 3138e2805b1f1a332c31d51fba8518378eaab99bde336bcdc883b65ec3a59a9f
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment

The PDF document contains a large number of embedded URLs, forming a link farm. The primary heuristic indicates this is a technique to manipulate search engine results or direct users to potentially malicious content. While the specific URLs extracted were labeled as benign, the sheer volume and structure suggest a malicious intent to drive traffic. No scripts were extracted from this sample.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://cefasfese.4pu.com/1730738730730735733/The-Dark-Room-by-Rachel-Seiffert-Lesson-Plans-by-BookRags.pdf
    • http://cefasfese.4pu.com/1730738730731732733/The-Dark-Room-by-Rachel-Seiffert-l-Summary-amp-Study-Guide-by-BookRags.pdf
    • http://cefasfese.4pu.com/1732733731731734/Walk-With-Me-Home-7-by-Cardeno-C-.pdf
    • http://cefasfese.4pu.com/5736737735734730/Mediumship-Exercises-Guided-Mediumship-Exercises-For-Use-At-Home-With-A-Friend-In-Home-Circles-Or-In-Spiritual-Awareness-Groups-Understanding-mediumship-Book-6-by-Medium-Rachel.pdf
    • http://cefasfese.4pu.com/3734730737736734/Fly-Away-Home-by-Rachel-Heffington.pdf
    • http://cefasfese.4pu.com/3735736731738738/Close-to-Home-by-Rachel-Spangler.pdf
    • http://cefasfese.4pu.com/3733735731739739/Home-A-Novel-Glenview-1-by-Rachel-Smith.pdf
    • http://cefasfese.4pu.com/8739735733739/The-Long-Way-Home-by-Rachel-Spangler.pdf
    • http://cefasfese.4pu.com/5730731739738737/Flying-Home-by-Rachel-Ann-Nunes.pdf
    • http://cefasfese.4pu.com/1734736739735730/The-Return-Home-by-Rachel-Trickett.pdf
    • http://cefasfese.4pu.com/1734735738737731/Healing-Finding-Home-1-by-Rachel-Caid.pdf
    • http://cefasfese.4pu.com/2733731735735735/Eyes-Open-Finding-Home-2-by-Rachel-Caid.pdf
    • http://cefasfese.4pu.com/4734733735737739/I-am-Home-portraits-of-immigrant-teenagers-by-Rachel-Neumann-and-Thi-Bui.pdf
    • http://cefasfese.4pu.com/5733734738732/The-Walk-of-the-Spirit---The-Walk-of-Power-The-Vital-Role-of-Praying-in-Tongues-by-Dave-Roberson.pdf
    • http://cefasfese.4pu.com/6734736738735733/Spirit-Walk-Star-Trek-Voyager-Spirit-Walk-1-by-Christie-Golden.pdf
    • http://cefasfese.4pu.com/1730738730732733738/The-Journey-of-a-Lion-in-the-Stars-by-Christopher-Seiffert.pdf
    • http://cefasfese.4pu.com/1730738730730735730/Fearless-Knitting-Workbook-by-Jennifer-E-Seiffert.pdf
    • http://cefasfese.4pu.com/1730738730730735739/Automotive-Safety-Handbook-by-Ulrich-Seiffert.pdf
    • http://cefasfese.4pu.com/1730738730731731735/Beauty-for-Mature-Women-by-Dorothy-Seiffert.pdf
    • http://cefasfese.4pu.com/1735739734737733/Leaving-Home-Going-Home-Returning-Home-A-Hebrew-American-s-Sojourn-in-the-Land-of-Israel-by-Jason-Alster.pdf
    • http://cefasfese.4pu.com/373373573

Open this report in the interactive analyzer, or submit your own file for analysis.