Malicious PDF — malware analysis report

Static analysis result for SHA-256 31d933a1621476aa…

MALICIOUS

PDF

43.3 KB Created: 2019-03-17 12:33:37 +03:00 Authoring application: Acrobat PDFMaker 8.1 for Word (via Acrobat Distiller 8.1.0 (Windows)) First seen: 2019-04-17
MD5: 84b9d84d1346dc523714cf131680e1e6 SHA-1: 3b6f30e78bbf7a660341c504074668d75023f12f SHA-256: 31d933a1621476aa4cc8b0f02d46b38b9290ebe4505f8dd420b9ff47733da9d0
92 Risk Score

Machine Learning

  • Nyx PDF Classifier malicious score 0.9016

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://www.gorillawalker.com/the-forever-engine.pdf In PDF document text
    • http://www.gorillawalker.com/introduction-to-parallel-computing-2nd-edition.pdfIn PDF document text
    • http://www.gorillawalker.com/the-practitioner-s-guide-to-child-art-therapy-fostering-creativity.pdfIn PDF document text
    • http://www.gorillawalker.com/fire-fear-the-inside-story-of-mike-tyson.pdfIn PDF document text
    • http://www.gorillawalker.com/sip-trunking.pdfIn PDF document text
    • http://www.gorillawalker.com/badass-in-my-bed-badass-3.pdfIn PDF document text
    • http://www.gorillawalker.com/magna-carta-uncovered.pdfIn PDF document text
    • http://www.gorillawalker.com/the-1956-hungarian-revolution-a-history-in-documents-national-security.pdfIn PDF document text
    • http://www.gorillawalker.com/pregnant-what-you-need-to-know-when-you-re-expecting.pdfIn PDF document text
    • http://www.gorillawalker.com/my-hands-came-away-red.pdfIn PDF document text
    • http://www.gorillawalker.com/trail-of-bones-dravenclaw-vol-4-kindle-edition.pdfIn PDF document text
    • http://www.gorillawalker.com/cartoons-from-the-new-yorker-2013-weekly-planner-calendar.pdfIn PDF document text
    • http://www.gorillawalker.com/frozen-fever-anna-s-birthday-surprise-disney-frozen-pictureback-r.pdfIn PDF document text
    • http://www.gorillawalker.com/man-on-the-ocean-a-book-about-boats-and-ships.pdfIn PDF document text
    • http://www.gorillawalker.com/puppy-love-flirt.pdfIn PDF document text
    • http://www.gorillawalker.com/a-hunted-man-the-men-of-halfway-house-volume-2.pdfIn PDF document text
    • http://www.gorillawalker.com/the-taming-of-democracy-assistance-why-democracy-promotion-does-not.pdfIn PDF document text
    • http://www.gorillawalker.com/diseases-of-the-liver-pancreas-and-ductless-glands.pdfIn PDF document text
    • http://www.gorillawalker.com/las-hadas-de-la-moda-7-lola-el-hada-de.pdfIn PDF document text
    • http://www.gorillawalker.com/mindfulness-in-action-making-friends-with-yourself-through-meditation-and.pdfIn PDF document text
    • http://www.gorillawalker.com/a-late-education-episodes-in-a-life.pdfIn PDF document text
    • http://www.gorillawalker.com/the-quotable-cat-a-collection-of-quotes-facts-and-lore.pdfIn PDF document text
    • http://www.gorillawalker.com/cape-town-in-the-twentieth-century-an-illustrated-social-history.pdfIn PDF document text
    • http://www.gorillawalker.com/the-other-black-bostonians-west-indians-in-boston-1900-1950.pdfIn PDF document text
    • http://www.gorillawalker.com/competentes-conscientes-compasivo-y-comprometidos-ebook-epub-educar-spanish-edition.pdfIn PDF document text
    • http://www.gorillawalker.com/society-for-industrial-archeology-1996-fall-tour-of-central-ohio.pdfIn PDF document text
    • http://www.gorillawalker.com/ordinary-mayhem-a-novel-of-horror.pdfIn PDF document text
    • http://www.gorillawalker.com/active-physics-home.pdfIn PDF document text
    • http://www.gorillawalker.com/cognitive-behavioural-treatment-of-sexual-offenders.pdfIn PDF document text
    • http://www.gorillawalker.com/some-angels-have-fur-for-the-love-of-pet-therapy.pdfIn PDF document text
    • http://www.gorillawalker.com/walker-s-carnivores-of-the-world.pdfIn PDF document text
    • http://www.gorillawalker.com/postmodern-fables.pdfIn PDF document text
    • http://www.gorillawalker.com/ha-ti-ou-renseignemens-authentiques-sur-l-abolition-de-l.pdfIn PDF document text
    • http://www.gorillawalker.com/manuale-del-perfetto-interista-italian-edition.pdfIn PDF document text
    • http://www.gorillawalker.com/contemporary-britain-contemporary-states-and-societies-series.pdfIn PDF document text
    • http://www.gorillawalker.com/by-madawi-al-rasheed-a-history-of-saudi-arabia-2nd.pdfIn PDF document text
    • http://www.gorillawalker.com/the-best-jazz-piano-solos-ever-80-classics-from-miles.pdfIn PDF document text
    • http://www.gorillawalker.com/romans-lectio-divina-for-youth-ancient-faith.pdfIn PDF document text
    • http://www.gorillawalker.com/black-and-honolulu-blue-in-the-trenches-of-the-nfl.pdfIn PDF document text
    • http://www.gorillawalker.com/mojave-desert-trails.pdfIn PDF document text
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
    • http://purl.org/dc/elements/1.1/In PDF document text
    • http://ns.adobe.com/xap/1.0/In PDF document text
    • http://ns.adobe.com/pdf/1.3/In PDF document text
    • http://ns.adobe.com/xap/1.0/mm/In PDF document text
    • http://www.aiim.org/pdfa/ns/extension/In PDF document text
    • http://www.aiim.org/pdfa/ns/schema#In PDF document text
    • http://www.aiim.org/pdfa/ns/property#In PDF document text
    • http://www.aiim.org/pdfa/ns/id/In PDF document text