PDF malware analysis — malicious · 36f5b1eb8b4e2074

MALICIOUS

PDF

12.8 KB Created: 2019-04-28 08:54:11 +01:00 Authoring application: mPDF 5.7

MD5: 525fe6c891bc5bc75078b02c766b4358 SHA-1: c264662427e039a6ae42fb26861291bc823e1ba4 SHA-256: 36f5b1eb8b4e2074c9e9f979cf74bbfe523d852d2158eedb6242673da14ab0ee

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.001 PowerShell

The PDF document contains a large number of embedded links to external PDF files hosted on the domain 'loaminoo.linkpc.net'. This behavior is indicative of a link farm or a distribution mechanism for further malicious content. No scripts were extracted, and the document body primarily consists of these links, making it difficult to determine a more specific attack pattern or family. The primary IOCs are the numerous URLs pointing to the suspicious domain.

Heuristics 2

Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM

Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
Embedded URL info EMBEDDED_URL

One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
URL http://loaminoo.linkpc.net/5095092094092099/Nine-Minutes-Nine-Minutes-1-by-Beth-Flynn.pdf
- http://loaminoo.linkpc.net/1092095093/Out-of-Time-Nine-Minutes-2-by-Beth-Flynn.pdf
- http://loaminoo.linkpc.net/5097097096092097/30-Minutes-pour-perdre-du-poids-Comment-perdre-du-poids-en-30-minutes-by-Lynx.pdf
- http://loaminoo.linkpc.net/1090090090094097099/A-Few-Minutes-With-God-by-Arlena-D-Lee.pdf
- http://loaminoo.linkpc.net/1095093093/Two-Minutes-Seven-6-by-Dannika-Dark.pdf
- http://loaminoo.linkpc.net/2098099092092095/Five-Minutes-More-by-Darlene-Ryan.pdf
- http://loaminoo.linkpc.net/1093090095096093/Two-Minutes-Seven-6-by-Dannika-Dark.pdf
- http://loaminoo.linkpc.net/7093097093097/The-Seven-Minutes-by-Irving-Wallace.pdf
- http://loaminoo.linkpc.net/2093093099095/The-Minutes-by-Tracy-Letts.pdf
- http://loaminoo.linkpc.net/4099092091091/Three-Minutes-More-by-Edward-R-O-39-Dell.pdf
- http://loaminoo.linkpc.net/1097096097093099/Nineteen-Minutes-by-Jodi-Picoult.pdf
- http://loaminoo.linkpc.net/5092096095095099/Machiavelli-in-90-Minutes-by-Paul-Strathern.pdf
- http://loaminoo.linkpc.net/1096099093098097/23-Minutes-by-Vivian-Vande-Velde.pdf
- http://loaminoo.linkpc.net/7091093097091098/Nineteen-Minutes-by-Jodi-Picoult.pdf
- http://loaminoo.linkpc.net/3090092092092098/Three-Minutes-to-Midnight-by-William-L-Hahn.pdf
- http://loaminoo.linkpc.net/4097095097091098/Five-Minutes-Longer-Enhanced-1-by-Victoria-Sue.pdf
- http://loaminoo.linkpc.net/5096098098097096/Marx-in-90-Minutes-by-Paul-Strathern.pdf
- http://loaminoo.linkpc.net/4090092092090099/You-Are-Here-Around-the-World-in-92-Minutes-by-Chris-Hadfield.pdf
- http://loaminoo.linkpc.net/7094090098094091/Aristotle-in-90-Minutes-by-Paul-Strathern.pdf
- http://loaminoo.linkpc.net/5098097094096098/Plato-in-90-Minutes-by-Paul-Strathern.pdf
- http://loaminoo.linkpc.net/3090092092092098/Three-Minutes-t

Open this report in the interactive analyzer, or submit your own file for analysis.