Malicious PDF — malware analysis report

Static analysis result for SHA-256 372a75ee11dd7ea6…

MALICIOUS

PDF

15.4 KB Created: 2019-05-04 14:24:07 +01:00 Authoring application: mPDF 5.7
MD5: 76ca63db075035b44ee777259183a83a SHA-1: 7deb7d2f16ca360a2bee67cb71c941a7659f61c1 SHA-256: 372a75ee11dd7ea6478cdd6d4ff100c4db56dfcf6b4a4c7bc70a573b8000ccaf
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment T1059.001 PowerShell

The PDF file contains a large number of embedded URLs pointing to external PDF documents hosted on the 'loaminoo.linkpc.net' domain. This is indicative of a link farm or SEO poisoning attack, designed to drive traffic to malicious or low-reputation sites. While the URLs themselves are marked as benign, the sheer volume and the nature of the hosting domain suggest a malicious intent to manipulate search engine results or distribute unwanted content. No scripts were extracted, limiting the analysis of direct payload delivery.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/2092095096096097/Heart-of-Glass-Cross-My-Heart-2-by-Sasha-Gould.pdf
    • http://loaminoo.linkpc.net/1092095091098093/Heart-of-Glass-Cross-My-Heart-2-by-Sasha-Gould.pdf
    • http://loaminoo.linkpc.net/1091092091090093/Cross-My-Heart-Cross-My-Heart-1-by-Sasha-Gould.pdf
    • http://loaminoo.linkpc.net/2090091094092096/The-Heart-of-the-Kingdom-by-Sasha-L-Miller.pdf
    • http://loaminoo.linkpc.net/2097099099095099/Heart-of-Darkness-How-I-Triumphed-Over-a-Childhood-of-Abuse-by-Lynette-Gould.pdf
    • http://loaminoo.linkpc.net/1091098096097096090/Cross-My-Heart-by-Ferne-McCann.pdf
    • http://loaminoo.linkpc.net/3094091099095096/Cross-Her-Heart-by-Sarah-Pinborough.pdf
    • http://loaminoo.linkpc.net/4097096097094098/Melt-My-Heart-by-Rachel-Cross.pdf
    • http://loaminoo.linkpc.net/5090093092097099/Heart-of-Glass-A-Second-Chances-Novella-by-L-J-Harris.pdf
    • http://loaminoo.linkpc.net/3094095093094091/Cowboy-Cross-My-Heart-by-Donna-Grant.pdf
    • http://loaminoo.linkpc.net/9090098096099092/Nightfall-Heart-of-the-Alpha-Book-1-by-Evelyn-Glass.pdf
    • http://loaminoo.linkpc.net/2096097093099094/Heart-of-Glass-Fostering-Love-3-by-Nicole-Jacquelyn.pdf
    • http://loaminoo.linkpc.net/2095099099094093/Cross-My-Heart-and-Hope-to-Spy-Gallagher-Girls-2-by-Ally-Carter.pdf
    • http://loaminoo.linkpc.net/4094091095096090/Cross-My-Heart-and-Hope-to-Spy-Gallagher-Girls-2-by-Ally-Carter.pdf
    • http://loaminoo.linkpc.net/7096092096094094/Dashi-And-Umami-The-Heart-Of-Japanese-Cuisine-by-Cross-Media.pdf
    • http://loaminoo.linkpc.net/3092098099097/Cross-My-Heart-and-Hope-to-Spy-Gallagher-Girls-2-by-Ally-Carter.pdf
    • http://loaminoo.linkpc.net/3095098090092090/My-Heart-Will-Cross-This-Ocean-My-Story-My-Son-Amadou-by-Kadiatou-Diallo.pdf
    • http://loaminoo.linkpc.net/7091097095091090/Heart-Chakra-Cleansing-A-Guide-to-Heart-Chakra-Meditation-and-Heart-Chakra-Healing-by-Priya-Chevallier.pdf
    • http://loaminoo.linkpc.net/1098099099095097/From-a-Heart-of-Stone-Journey-to-the-Heart-of-the-Holy-Spirit-by-Rachel-Godfrey.pdf
    • http://loaminoo.linkpc.net/3099091094090093/Zen-Words-for-the-Heart-Hakuin-s-Commentary-on-the-Heart-Sutra-by-Norman-Waddell.pdf
    • http://loaminoo.linkpc.net/4094091095096090/Cross-My

Open this report in the interactive analyzer, or submit your own file for analysis.