Pdf.Dropper.Agent-7206622-0 — PDF malware analysis

Static analysis result for SHA-256 37396e05518694d2…

MALICIOUS

PDF

32.5 KB Created: 2019-09-15 17:28:02 +03:00 Authoring application: - (via htmldoc 1.8.27 Copyright 1997-2006 Easy Software Products, All Rights Reserved.)
MD5: 3f37bf6ad29bb6bb01c35fdb1daceb71 SHA-1: c059ac9237536cbbd62b2b4b2fed8ffd39fb287c SHA-256: 37396e05518694d2a52e7acb5fbaa1095e8dc8d61b56471ab71fe6d16bc65e0f
62 Risk Score

Malware Insights

Pdf.Dropper.Agent-7206622-0 · confidence 95%

MITRE ATT&CK
T1204.002 Malicious Link

The ClamAV heuristic identified the file as Pdf.Dropper.Agent-7206622-0, indicating it functions as a dropper. The PDF contains an embedded external URI pointing to a PDF file on www.gorillawalker.com. This suggests the document's primary purpose is to redirect the user to a malicious URL, likely to initiate a download or further compromise.

Heuristics 3

  • ClamAV: Pdf.Dropper.Agent-7206622-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Dropper.Agent-7206622-0
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://www.gorillawalker.com/how-many-days-to-america-a-thanksgiving-story.pdf
    • http://www.gorillawalker.com/beautiful-blue-danube-sheet-music.pdf
    • http://www.gorillawalker.com/evagrius-ponticus-the-praktikos-chapters-on-prayer-cistercian-studies.pdf
    • http://www.gorillawalker.com/kinder-gardens-growing-inspiration-for-children.pdf
    • http://www.gorillawalker.com/antioxidants-against-cancer-ralph-moss-on-cancer.pdf
    • http://www.gorillawalker.com/exploring-physical-anthropology-a-lab-manual-workbook-2nd-edition-2nd.pdf
    • http://www.gorillawalker.com/wife-for-the-day-boy-wife-book-2-kindle-edition.pdf
    • http://www.gorillawalker.com/voices-together-duets-for-sanctuary-singers.pdf
    • http://www.gorillawalker.com/finite-element-analysis-theory-and-applications-with-ansys-2nd-edition.pdf
    • http://www.gorillawalker.com/carverguide-three-steps-to-fiduciary-responsibility-j-b-carver-board.pdf
    • http://www.gorillawalker.com/inheritance-and-family-life-in-colonial-new-york-city.pdf
    • http://www.gorillawalker.com/21-century-series-of-textbooks-finance-financial-vocational-education-sub.pdf
    • http://www.gorillawalker.com/flowers-of-heaven-1000-years-of-christian-verse.pdf
    • http://www.gorillawalker.com/on-being-a-missionary.pdf
    • http://www.gorillawalker.com/famous-women-of-the-reformed-church.pdf
    • http://www.gorillawalker.com/sensortechnik-handbuch-f-r-praxis-und-wissenschaft-vdi-buch-german.pdf
    • http://www.gorillawalker.com/monticello-in-measured-drawings-drawings-by-the-historic-american-buildings.pdf
    • http://www.gorillawalker.com/how-do-i-love-thee-sixty-poets-of-canada-and.pdf
    • http://www.gorillawalker.com/chosen-vessel-chosen-in-the-furnace-of-affliction.pdf
    • http://www.gorillawalker.com/a-feast-for-crows-a-song-of-ice-and-fire.pdf
    • http://www.gorillawalker.com/listen-to-the-echoes-the-ray-bradbury-interviews.pdf
    • http://www.gorillawalker.com/m-thode-de-ukul-l-livre-1-cd-inclus-hal.pdf
    • http://www.gorillawalker.com/dash-snow-i-love-you-stupid.pdf
    • http://www.gorillawalker.com/justifying-intellectual-property.pdf
    • http://www.gorillawalker.com/next-generation-wireless-lans-802-11n-and-802-11ac.pdf
    • http://www.gorillawalker.com/bernie-wrightson-s-frankenstein.pdf
    • http://www.gorillawalker.com/secrets-sex-and-spectacle-the-rules-of-scandal-in-japan.pdf
    • http://www.gorillawalker.com/by-that-patchwork-place-award-winning-quilts-2015-calendar-featuring.pdf
    • http://www.gorillawalker.com/platos-principales-main-dishes-spanish-language-edition-coleccion-williams-sonoma.pdf
    • http://www.gorillawalker.com/stories-of-identity-religion-migration-and-belonging-in-a-changing.pdf
    • http://www.gorillawalker.com/triple-dog-dare-triple-trouble-4-siren-publishing-menage-everlasting.pdf
    • http://www.gorillawalker.com/language-literacy-and-technology.pdf
    • http://www.gorillawalker.com/the-marvellous-country-or-three-years-in-arizona-and-new.pdf
    • http://www.gorillawalker.com/fabulous-montreal.pdf
    • http://www.gorillawalker.com/i-can-t-stay-long.pdf
    • http://www.gorillawalker.com/navigating-social-ecological-systems-building-resilience-for-complexity-and-change.pdf
    • http://www.gorillawalker.com/mastering-the-art-of-french-cooking-journal.pdf
    • http://www.gorillawalker.com/imagining-the-new-britain.pdf
    • http://www.gorillawalker.com/submarines-transportation-applewood-books.pdf
    • http://www.gorillawalker.com/todos-somos-culpables-entrevistas-con-escritores-policiacos-mexicanos-cultura-contemporanea.pdf
    • http://www.gorillawalker.com/inheritance-and-f
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#
    • http://purl.org/dc/elements/1.1/
    • http://ns.adobe.com/xap/1.0/
    • http://ns.adobe.com/pdf/1.3/
    • http://ns.adobe.com/xap/1.0/mm/
    • http://www.aiim.org/pdfa/ns/extension/
    • http://www.aiim.org/pdfa/ns/schema#
    • http://www.aiim.org/pdfa/ns/property#
    • http://www.aiim.org/pdfa/ns/id/

Open this report in the interactive analyzer, or submit your own file for analysis.