Malicious PDF — malware analysis report

Static analysis result for SHA-256 4129aa41a50b575e…

MALICIOUS

PDF

22.4 KB Created: 2019-05-07 03:48:10 +01:00 Authoring application: mPDF 5.7
MD5: 9ff36b8cc4ea1d7600b3c819487fddbc SHA-1: c4fa15f78d22cac3d2bd5f217e38e903cdf3d83e SHA-256: 4129aa41a50b575e2d17e4b6474da895252d8288a3dd0b8fb7afbd5d9e6657cb
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment T1059.001 PowerShell

The PDF contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic, which are likely intended to direct users to malicious websites. The ML_NYX_PDF_MALICIOUS heuristic also flagged this document with high confidence. While no scripts were extracted, the sheer volume of links suggests a traffic-driving or malware distribution campaign. The links themselves appear to be disguised as academic materials.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9925

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/1091091097098090098/Student-Solutions-Manual-Advanced-Engineering-Mathematics-Volume-2-by-Erwin-Kreyszig.pdf
    • http://loaminoo.linkpc.net/1091098091097098098/Advanced-Engineering-Mathematics-by-H-K-Dass.pdf
    • http://loaminoo.linkpc.net/8097092090097090/Student-Solutions-Guide-For-Discrete-Mathematics-And-Its-Applications-by-Kenneth-H-Rosen.pdf
    • http://loaminoo.linkpc.net/6097094095099097/Mathematics-of-Investment-amp-Credit-Solutions-Manual-by-Samuel-A-Broverman.pdf
    • http://loaminoo.linkpc.net/8092090091094091/Student-s-Solutions-Manual-for-Elementary-Statistics-by-Milton-F-Loyer.pdf
    • http://loaminoo.linkpc.net/8092090094097090/Essentials-of-Statistics-with-Student-s-Solutions-Manual-by-Mario-F-Triola.pdf
    • http://loaminoo.linkpc.net/8092090091093093/Student-s-Solutions-Manual-for-Elementary-Statistics-by-Milton-Loyer.pdf
    • http://loaminoo.linkpc.net/8096092092091090/Instructor-s-Manual-With-Solutions-For-Engineering-Materials-And-Their-Applications-by-Richard-A-Flinn.pdf
    • http://loaminoo.linkpc.net/9098091095093095/Student-Handbook-and-Solutions-Manual-for-Concepts-of-Genetics-by-William-S-Klug.pdf
    • http://loaminoo.linkpc.net/9092097091091095/Student-Solutions-Manual-for-Elementary-And-Intermediate-Algebra-by-Karen-Schwitters.pdf
    • http://loaminoo.linkpc.net/5099094098094090/Student-Solutions-Manual-to-Accompany-Concepts-of-Modern-Physics-by-Arthur-Beiser.pdf
    • http://loaminoo.linkpc.net/8093097092094095/Complex-Variables-and-Applications-Student-s-Solutions-Manual-by-James-Ward-Brown.pdf
    • http://loaminoo.linkpc.net/9093092097091095/Solutions-Manual-to-Accompany-Engineering-Thermodynamics-4th-edition-400-Selected-Problems-by-M-David-Burghardt.pdf
    • http://loaminoo.linkpc.net/8099090093091098/Student-Solutions-Manual-to-accompany-Chemistry-amp-Chemical-Reactivity-Third-Edition-by-Kotz-amp-Treichel.pdf
    • http://loaminoo.linkpc.net/8093097093096098/Calculus-Early-Transcendentals-Single-Variable--Student-Solutions-Manual-by-Howard-Anton.pdf
    • http://loaminoo.linkpc.net/1091098091099099096/Introduction-to-Engineering-Mathematics-Volume-I-by-H-K-Dass.pdf
    • http://loaminoo.linkpc.net/7090094094090095/Student-Solutions-Manual-for-Gallian-s-Contemporary-Abstract-Algebra-8th-by-Joseph-Gallian.pdf
    • http://loaminoo.linkpc.net/1090096094092099095/Mathematics-Problems-with-Separate-Progressive-Solutions-Hints-Algorithms-Proofs-Volume-1---Intermediate-and-College-Algebra-by-Catalin-Barboianu.pdf
    • http://loaminoo.linkpc.net/1091092096099095097/Advanced-Engineering-Materials-Selected-Papers-3v-Int-l-Conference-on-Manufacturing-Science-and-Engineering-2011-Guilin-China-by-Jianmin-Zeng.pdf
    • http://loaminoo.linkpc.net/1091092096099097090/New-and-Advanced-Materials-Selected-Papers-2v-International-Conference-on-Manufacturing-Science-and-Engineering-2011-Guilin-China-Advanced-Materials-Research-V-197-8-by-Huaiying-Zhou.pdf
    • http://loaminoo.linkpc.net/8096092092091090/Instructor-s-Manual-With-Solutions-For-Engineering-Materials-And-Their-Appl

Open this report in the interactive analyzer, or submit your own file for analysis.