Malicious PDF — malware analysis report

Static analysis result for SHA-256 44149b4a14569360…

MALICIOUS

PDF

12.8 KB Created: 2019-04-30 02:24:06 +01:00 Authoring application: mPDF 5.7
MD5: 6b222e08ddb9f2c765c3f176f79b3bcb SHA-1: 724f1a98e87021ee96a2d2f83c64cd21cbc8a0f1 SHA-256: 44149b4a145693601e68c453035d111e953183fd5b98081dd1c3ed7b57080c90
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1059.001 PowerShell

The PDF document contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic. While the URLs themselves are marked as benign, the sheer volume and structure suggest a malicious intent, possibly for SEO manipulation or to distribute further malware. No scripts were extracted from this sample, limiting the ability to determine a more specific attack pattern or family.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://xiixmcuin.linkpc.net/2202200204200201/Give-Me-Something-Give-Me-Something-1-by-Elizabeth-Lee.pdf
    • http://xiixmcuin.linkpc.net/4201205203206209/Give-in-to-the-Night-Angel-Interceptors-2-by-Elizabeth-Corva.pdf
    • http://xiixmcuin.linkpc.net/8208203205/Give-the-Dark-My-Love-Give-the-Dark-My-Love-1-by-Beth-Revis.pdf
    • http://xiixmcuin.linkpc.net/1208209206208/Give-It-To-Me-by-Ana-Castillo.pdf
    • http://xiixmcuin.linkpc.net/8205207208205207/Give-Me-Liberty-by-L-M-Elliott.pdf
    • http://xiixmcuin.linkpc.net/2202202205203203/In-Everything-Give-Thanks-by-Terry-Barnes.pdf
    • http://xiixmcuin.linkpc.net/1204204205203206/Taken-Give-amp-Take-1-by-Kelli-Maine.pdf
    • http://xiixmcuin.linkpc.net/2208204202205207/I-Give-To-You-by-Ebishi-Maki.pdf
    • http://xiixmcuin.linkpc.net/6203205205202/I-ll-Give-You-the-Sun-by-Jandy-Nelson.pdf
    • http://xiixmcuin.linkpc.net/3202202204202200/Taken-Give-amp-Take-1-by-Kelli-Maine.pdf
    • http://xiixmcuin.linkpc.net/2202202204201/I-Can-Only-Give-You-Everything-by-Bradford-Tatum.pdf
    • http://xiixmcuin.linkpc.net/3203207204203209/Give-Me-the-Child-by-Mel-McGrath.pdf
    • http://xiixmcuin.linkpc.net/3201205208208209/Give-me-your-heart-by-Lisa-Henry.pdf
    • http://xiixmcuin.linkpc.net/1200205206200206209/Give-to-the-Heart-Volume-6-by-Wann.pdf
    • http://xiixmcuin.linkpc.net/2204209208208208/The-Hate-U-Give-by-Angie-Thomas.pdf
    • http://xiixmcuin.linkpc.net/2207206206206207/I-ll-Give-You-Something-to-Cry-About-by-Jennifer-Finney-Boylan.pdf
    • http://xiixmcuin.linkpc.net/4203201209206206/Give-Me-Tonight-by-Lisa-Kleypas.pdf
    • http://xiixmcuin.linkpc.net/7200203205206201/A-Time-to-Give-by-Kathryn-Shay.pdf
    • http://xiixmcuin.linkpc.net/3208201208207202/Give-The-Dog-A-Bone-by-Allan-Ahlberg.pdf
    • http://xiixmcuin.linkpc.net/1200205206200206205/Give-to-the-Heart-Volume-3-by-Wann.pdf
    • http://xiixmcuin.linkpc.net/1200205206200206209/Giv

Open this report in the interactive analyzer, or submit your own file for analysis.