Malicious PDF — malware analysis report

Static analysis result for SHA-256 4b0393b3fbf83a5f…

MALICIOUS

PDF

27.4 KB Created: 2019-05-04 02:11:21 +01:00 Authoring application: mPDF 5.7
MD5: a20ea26f4f1b6ca398d6f1f6521de28f SHA-1: 960955d450b2851a9e1ce5812454779a8bf939cb SHA-256: 4b0393b3fbf83a5f5b2fa7503b49e6f24780cbe5ab51883875d5d247844c236a
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment

The PDF contains a large number of embedded URLs, identified by the PDF_SEO_LINK_FARM heuristic. While many of these URLs point to benign-looking book titles, the sheer volume and the nature of the heuristic suggest a malicious intent, possibly for SEO manipulation or to distribute further malware. The ML classifier also strongly indicated maliciousness. No scripts were extracted from this sample.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9918

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://unieoooq.linkpc.net/34e14e34e14e94e3/Kid-s-Story-Bundle-for-Halloween-Wacky-and-Funny-Stories-for-Kids-17-Different-Stories-Included-in-this-Bundle-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e14e04e4/Coming-of-Age-Short-Story-Bundle-16-Easy-to-Read-Stories-For-Kids-and-Preteens-14-Different-Stories-with-pictures-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e64e64e7/Story-Bundle-for-Kids-amp-Teens-Intriguing-Short-Stories-for-Youngsters-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e24e44e6/Creative-Children-Story-Bundle-15-Books-in-1-Magical-Bedtime-Stories-for-Kids-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e64e54e9/Hilarious-Quick-to-Read-Kid-s-Stories-19-Different-and-Funny-Short-Stories-Kids-Enjoy-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e54e64e0/Stories-to-Read-on-Thanksgiving-Short-Story-Collection-for-Kids-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e44e24e0/Fun-To-Read-Kids-Stories-7-15-All-Ages-Stories-in-1-Book-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e14e34e2/Short-Stories-for-Kids-16-Stories-with-Morals-For-Growing-Boys-and-Girls-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e64e34e8/Early-Reading-Challenge-2-15-Books-in-1-Bedtime-story-Adventure-Animal-stories-Teach-Values-Book-Funny-free-story-prime-Rhymes-Fantasy-Education-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e44e94e4/Stories-for-Early-Readers-Great-Collection-Including-17-Easy-to-Read-Stories-for-Kids-and-Teens-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e54e34e2/Early-Reading-Challenge-9-15-Books-in-1-Bedtime-story-Beginner-readers-Adventure-Animal-stories-Teach-Values-Book-Funny-free-story-prime-Rhymes-Fantasy-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e64e84e4/Stunning-Short-Stories-for-Kids-19-Intense-Short-Stories-Kids-Love-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e54e64e3/Stories-for-Early-Readers-16-Stories-with-Lessons-For-Growing-Kids-Childrens-Books-Collection-Series-Bedtime-Lovable-Animal-Characters-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e24e34e34e5/Kids-and-Teens-Story-Collection-5-HUGE-COLLECTION-OF-15-STORIES-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e44e64e6/Kids-and-Teens-Story-Collection-4-HUGE-COLLECTION-OF-15-STORIES-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e24e74e54e5/Easy-Reading-Kids-Can-Learn-With-13-Short-Stories-To-Build-Character-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/14e84e54e04e94e2/Children-s-book-Monkey-Brains--Kids-Hillarious-Action-amp-Adventure-book-Bedtime-stories-for-children-short-stories-for-kids-Childrens-books-stories-reader-Funny-Action-and-Adventure-story-by-Nelson-Boyce.pdf
    • http://unieoooq.linkpc.net/34e14e34e04e24e2/Childrens-Story-Collection-plus-many-more-fun-to-read-short-stories-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e24e34e94e2/Children-s-Short-Stories-plus-11-other-simple-stories-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e24e64e44e3/Learn-to-Love-Reading-Short-Stories-12-Intellegent-Stories-for-Learning-Boys-and-Girls-by-Betty-J-Byers.pdf
    • http://unieoooq.linkpc.net/34e14e34e24e44e6/Creative-Children-Story-Bundle-15-Books-in-1-Ma

Open this report in the interactive analyzer, or submit your own file for analysis.