Malicious PDF — malware analysis report

Static analysis result for SHA-256 4b1f47658e119514…

MALICIOUS

PDF

16.1 KB Created: 2019-05-02 00:51:56 +01:00 Authoring application: mPDF 5.7
MD5: 53a4560f84e4837ef76f6592233cea03 SHA-1: b94a41175eb2c2e51a11ff83b1405442f8e5bf61 SHA-256: 4b1f47658e11951416109b1aca16218c901eb9c5240a16688959b348d5809bfd
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment T1059.001 PowerShell

The PDF file contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic. While the URLs themselves are currently marked as benign, the sheer volume and structure suggest a malicious intent, possibly for SEO spam or to distribute further malware. No scripts were extracted from this sample, limiting the ability to determine a more specific attack pattern or family.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/3098093096090099/Starts-With-a-Kiss-Love-Rewritten-3-by-Jane-Lynne-Daniels.pdf
    • http://loaminoo.linkpc.net/4095091098093094/Careful-What-You-Kiss-For-by-Jane-Lynne-Daniels.pdf
    • http://loaminoo.linkpc.net/2090091096090098/With-this-Kiss-by-Victoria-Lynne.pdf
    • http://loaminoo.linkpc.net/3097090090092092/Angel-s-Kiss-by-Lynne-Stevie.pdf
    • http://loaminoo.linkpc.net/3093090094094098/Hershie-s-Kiss-Campus-Cravings-10-by-Carol-Lynne.pdf
    • http://loaminoo.linkpc.net/2090091097094093/To-Kiss-a-Spy-Kiss-2-by-Jane-Feather.pdf
    • http://loaminoo.linkpc.net/3095095099094091/Wrong-Beach-Island-Meg-Daniels-3-by-Jane-Kelly.pdf
    • http://loaminoo.linkpc.net/3098099094099098/Dearest-Friends-A-Jane-Austen-Inspired-Novel-by-Pamela-Lynne.pdf
    • http://loaminoo.linkpc.net/3095098093099091/The-L-Shaped-Room-Jane-Graham-1-by-Lynne-Reid-Banks.pdf
    • http://loaminoo.linkpc.net/2091090094091090/Us-and-Them-Love-Out-of-Lincoln-1-by-E-M-Daniels.pdf
    • http://loaminoo.linkpc.net/1098093099094094/Love-in-Paradise-by-Lara-Daniels.pdf
    • http://loaminoo.linkpc.net/8094092090097/Jemima-J-For-those-who-love-Faking-Friends-and-My-Sweet-Revenge-by-Jane-Fallon-by-Jane-Green.pdf
    • http://loaminoo.linkpc.net/4097090099095090/Passion-s-Kiss-Wellesley-Brothers-7-by-Jane-Kidder.pdf
    • http://loaminoo.linkpc.net/3092097096095094/How-To-Kill-Your-Boss---An-Erotic-Love-Story-by-Krissy-Daniels.pdf
    • http://loaminoo.linkpc.net/1096090098091095/Going-Against-Orders-Men-in-Love-5-by-Carol-Lynne.pdf
    • http://loaminoo.linkpc.net/4099096099096093/The-Translation-of-Love-by-Lynne-Kutsukake.pdf
    • http://loaminoo.linkpc.net/1092093095091096/Branded-by-Gold-Men-in-Love-1-by-Carol-Lynne.pdf
    • http://loaminoo.linkpc.net/2093090098097098/Recipe-for-Love-Cattle-Valley-15-by-Carol-Lynne.pdf
    • http://loaminoo.linkpc.net/2090093093093097/The-Frenchman-s-Love-Child-Brides-of-L-Amour-1-by-Lynne-Graham.pdf
    • http://loaminoo.linkpc.net/7092090096090/Must-Love-Hellhounds-Sookie-Stackhouse-9-2-Guild-Hunter-0-5-Kate-Daniels-3-5-The-Guardians-5-5-by-Charlaine-Harris.pdf
    • http://loaminoo.linkpc.net/

Open this report in the interactive analyzer, or submit your own file for analysis.