Malicious PDF — malware analysis report

Static analysis result for SHA-256 4f43f5707aa14f95…

MALICIOUS

PDF

29.2 KB Created: 2019-05-07 07:48:55 +01:00 Authoring application: mPDF 5.7
MD5: 072390e70988478428b5dd54b4bc421b SHA-1: 62153a45bc20e3994c1a1a93c39b3ffe8e674a2a SHA-256: 4f43f5707aa14f95999e50972b46d3d221f4aabbc58a10fc6ca11c16dd169dd2
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment

The PDF file contains a large number of embedded URLs, identified by the PDF_SEO_LINK_FARM heuristic, which are presented in a way that suggests they are links to book downloads. While many of these specific URLs were flagged as benign, the sheer volume and the nature of the heuristic indicate a malicious intent to direct users to external resources. The ML_NYX_PDF_MALICIOUS classifier also strongly supports a malicious verdict. No scripts were extracted from this sample.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9892

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/7092090091096096/Overcoming-Paranoid-amp-Suspicious-Thoughts-A-Self-Help-Guide-Using-Cognitive-Behavioral-Techniques-by-Daniel-B-Freeman.pdf
    • http://loaminoo.linkpc.net/3098096095091092/Cognitive-Therapy-Techniques-First-Edition-A-Practitioner-s-Guide-by-Robert-L-Leahy.pdf
    • http://loaminoo.linkpc.net/2092099095090093/Cognitive-Behavioral-Therapy-by-Tao-Lin.pdf
    • http://loaminoo.linkpc.net/3098096093095093/Treating-Somatization-A-Cognitive-Behavioral-Approach-by-Robert-L-Woolfolk.pdf
    • http://loaminoo.linkpc.net/7092090090097092/Conspiracy-How-the-Paranoid-Style-Flourishes-and-Where-It-Comes-From-by-Daniel-Pipes.pdf
    • http://loaminoo.linkpc.net/1090099099094098093/The-New-Encyclopedia-of-Jewelry-Making-Techniques-A-Comprehensive-Visual-Guide-to-Traditional-and-Contemporary-Techniques-by-Jinks-McGrath.pdf
    • http://loaminoo.linkpc.net/3098096091098094/The-PTSD-Workbook-Simple-Effective-Techniques-for-Overcoming-Traumatic-Stress-Symptoms-by-Mary-Beth-Williams.pdf
    • http://loaminoo.linkpc.net/1091091095096095096/Child-Health-and-Behavioral-Medicine-A-Special-Issue-of-the-International-Journal-of-Behavioral-Medicine-by-Jan-Wallander.pdf
    • http://loaminoo.linkpc.net/6096096099097094/Quantitative-Value-A-Practitioner-s-Guide-to-Automating-Intelligent-Investment-and-Eliminating-Behavioral-Errors-by-Wesley-R-Gray.pdf
    • http://loaminoo.linkpc.net/7092090091090091/The-Paranoid-s-Pocket-Guide-Hundreds-of-Things-You-Never-Knew-You-Had-to-Worry-About-by-Cameron-Tuttle.pdf
    • http://loaminoo.linkpc.net/4092094099091090/Scaredies-Away-A-Kid-s-Guide-to-Overcoming-Worry-and-Anxiety-by-Stacy-Fiorile.pdf
    • http://loaminoo.linkpc.net/5094092091091/Time-to-Tell-Em-Off-A-Pocket-Guide-to-Overcoming-Peer-Ridicule-by-Deanna-Miller.pdf
    • http://loaminoo.linkpc.net/1090095093096096091/Overcoming-Depersonalization-Disorder-A-Mindfulness-and-Acceptance-Guide-to-Conquering-Feelings-of-Numbness-and-Unreality-by-Fugen-Neziroglu.pdf
    • http://loaminoo.linkpc.net/9095096097099096/A-Guide-to-Coin-Collecting-A-Guide-to-Buying-Selling-and-Finding-coins-online-by-Daniel-Rabinovici.pdf
    • http://loaminoo.linkpc.net/1091099092097096091/Menopause-and-the-Mind-The-Complete-Guide-to-Coping-with-the-Cognitive-Effects-of-Perimenopause-and-Menopause-Including-Memory-Loss-Foggy-Thinking-Verbal-Slips-by-Claire-L-Warga.pdf
    • http://loaminoo.linkpc.net/1090091096097096090/Insomnia-A-Self-Help-Guide-to-Overcoming-Insomnia-by-Maureen-Humphries.pdf
    • http://loaminoo.linkpc.net/3094091092094090/I-would-but-my-DAMN-MIND-won-t-let-me-A-Teen-s-Guide-to-Controlling-Their-Thoughts-and-Feelings-Words-of-Wisdom-for-Teens-2-by-Jacqui-Letran.pdf
    • http://loaminoo.linkpc.net/7096090090098099/Adolescents-on-the-Autism-Spectrum-A-Parent-s-Guide-to-the-Cognitive-Social-Physical-and-Transition-Needs-ofTeen-agers-with-Autism-Spectrum-Disorders-by-Chantal-Sicile-Kira.pdf
    • http://loaminoo.linkpc.net/1091095093092091095/Stenciling-Techniques-A-Complete-Guide-to-Traditional-and-Contemporary-Designs-for-the-Home-by-Jane-Gauss.pdf
    • http://loaminoo.linkpc.net/1091093090093090091/Complete-Krav-Maga-The-Ultimate-Guide-to-Over-250-Self-Defense-and-Combative-Techniques-by-Darren-Levine.pdf
    • http://loaminoo.linkpc.net/1090099099094098093/The-New-Encyclopedia-of-Jewelry-Making-Techniques-A-Comprehensive-Visual-Guide-to-Traditional-and

Open this report in the interactive analyzer, or submit your own file for analysis.