Malicious PDF — malware analysis report

Static analysis result for SHA-256 5209e96756347553…

MALICIOUS

PDF

13.2 KB Created: 2020-03-18 22:34:07 +00:00 Authoring application: mPDF 5.7
MD5: 461d7d846b6181b53be094b75baf4209 SHA-1: 4e54230629b253c7679068488e39c352895c15a9 SHA-256: 5209e96756347553acb2c0baa6d6c7e064678ae91e2dd2132c4db40aed72d28e
60 Risk Score

Malware Insights

MITRE ATT&CK
T1059.001 PowerShell

The PDF file contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic. These links point to various PDF files hosted on the domain lwoscmobook.myhome.cx. The embedded URLs suggest a tactic to distribute content or potentially lead users to malicious sites. No scripts were extracted from this sample.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://lwoscmobook.myhome.cx/452495240524952435242/Falling-to-Pieces-Pieces-1-by-Jamie-Canosa.pdf
    • http://lwoscmobook.myhome.cx/552495245524752405244/Into-a-Million-Pieces-Pieces-Duology-1-by-Angela-V-Cook.pdf
    • http://lwoscmobook.myhome.cx/452435245524852485240/Falling-to-Pieces-by-Amber-Garza.pdf
    • http://lwoscmobook.myhome.cx/452435241524252465246/Falling-Bits-and-Pieces-1-by-Shirley-Miranda.pdf
    • http://lwoscmobook.myhome.cx/452445249524952455244/Pieces-of-Us-Pieces-2-by-Pamela-Ann.pdf
    • http://lwoscmobook.myhome.cx/152465249524752445246/Pieces-of-Lies-Pieces-of-Lies-1-by-Angela-Richardson.pdf
    • http://lwoscmobook.myhome.cx/45244524952425240/Broken-Pieces-Broken-Pieces-1-by-Riley-Hart.pdf
    • http://lwoscmobook.myhome.cx/1524052465249524452465247/Mollie-and-Other-War-Pieces-by-A-J-Liebling.pdf
    • http://lwoscmobook.myhome.cx/252465246524752475246/Pieces-of-You-and-Me-by-Erin-Fletcher.pdf
    • http://lwoscmobook.myhome.cx/452465241524752415243/Pieces-of-Georgia-by-Jen-Bryant.pdf
    • http://lwoscmobook.myhome.cx/552495245524752415240/Pieces-of-Summer-by-C-M-Owens.pdf
    • http://lwoscmobook.myhome.cx/55246524852475247/Pieces-of-Us-by-Margie-Gelbwasser.pdf
    • http://lwoscmobook.myhome.cx/152445246524052475243/All-These-Pieces-of-Me-The-Stables-1-by-C-E-Kilgore.pdf
    • http://lwoscmobook.myhome.cx/552495245524752405249/Pieces-of-You-by-Ella-Harper.pdf
    • http://lwoscmobook.myhome.cx/452455244524752465247/Pieces-of-Paper-by-Jeannie-Lin.pdf
    • http://lwoscmobook.myhome.cx/152495244524952475248/Pieces-of-Sky-by-Trinity-Doyle.pdf
    • http://lwoscmobook.myhome.cx/252415246524752465249/Missing-Pieces-by-Ivy-Smoak.pdf
    • http://lwoscmobook.myhome.cx/152425245524052455247/Pieces-by-Chris-Lynch.pdf
    • http://lwoscmobook.myhome.cx/552475245524552405247/Pieces-de-Clavecin-by-Dufour.pdf
    • http://lwoscmobook.myhome.cx/25248524952445248/Into-Pieces-Part-One-and-Two-by-A-K-Dawson.pdf
    • http://lwoscmobook.myhome.cx/552495245524752415240

Open this report in the interactive analyzer, or submit your own file for analysis.