PDF static analysis report

Static analysis result for SHA-256 5de2b36154f6a8b5…

SUSPICIOUS

PDF

121.4 KB Created: 2022-07-05 01:51:49 +00:00 Authoring application: chrigra (via PDF Master 1.0.1) First seen: 2022-07-15
MD5: 45ab582b2ca141ad711a880782608f40 SHA-1: 6b4aa6ff64bdc0b5fddab5c9db4fa97943c3154c SHA-256: 5de2b36154f6a8b5288af011784a75d5ad5237509934c2af806f5a169cb1e88d
42 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious Link

The PDF document contains numerous links to websites advertising cracked software, including Adobe Photoshop. One heuristic specifically identified these as 'cracked_software_links'. The presence of a 'download button' heuristic further suggests a lure to encourage users to click these links. The primary IOCs are the URLs associated with these cracked software advertisements.

Machine Learning

  • Nyx PDF Classifier clean score 0.0123

Heuristics 4

  • PDF link farm advertises cracked/pirated software medium PDF_CRACKED_SOFTWARE_LURE
    PDF contains many clickable links whose targets use cracked-software, keygen, serial-key, or warez vocabulary. These are SEO-spam lure documents that rank for software-piracy searches and route users to fake 'crack' download pages distributing potentially-unwanted programs, adware, or droppers. The PDF itself carries no exploit — the risk is the linked destinations.
  • Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
    Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://esecuritys.com/pres.earbuds?ZG93bmxvYWR8YkoxTVhVMVpIeDhNVFkxTmprNE1UVXdOSHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA=befits&coalesce=/meals/UGhvdG9zaG9wIENDIDIwMTUUGh PDF link annotation
    • http://applebe.ru/2022/07/05/adobe-photoshop-2021-version-22-0-0-keygen-crack-serial-key-download/In PDF document text
    • https://fescosecurity.com/wp-content/uploads/2022/07/odylwebb.pdfIn PDF document text
    • http://marketsneakers.com/adobe-photoshop-cc-2014-2022-latest/In PDF document text
    • https://wellnessblockchainalliance.com/wp-content/uploads/2022/07/yudkar.pdfIn PDF document text
    • https://delicatica.ru/2022/07/05/photoshop-2021-version-22-0-1-crack-free-download/In PDF document text
    • https://ferramentariasc.com/2022/07/05/photoshop-2022-version-23-4-1-serial-key-for-windows/In PDF document text
    • https://elycash.com/upload/files/2022/07/sFWUi2OFt3pQcUfKjbsJ_05_e5384c95fa87886f9a458245720bc87b_file.pdfIn PDF document text
    • https://over-the-blues.com/advert/photoshop-2021-version-22-4-2-free-license-key-free-pc-windows-latest/In PDF document text
    • http://www.thepostermafia.com/?p=7079In PDF document text
    • https://accwgroup.com/adobe-photoshop-cc-2015-version-18-crack-torrent-activation-code-free/In PDF document text
    • https://countymonthly.com/advert/adobe-photoshop-2021-version-22-3-1-with-keygen-for-pc/In PDF document text
    • http://www.sparepartsdiesel.com/upload/files/2022/07/K3hDSGEg1ADURNjaZWio_05_e5384c95fa87886f9a458245720bc87b_file.pdfIn PDF document text
    • https://www.smc-sheeva-marketing-co-ltd.com/advert/photoshop-cc-2015-keygen-exe-free-download-pc-windows/In PDF document text
    • https://panjirakyat.net/photoshop-cc-2015-install-crack-free/In PDF document text
    • https://jordantractor.com/sites/default/files/webform/Adobe-Photoshop-2020.pdfIn PDF document text
    • https://theagriworld.com/wp-content/uploads/2022/07/Photoshop_2021_Version_2241.pdfIn PDF document text
    • https://authentic.com.mm/system/files/webform/opholi843.pdfIn PDF document text
    • https://www.nzangoartistresidency.com/adobe-photoshop-cc-2018-serial-number-and-product-key-crack-license-key-2022/In PDF document text
    • https://win-win-plan.com/wp-content/uploads/2022/07/Adobe_Photoshop_2022_Version_2301_Crack_Keygen___With_Key_Free_Download_2022_New.pdfIn PDF document text
    • http://dmmc-usa.com/?p=4582In PDF document text
    • http://insenergias.org/?p=25104In PDF document text
    • https://amandis.be/en/system/files/webform/Adobe-Photoshop-CC-2015-version-18.pdfIn PDF document text
    • https://www.lynnlevinephotography.com/adobe-photoshop-cs3-crack-patch-free-2022-new/In PDF document text
    • http://www.hva-concept.com/adobe-photoshop-2022-install-crack-pc-windows-latest/In PDF document text
    • https://voiccing.com/upload/files/2022/07/4MOnIwJ3SKOXZ1dbrwAc_05_1b6fc3e6a4103ef88a66e6195f20a443_file.pdfIn PDF document text
    • https://lacasaalta.com/634b4b353b5f0b78aa19a3b5701ca6d15c9532815f8ade4ae68c84f8e45bbeb7postname634b4b353b5f0b78aa19a3b5701ca6d15c9532815f8ade4ae68c84f8e45bbeb7/In PDF document text
    • https://wakelet.com/wake/ZeF9kRa__mQ5aftIh9tXzIn PDF document text
    • https://networny-social.s3.amazonaws.com/upload/files/2022/07/UvXujCidQiRHCDBBZJL1_05_e5384c95fa87886f9a458245720bc87b_file.pdfIn PDF document text
    • https://trello.com/c/ACaj3WWh/26-photoshop-cc-2019-version-20-for-pc-march-2022In PDF document text
    • https://mentorthis.s3.amazonaws.com/upload/files/2022/07/rP98nIKnuipFZa5P6hoT_05_e5384c95fa87886f9a458245720bc87b_file.pdfIn PDF document text
    • http://www.tcpdf.orgIn PDF document text
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
    • http://purl.org/dc/elements/1.1/In PDF document text
    • http://ns.adobe.com/xap/1.0/In PDF document text
    • http://ns.adobe.com/pdf/1.3/In PDF document text
    • http://ns.adobe.com/xap/1.0/mm/In PDF document text
    • http://www.aiim.org/pdfa/ns/extension/In PDF document text
    • http://www.aiim.org/pdfa/ns/schema#In PDF document text
    • http://www.aiim.org/pdfa/ns/property#In PDF document text
    • http://www.aiim.org/pdfa/ns/id/In PDF document text