Malicious PDF — malware analysis report

Static analysis result for SHA-256 612e284bb0e02761…

MALICIOUS

PDF

16.8 KB Created: 2019-04-30 04:06:16 +01:00 Authoring application: mPDF 5.7
MD5: e64cab9ef626644f08459478482fbd2f SHA-1: 3827dabb4c0dafe713e57e8239b0a160d373c921 SHA-256: 612e284bb0e02761aaf926a13ce6e35d859c4b8fbc33eaeddab4badee40e4d1f
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic, which is indicative of a link farm or SEO spamming technique. While the URLs themselves are marked as benign, the sheer volume and the nature of the heuristic suggest a malicious intent to direct users to potentially harmful or deceptive content. The ML_NYX_PDF_MALICIOUS heuristic further supports the malicious classification.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9925

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/6090092096095/The-Metamorphosis-In-the-Penal-Colony-and-Other-Stories-The-Great-Short-Works-of-Franz-Kafka-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/7093092091093097/The-Metamorphosis-by-Franz-Kafka-Annotated-and-Translated-Edition-Die-Verwandlung-Franz-Kafka-Collection-Book-1-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/1090095094098095091/Metamorphosis-The-original-story-by-Franz-Kafka-as-well-as-important-analysis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/5096091098096094/Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/9090095091094095/The-Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/5094099099094099/The-Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/8090090096091091/Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/1093099091099097/The-Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/8093099097093092/Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/6093096095091091/The-Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/6099093096096097/The-eNotated-Metamorphosis-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/5099092095097091/The-Metamorphosis-Special-Edition-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/7097096096090092/The-Metamorphosis-The-Bestselling-Science-Fiction-Novel-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/7091093091097090/The-Metamorphosis-Free-Audiobook-A-to-Z-Classics-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/5099090093093099/Kafka-s-Selected-Stories-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/6092092097092090/The-Castle-The-Definitive-Edition-by-Franz-Kafka-with-an-Homage-by-Thomas-Mann-Second-Printing-1974-published-by-Schocken-Books-N-Y-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/4097095098098091/The-Diaries-of-Franz-Kafka-1910-1913-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/4097095099098097/The-Diaries-of-Franz-Kafka-1914-1923-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/1098094090099098/Selected-Short-Stories-by-Franz-Kafka.pdf
    • http://loaminoo.linkpc.net/5099090093094095/The-Penal-Colony-and-Other-Stories-by-Franz-Kafka.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.