Malicious PDF — malware analysis report

Static analysis result for SHA-256 6157bf46cf656667…

MALICIOUS

PDF

16.9 KB Created: 2019-05-01 18:51:39 +01:00 Authoring application: mPDF 5.7 First seen: 2021-04-01
MD5: eee0c75dde3a54e869e8d5fa376c7d2e SHA-1: 05164eda9462597a1a957e7a23390194dd2257e9 SHA-256: 6157bf46cf656667c94bd2e7386a5227df80badf7246d7c60ad5ea118e71d56b
92 Risk Score

Machine Learning

  • Nyx PDF Classifier malicious score 0.9787

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://cefasfese.4pu.com/4738734732731731/When-the-Moon-Is-Low-by-Nadia-Hashimi.pdf In PDF document text
    • http://cefasfese.4pu.com/1731733732737732732/WIndows-8-1-Learning-Windows-8-1-for-Tablets-amp-Touch-Screens-Covers-Windows-RT-amp-Windows-8-1-by-Andy-Williams.pdfIn PDF document text
    • http://cefasfese.4pu.com/1731733732737731738/Windows-8-1-Learn-Windows-8-1-in-Two-Hours-The-Smart-and-Efficient-Way-to-Learn-Windows-8-1-Windows-8-1-Windows-8-1-For-Beginners-by-Simon-Bedford.pdfIn PDF document text
    • http://cefasfese.4pu.com/1731733732736737733/Windows-8-1-Quick-and-Easy-Guide-To-Windows-8-1-The-Ultimate-Windows-8-1-Crash-Course-in-71-Pages-or-Less-by-Truman-Publishing.pdfIn PDF document text
    • http://cefasfese.4pu.com/3730730739731/A-House-Without-Windows-by-Stevie-Turner.pdfIn PDF document text
    • http://cefasfese.4pu.com/2734733736732739/The-House-Without-Windows-by-Barbara-Newhall-Follett.pdfIn PDF document text
    • http://cefasfese.4pu.com/4730738739731732/Destiny-Entwined-by-Nadia-Lee.pdfIn PDF document text
    • http://cefasfese.4pu.com/1730736739733734737/Lieblings-by-Nadia-Espley.pdfIn PDF document text
    • http://cefasfese.4pu.com/8739730739737/Looking-Through-Windows-by-Caren-J-Werlinger.pdfIn PDF document text
    • http://cefasfese.4pu.com/1731733732738733736/More-Windows-8-1-for-It-Men-by-Richard-Countess.pdfIn PDF document text
    • http://cefasfese.4pu.com/7734730734736737/Je-Te-Teste-Tu-Me-Testes-by-Nadia-Julien.pdfIn PDF document text
    • http://cefasfese.4pu.com/4738735732731731/A-Soldier-s-Pledge-by-Nadia-Nichols.pdfIn PDF document text
    • http://cefasfese.4pu.com/1731735739732733734/Nadia-s-Hope-by-Lisa-Buffaloe.pdfIn PDF document text
    • http://cefasfese.4pu.com/1739736737739735/Malaika-s-Costume-by-Nadia-L-Hohn.pdfIn PDF document text
    • http://cefasfese.4pu.com/9736734732733/Gates-of-Time-Windows-of-Opportunity-by-A-.pdfIn PDF document text
    • http://cefasfese.4pu.com/7731739733739730/Willmaker-5-0-Windows-by-Barbara-K-Repa.pdfIn PDF document text
    • http://cefasfese.4pu.com/6733737733732731/Chat-for-a-Date-by-Asma-Nadia.pdfIn PDF document text
    • http://cefasfese.4pu.com/8734731732738/Tweets-from-Tahrir-by-Nadia-Idle.pdfIn PDF document text
    • http://cefasfese.4pu.com/1731733732736732730/Windows-8-1-For-Dummies-by-Andy-Rathbone.pdfIn PDF document text
    • http://cefasfese.4pu.com/1731733732736738734/Fundamentals-of-Windows-8-1-by-Kevin-Wilson.pdfIn PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.