Malicious PDF — malware analysis report

Static analysis result for SHA-256 67d924ffae60414d…

MALICIOUS

PDF

35.6 KB Created: 2019-05-06 16:42:12 +01:00 Authoring application: mPDF 5.7
MD5: a902ba1f81131e83eb3047db6640ad92 SHA-1: 592255ca2c049e4f94b5e2a6c2289fbd6a202dc7 SHA-256: 67d924ffae60414dbcd38475874ac22567c75676276f36918bfb9e4a89db8583
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF was flagged by an ML classifier and contains a significant number of embedded URLs, indicating a potential link farm or phishing attempt. The primary heuristic identified a mass external PDF link farm, with the first URL pointing to a potentially malicious domain. While no scripts were extracted, the structure and URL distribution suggest an attempt to lure users to external resources, likely for further exploitation.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9926

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://xiixmcuin.linkpc.net/9204205209203203/The-German-Protestant-Church-in-Colonial-Southern-Africa-The-Impact-of-Overseas-Work-from-the-Beginnings-Until-the-1920s-on-Behalf-of-the-Sponsors-and-the-Academic-Advisory-Council-of-the-Study-Process-on-the-Role-of-the-German-Protestant-Work-Oversea-by-Julia-Besten.pdf
    • http://xiixmcuin.linkpc.net/6208200201200204/Book-of-Martyrs-Or-a-History-of-the-Lives-Sufferings-and-Triumphant-Deaths-of-the-Primitive-and-Protestant-Martyrs-from-the-Introduction-of-Christianity-to-the-Latest-Periods-of-Pagan-Popish-Protestant-and-Infidel-Persecutions-by-John-Foxe.pdf
    • http://xiixmcuin.linkpc.net/3206208207201209/Way-What-Every-Protestant-Should-Know-about-the-Orthodox-Church-by-Clark-Carlton.pdf
    • http://xiixmcuin.linkpc.net/1201200201204206200/Progressive-German-Reader-I---First-Year-Containing-an-Introduction-to-the-German-Order-of-Words-with-Copious-Examples-Extracts-from-German-Authors-in-Prose-and-Poetry-Notes-and-Vocabularies-by-G-Eug-ne-Fasnacht.pdf
    • http://xiixmcuin.linkpc.net/1201205206209202205/1941-Ships-German-Submarine-U-571-German-Submarine-U-155-German-Submarine-U-459-German-Submarine-U-460-German-Submarine-U-505-by-Source-Wikipedia.pdf
    • http://xiixmcuin.linkpc.net/6204201209201200/When-Work-Doesn-t-Work-Anymore-Women-Work-and-Identity-by-Elizabeth-Perle-Mckenna.pdf
    • http://xiixmcuin.linkpc.net/1206208203203201/John-Stuart-and-the-Southern-Colonial-Frontier-A-Study-of-Indian-Relations-War-Trade-Land-Problems-in-the-Southern-Wilderness-1754-1775-by-John-Richard-Alden.pdf
    • http://xiixmcuin.linkpc.net/9204202202205206/Modern-Languages-Study-Guides-Der-Vorleser-Literature-Study-Guide-for-AS-A-level-German-by-Paul-Elliott.pdf
    • http://xiixmcuin.linkpc.net/1201202209206200208/Learn-German-in-a-Hurry-Grasp-the-Basics-of-German-Schnell-by-Edward-Swick.pdf
    • http://xiixmcuin.linkpc.net/1200205203202201209/Bilingual-Book-in-English-and-German-Chameleon---Cham-leon---Learn-German-Collection-by-LingoLibros.pdf
    • http://xiixmcuin.linkpc.net/8206202206209208/German-Children-s-Literature-Max-and-Moritz-the-Neverending-Story-Momo-German-Editions-of-the-Three-Investigators-Struwwelpeter-by-Source-Wikipedia.pdf
    • http://xiixmcuin.linkpc.net/1201208208202200202/The-20-best-German-Christmas-Cookies---Festive-Baking-Recipes-from-Germany-Pl-tzchen-and-other-German-Holiday-Treats-by-Liane-Guterhof.pdf
    • http://xiixmcuin.linkpc.net/7205200206201208/German-Atrocities-from-German-Evidence-by-Joseph-B-dier.pdf
    • http://xiixmcuin.linkpc.net/8208208203207201/English---German-Dictionary-W-rterbuch-Englisch---Deutsch-Over-25-000-Translations-Learn-How-to-Speak-German-Language-Tools-by-Klaus-R-diger.pdf
    • http://xiixmcuin.linkpc.net/6203200204201201/An-Hour-with-a-Sincere-Protestant-by-J-P-M-S-Schleuter.pdf
    • http://xiixmcuin.linkpc.net/6200207206201203/The-Siege-of-Missolonghi-a-Protestant-Poem-by-Britannicus.pdf
    • http://xiixmcuin.linkpc.net/4204201204204209/This-Is-Woman-s-Work-Calling-Forth-Your-Inner-Council-of-Wise-Brave-Crazy-Rebellious-Loving-Luminous-Selves-by-Dominique-Christina.pdf
    • http://xiixmcuin.linkpc.net/2200200201205204/The-Old-Christian-Right-The-Protestant-Far-Right-from-the-Great-Depression-to-the-Cold-War-by-Leo-P-Ribuffo.pdf
    • http://xiixmcuin.linkpc.net/6207209204206207/History-of-the-German-Settlements-and-of-the-Lutheran-Church-in-North-and-South-Carolina-by-Gotthardt-Bernheim.pdf
    • http://xiixmcuin.linkpc.net/7209205204203205/Gospel-According-to-the-Klan-The-Kkk-s-Appeal-to-Protestant-America-1915-1930-by-Kelly-J-Baker.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.