Malicious PDF — malware analysis report

Static analysis result for SHA-256 6b4732bca5f94ca5…

MALICIOUS

PDF

20.2 KB Created: 2019-05-02 01:38:59 +01:00 Authoring application: mPDF 5.7
MD5: 768c4c612515b8fcd21f5e84290027c9 SHA-1: a83d07b896826e9bcf1c92931a0f8bf394d436c4 SHA-256: 6b4732bca5f94ca5f60b5a1ca22cea2b43a5b18ddccafab518d0a4d581131a37
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF contains a large number of embedded URLs, forming a link farm that directs users to external PDF documents. This behavior is indicative of a SEO poisoning or spam campaign, aiming to drive traffic to potentially malicious or unwanted content. The ML classifier also flagged this PDF as malicious.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9942

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/8094090097091099/Chloe-s-Vegan-Italian-Kitchen-150-Pizzas-Pastas-Pestos-Risottos-amp-Lots-of-Creamy-Italian-Classics-by-Chloe-Coscarelli.pdf
    • http://loaminoo.linkpc.net/8095097099092095/Gennaro-s-Italian-Family-Favourites-Authentic-recipes-from-an-Italian-kitchen-by-Gennaro-Contaldo.pdf
    • http://loaminoo.linkpc.net/3098096093092096/Learn-Italian-the-Fast-and-Fun-Way-With-Italian-English-English-Italian-Paperback-Dict-by-Marcel-Danesi.pdf
    • http://loaminoo.linkpc.net/3090098099092096/The-Italian-Diet-Over-100-Healthy-Italian-Recipes-to-Help-You-Lose-Weight-and-Love-Food-by-Gino-D-39-Acampo.pdf
    • http://loaminoo.linkpc.net/5094097090090/Segreto-Italiano-Secret-Italian-Recipes-amp-Favorite-Dishes-Italian-Cookbook-by-Daniel-Bellino-Zwicke.pdf
    • http://loaminoo.linkpc.net/7094095094090097/Zoe-and-Chloe-Out-to-Lunch-Zoe-amp-Chloe-2-by-Sue-Limb.pdf
    • http://loaminoo.linkpc.net/6091090095090090/Leaving-the-Pack-Chloe-Monette-by-Chloe-Monette.pdf
    • http://loaminoo.linkpc.net/8094098096098092/Samba-Sensation-Chloe-Melody-by-Chloe-Melody.pdf
    • http://loaminoo.linkpc.net/3090097098092095/Lidia-s-Italian-American-Kitchen-by-Lidia-Matticchio-Bastianich.pdf
    • http://loaminoo.linkpc.net/6095090098095092/Marcella-s-Italian-Kitchen-by-Marcella-Hazan.pdf
    • http://loaminoo.linkpc.net/1092097094093094/Flirting-in-Italian-Flirting-in-Italian-1-by-Lauren-Henderson.pdf
    • http://loaminoo.linkpc.net/6092099096096091/Sleepwalking-Into-a-New-World-The-Emergence-of-Italian-City-Communes-in-the-Twelfth-Century-The-Emergence-of-Italian-City-Communes-in-the-Twelfth-Century-by-Chris-Wickham.pdf
    • http://loaminoo.linkpc.net/2097092099095094/Lie-to-Me-Redemption-1-by-Chloe-Cox.pdf
    • http://loaminoo.linkpc.net/2098098095090099/Hank-amp-Chloe-by-Jo-Ann-Mapson.pdf
    • http://loaminoo.linkpc.net/3096097097092099/Three-to-Tango-by-Chloe-Cole.pdf
    • http://loaminoo.linkpc.net/7095090095091095/Chloe-by-Freya-North.pdf
    • http://loaminoo.linkpc.net/6097090092090/Daphnis-and-Chloe-by-Longus.pdf
    • http://loaminoo.linkpc.net/7095090096096097/Falling-for-Chloe-by-David-Stearman.pdf
    • http://loaminoo.linkpc.net/2091095099092097/Chloe-Doe-by-Suzanne-Marie-Phillips.pdf
    • http://loaminoo.linkpc.net/1090093099090093098/Always-Carter-Kids-1-5-by-Chloe-Walsh.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.