Malicious PDF — malware analysis report

Static analysis result for SHA-256 6d243e5e870bf45c…

MALICIOUS

PDF

13.3 KB Created: 2019-05-01 17:06:51 +01:00 Authoring application: mPDF 5.7
MD5: 5369a56fb43391b43adf56c79844968a SHA-1: 005bddedac7d4bd4fb7c06f2f2736ea40fa25e4c SHA-256: 6d243e5e870bf45c6f2178440cac3cab8cc371c48f287b31904fe1b6cb38d755
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF contains a large number of embedded URLs pointing to external PDF files, as indicated by the PDF_SEO_LINK_FARM heuristic. While the URLs themselves are currently flagged as benign, the sheer volume and structure suggest a malicious intent, possibly for SEO manipulation or to distribute further malicious content. The ML_NYX_PDF_MALICIOUS heuristic also strongly indicates maliciousness.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9006

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/9096092090097099/Twisted-Tales-for-Twisted-Minds-by-Alisha-Adkins.pdf
    • http://loaminoo.linkpc.net/8090093097095098/Diary-of-a-Minecraft-Zombie-Book-13-Friday-Night-Frights-by-Zack-Zombie.pdf
    • http://loaminoo.linkpc.net/9099094090091098/Enter-the-Zombie-Nathan-Abercrombie-Accidental-Zombie-5-by-David-Lubar.pdf
    • http://loaminoo.linkpc.net/2096095/A-Scare-of-a-Dare-Diary-of-a-Minecraft-Zombie-1-by-Zack-Zombie.pdf
    • http://loaminoo.linkpc.net/7098090096094096/Bullies-and-Buddies-Diary-of-a-Minecraft-Zombie-2-by-Zack-Zombie.pdf
    • http://loaminoo.linkpc.net/4094099090095095/Zombie-Country-Zombie-Apocalypse-2-by-Samantha-Hoffman.pdf
    • http://loaminoo.linkpc.net/6091099098095/Zombie-Novel-Writing-101-How-to-Write-a-Zombie-Novel-by-Steve-French.pdf
    • http://loaminoo.linkpc.net/1092096090095096/Zombie-Island-Zombie-Apocalypse-1-by-Samantha-Hoffman.pdf
    • http://loaminoo.linkpc.net/3096091090090095/I-Zombie-The-Collection-I-Zombie-1-3-by-Jack-Wallen.pdf
    • http://loaminoo.linkpc.net/1098091099097095/The-Zombie-She-Carried-Having-His-Zombie-1-by-Cate-Marsden.pdf
    • http://loaminoo.linkpc.net/2095097098090090/Trafalgar-by-Roy-A-Adkins.pdf
    • http://loaminoo.linkpc.net/3092093090094091/Mercy-F-uck-by-K-S-Adkins.pdf
    • http://loaminoo.linkpc.net/2094090096098094/Seth-by-Alisha-Basso.pdf
    • http://loaminoo.linkpc.net/4099097093092095/8-Mile-amp-Rion-by-K-S-Adkins.pdf
    • http://loaminoo.linkpc.net/1090095090093090/Prismland-by-Johan-Adkins.pdf
    • http://loaminoo.linkpc.net/4094099093094090/No-Mardi-Gras-for-the-Dead-by-D-J-Donaldson.pdf
    • http://loaminoo.linkpc.net/8093098095096093/Play-With-Me-Bedroom-Games-1-by-Alisha-Rai.pdf
    • http://loaminoo.linkpc.net/1091096098091096099/Das-Reich-der-Katzen-by-Alisha-Bionda.pdf
    • http://loaminoo.linkpc.net/1091095092097095090/The-Wooden-Nickel-by-Alisha-Paige.pdf
    • http://loaminoo.linkpc.net/9096092090098096/Out-With-Lanterns-by-Alisha-39-Priti-39-Kirpalani.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.