Malicious PDF — malware analysis report

Static analysis result for SHA-256 6ec9de283e3d6ae7…

MALICIOUS

PDF

32.0 KB Created: 2019-04-30 04:54:36 +01:00 Authoring application: mPDF 5.7 First seen: 2021-10-16
MD5: 10da271669b1d8189ce015fb69cfaed1 SHA-1: aaadaded43ca5cbfd27b479fa34d6f87b831f7b4 SHA-256: 6ec9de283e3d6ae7b28136706aacfb1836b27f7d2b6bd005abd9afc14dce9df0
100 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF contains a large number of embedded external links, identified by the PDF_SEO_LINK_FARM heuristic. The ML classifier also flagged this PDF as malicious. While the document body is heavily obfuscated, the presence of numerous links suggests a malicious intent to direct users to external resources, potentially for SEO poisoning or to host further malicious content.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9670

Heuristics 3

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
    Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/7a01a02a03a02a03/Powering-China-s-Development-The-Role-Of-Renewable-Energy-by-Eric-Martinot.pdf In PDF document text
    • http://muicuiu.dumb1.com/8a01a00a00a02a06/International-Congress-on-Renewable-Energy-2005-January-20-22-2005-Hotel-Le-Meridien-Pune-India-Ensuring-Energy-Security-and-Sustainable-Rural-Development--Globally-Conference-Proceeding-by-Solar-Energy-Society-of-India.pdfIn PDF document text
    • http://muicuiu.dumb1.com/7a07a03a04a03/Energy-in-Brazil-Towards-a-Renewable-Energy-Dominated-System-by-Antonio-Dias-Leite.pdfIn PDF document text
    • http://muicuiu.dumb1.com/6a02a05a04a05a09/Annual-Progress-Report-for-Hydrogen-Fuel-Cell-and-Infrastructure-Technologies-Program-FY-2002-by-Energy-Efficiency-and-Renewable-Energy-office-of-Hydrogen-Fuel-Cells-and-Infortune-Technologies-St.pdfIn PDF document text
    • http://muicuiu.dumb1.com/2a05a03a02a01a08/Nikola-Tesla-Renewable-Energy-Ahead-of-Its-Time-by-David-J-Kent.pdfIn PDF document text
    • http://muicuiu.dumb1.com/7a06a08a04a07a08/Harnessing-Renewable-Energy-in-Electric-Power-Systems-Theory-Practice-Policy-by-Boaz-Moselle.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a02a06a09a05a04/Energy-and-Environment-Technology-Proceedings-3v-International-Conference-on-Energy-and-Environment-Technology-2009-Guilin-Guangxi-China-by-Institute-of-Electrical-and-Electronics-Engineers.pdfIn PDF document text
    • http://muicuiu.dumb1.com/2a02a06a05a08a01/Self-Theories-Their-Role-in-Motivation-Personality-and-Development-by-Carol-S-Dweck.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a04a08a05a07a02/The-Role-Of-Zinin-And-Zelinsky-In-The-Development-Of-Organic-Chemistry-by-Julieann-Wiliams.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a05a08a04a09a02/Photovoltaics-Guidebook-for-Decision-Makers-Technological-Status-and-Potential-Role-in-Energy-Economy-by-Achim-Bubenzer.pdfIn PDF document text
    • http://muicuiu.dumb1.com/6a05a00a07a09a06/China-and-Africa-New-development-partnership-or-neo-colonialism-by-Frank-Edem-Kofigah.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a01a01a09a07a08/China-s-National-Minority-Education-Culture-Schooling-and-Development-by-Regie-Stites.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a00a07a06a06a00a05/Cooperative-and-Collective-in-China-s-Rural-Development-Between-State-and-Private-Interests-by-Eduard-B-Vermeer.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a09a06a08a02a04/Sinographies-Writing-China-by-Eric-Hayot.pdfIn PDF document text
    • http://muicuiu.dumb1.com/2a03a04a04a03a00/The-Proper-Role-and-Improper-Role-of-Government-by-Ezra-Taft-Benson.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a02a07a03a06a05/Your-High-Energy-Life-Banish-Energy-Sucking-Foods-and-Supercharge-Your-Days-by-Jadie-Aranda.pdfIn PDF document text
    • http://muicuiu.dumb1.com/7a07a08a09a00a05/The-All-Day-Energy-Diet-Double-Your-Energy-in-7-Days-by-Yuri-Elkaim.pdfIn PDF document text
    • http://muicuiu.dumb1.com/5a06a05a08a00a09/The-Church-and-Development-in-Africa-Aid-and-Development-from-the-Perspective-of-Catholic-Social-Ethics-by-Stan-Chu-Ilo.pdfIn PDF document text
    • http://muicuiu.dumb1.com/6a06a06a09a04a07/Continuing-the-Journey-Dominica-s-Development-Challenges-and-Responses-Going-Forward-Proceedings-of-the-Reuniuon-Development-Conference-by-Swinburne-Lestrade.pdfIn PDF document text
    • http://muicuiu.dumb1.com/7a01a02a03a01a08/John-Law-Le-magicien-de-la-dette-by-Bertrand-Martinot.pdfIn PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.