Malicious PDF — malware analysis report

Static analysis result for SHA-256 70062085da668659…

MALICIOUS

PDF

13.6 KB Created: 2020-03-18 22:40:15 +00:00 Authoring application: mPDF 5.7
MD5: a85d2ab55c3d28071fb518c57728cdf0 SHA-1: dd44e224aba2c7825866a76a1e56bb2cbdbe0aba SHA-256: 70062085da668659425f5ba3d61f3d70ac4895d197551920ca7bcc0971b85e9f
94 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

This PDF file was detected as malicious by ML classifiers and ClamAV. It contains numerous embedded URLs that mimic book titles, likely serving as a lure to trick users into downloading further malicious content. The primary attack pattern observed is the use of embedded URLs to facilitate the download of a secondary payload, consistent with a spearphishing attachment.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9102

Heuristics 3

  • ClamAV: Pdf.Malware.Agent-9988892-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Malware.Agent-9988892-0
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://ewasocmo.myhome.cx/3c31c34c31c36/Hunting-Shadows-Inspector-Ian-Rutledge-16-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c37c31c30c30/A-Test-of-Wills-Inspector-Ian-Rutledge-1-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/2c33c31c33c30c31/A-Matter-of-Justice-Inspector-Ian-Rutledge-11-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/3c37c31c32c37c39/A-Fearsome-Doubt-Inspector-Ian-Rutledge-6-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/2c37c30c39c34/Legacy-of-the-Dead-Inspector-Ian-Rutledge-4-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c35c32c36c39c35/Search-the-Dark-Inspector-Ian-Rutledge-3-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c35c38c30c31c31/Racing-the-Devil-Inspector-Ian-Rutledge-19-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c35c32c35c32c34/A-Long-Shadow-Inspector-Ian-Rutledge-8-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c35c32c37c31c38/Watchers-of-Time-Inspector-Ian-Rutledge-5-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c33c35c30c35c32/Wings-of-Fire-Inspector-Ian-Rutledge-2-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c34c39c38c35c33/A-False-Mirror-Inspector-Ian-Rutledge-9-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c30c32c36c39c38c33/Dunkle-Spuren-Ein-Inspektor-Rutledge-Roman-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/6c32c38c39c38c33/Book-of-Shadows-Volume-3-Hunting-by-Michael-Beaulieu.pdf
    • http://ewasocmo.myhome.cx/2c38c37c39c34c37/Nightmare-Inspector-Yumekui-Kenbun-Vol-4-Shadows-by-Shin-Mashiba.pdf
    • http://ewasocmo.myhome.cx/9c37c32c39c31c32/Stumme-Geister-Roman-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/3c31c34c31c35/An-Unwilling-Accomplice-Bess-Crawford-6-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c30c38c39c39c30c33/The-Girl-on-the-Beach-Bess-Crawford-1-1-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/1c35c38c30c30c30/An-Impartial-Witness-Bess-Crawford-2-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/3c32c32c30c33c39/A-Pattern-of-Lies-Bess-Crawford-7-by-Charles-Todd.pdf
    • http://ewasocmo.myhome.cx/3c37c30c37c30c30/A-Duty-To-The-Dead-Bess-Crawford-1-by-Charles-Todd.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.