Malicious PDF — malware analysis report

Static analysis result for SHA-256 711edc2618d2a472…

MALICIOUS

PDF

29.8 KB Created: 2019-04-30 08:37:46 +01:00 Authoring application: mPDF 5.7 First seen: 2021-06-04
MD5: 0132b2fc2ce27d96a0d388b61387a077 SHA-1: a203f4c5fd98816cb4246aeccd4ffd3a6c22ae29 SHA-256: 711edc2618d2a472c1f728f53fdaea24bf62edd57c80a4d9015fed0fd7b6f4a2
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF contains a large number of embedded external links, identified by the PDF_SEO_LINK_FARM heuristic. While many of these links resolve to benign book titles, the sheer volume and the nature of the URLs suggest a tactic to manipulate search engine results or to host potentially malicious content. The ML classifier also flagged the document as malicious with high confidence.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9689

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/5a00a05a08a01a03/Trespassing-on-Einstein-s-Lawn-A-Father-a-Daughter-the-Meaning-of-Nothing-and-the-Beginning-of-Everything-by-Amanda-Gefter.pdf In PDF document text
    • http://muicuiu.dumb1.com/8a04a05a07a06/The-Monk-and-the-Philosopher-A-Father-and-Son-Discuss-the-Meaning-of-Life-by-Jean-Fran-ois-Revel.pdfIn PDF document text
    • http://muicuiu.dumb1.com/4a06a08a05a04a07/The-Beginning-of-the-End-The-Hollows-Graphic-Novel-1-by-Amanda-Hocking.pdfIn PDF document text
    • http://muicuiu.dumb1.com/6a02a07a03a05a03/The-Bless-Me-Father-Series-Bless-Me-Father-A-Father-Before-Christmas-Father-in-a-Fix-Bless-Me-Again-Father-and-Father-Under-Fire-by-Neil-Boyd.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a07a05a06a00a01/Father-s-Arcane-Daughter-by-E-L-Konigsburg.pdfIn PDF document text
    • http://muicuiu.dumb1.com/3a04a07a02a02/First-They-Killed-My-Father-A-Daughter-of-Cambodia-Remembers-by-Loung-Ung.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a00a05a01a00a06/In-the-Days-of-Rain-A-Daughter-a-Father-a-Cult-by-Rebecca-Stott.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a00a00a01a02a03a06/An-Uncomplicated-Life-A-Father-s-Memoir-of-His-Exceptional-Daughter-by-Paul-Daugherty.pdfIn PDF document text
    • http://muicuiu.dumb1.com/9a05a01a09a02a07/Unspeakable-Father-Daughter-Incest-in-American-History-by-Lynn-Sacco.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a00a01a02a06a05a05/Father-Daughter-Mother-Son-Freeing-Ourselves-from-the-Complexes-That-Bind-Us-by-Verena-Kast.pdfIn PDF document text
    • http://muicuiu.dumb1.com/9a02a01a09a00a05/Albert-Einstein-Ueber-Den-Frieden-Weltordnung-Oder-Weltuntergang-Uebersetzungen-Der-Englischen-Und-Franzoesischen-Originale-Von-Will-Schaber-Deutsche-Originalausgabe-Von--Einstein-on-Peace--by-Otto-Nathan.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a09a05a03a09a08/Dear-Lilly-From-Father-to-Daughter-The-Truth-about-Life-Love-and-the-World-We-Live-in-by-Peter-Greyson.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a03a07a04a01a08/Daughter-of-Persia-A-Woman-s-Journey-from-Her-Father-s-Harem-Through-the-Islamic-Revolution-by-Sattareh-Farman-Farmaian.pdfIn PDF document text
    • http://muicuiu.dumb1.com/5a01a05a08a05/Daughter-of-Persia-A-Woman-s-Journey-From-Her-Father-s-Harem-Through-the-Islamic-Revolution-by-Sattareh-Farman-Farmaian.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a00a07a02a01a09a09/Trespassing-Across-America-One-Man-s-Epic-Never-Done-Before-and-Sort-of-Illegal-Hike-Across-the-Heartland-by-Ken-Ilgunas.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a00a09a03a07a05/The-Path-to-Meaning-How-to-Align-Yourself-with-the-Universe-Make-Use-of-its-Hidden-Laws-and-Fill-Your-Life-with-Meaning-by-Agnes-Bodi.pdfIn PDF document text
    • http://muicuiu.dumb1.com/5a08a07a01a00/Frank-Einstein-and-the-Antimatter-Motor-Frank-Einstein-1-by-Jon-Scieszka.pdfIn PDF document text
    • http://muicuiu.dumb1.com/9a07a02a06a03a09/Quine-s-Views-on-Meaning-and-Translation-as-Presented-in-His-Articles-Two-Dogmas-of-Empiricism-and-Translation-and-Meaning-by-Svenja-Christen.pdfIn PDF document text
    • http://muicuiu.dumb1.com/3a01a00a09a00a06/Vampire-X-The-Beginning-The-Beginning-by-Cyndi-Goodgame.pdfIn PDF document text
    • http://muicuiu.dumb1.com/1a01a02a03a08a04a02/God-of-My-Father-A-Son-s-Reflections-on-His-Father-s-Walk-of-Faith-by-Larry-Crabb.pdfIn PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.