Malicious PDF — malware analysis report

Static analysis result for SHA-256 819ab129de80c71c…

MALICIOUS

PDF

14.0 KB Created: 2019-11-09 23:34:38 +00:00 Authoring application: mPDF 5.7
MD5: 5f9ef934213c12b270eeeeff3441e3f3 SHA-1: 36c8468cfc99c2219ff822a7b375ae630c10e511 SHA-256: 819ab129de80c71c8bc30d1b88fa606a766f0232055290c5a7e0681f51e13926
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

This PDF file contains a large number of embedded links to external PDF documents, hosted on a domain that appears to be part of a link farm. The ML classifier also flagged this file as malicious. The primary purpose appears to be directing users to potentially malicious or unwanted content through a deceptive link farm strategy.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9798

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://cefasfese.4pu.com/4733735736733734/Here-and-Then-Beyond-the-Threshold-2-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1730734738735735731/Together-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/2735735735737730/My-Outlaw-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1731735737732730734/Verlockung-pur-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1734733739738736/One-Last-Look-Look-trilogy-3-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1737736739731739/Pirates-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1736738734730733/The-McKettrick-Way-McKettricks-9-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1735733731733737/Garrett-McKettricks-12-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/3730733736736736/The-McKettrick-Way-McKettricks-9-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1735732738730737/Austin-McKettricks-13-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/3734734737739738/Big-Sky-River-Parable-Montana-3-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/3734732737738732/A-Lawman-s-Christmas-McKettricks-14-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/2730732735738730/Forever-and-the-Night-Vampire-1-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/2730732735738734/McKettrick-s-Choice-McKettricks-4-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/2738737735736736/Shotgun-Bride-McKettricks-2-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1732730734731/Deadly-Gamble-Mojo-1-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/3730733734739732/Shotgun-Bride-McKettricks-2-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1734733737736737/McKettrick-s-Heart-McKettricks-8-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/3734737736733736/Sierra-s-Homecoming-McKettricks-5-by-Linda-Lael-Miller.pdf
    • http://cefasfese.4pu.com/1732739736730/Emma-And-The-Outlaw-Orphan-Train-2-by-Linda-Lael-Miller.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.