Malicious PDF — malware analysis report

Static analysis result for SHA-256 8c2d108c062a9d9f…

MALICIOUS

PDF

13.5 KB Created: 2019-05-01 17:07:03 +01:00 Authoring application: mPDF 5.7
MD5: c5afe555f512be2e5f6eb059fa09b908 SHA-1: e6e63038c1ce33755b1f3e4a17fa83c55da5c04b SHA-256: 8c2d108c062a9d9fd230d511606c39db0b16a298d1f6c1c68964a9d2c61441e9
72 Risk Score

Malware Insights

MITRE ATT&CK
T1059.001 PowerShell T1566.002 Spearphishing Attachment

The PDF contains embedded URLs that point to external resources, likely for downloading further malicious content. The ML classifier strongly indicates maliciousness, and the presence of a launch action further supports this. The document body, though heavily obfuscated, contains multiple URLs that are likely part of a lure to trick users into downloading malicious PDFs.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9760

Heuristics 3

  • Launch action high PDF_LAUNCH
    PDF contains a /Launch action with an unresolved or extension-less target — treat as potentially dangerous
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://kiteeearpdf.myhome.cx/2f219f217f218f218f219/Anointed-by-Charity-B-.pdf
    • http://kiteeearpdf.myhome.cx/1f214f215f213f214f216/Charity-Rising-Charity-2-by-DeAnna-Kinney.pdf
    • http://kiteeearpdf.myhome.cx/1f213f210f212f212f213/Launch-Rise-of-the-Anointed-1-by-Jason-C-Joyner.pdf
    • http://kiteeearpdf.myhome.cx/3f219f219f214f211f213/Jimmy-Swaggart-The-Anointed-Cherub-That-Covereth-by-Patricia-Ann-Sunday.pdf
    • http://kiteeearpdf.myhome.cx/9f212f218f212f215f213/The-Secret-Journals-of-Adolf-Hitler-Volume-1-The-Anointed-by-A-G-Mogan.pdf
    • http://kiteeearpdf.myhome.cx/2f212f213f214f211/Anointed-to-Sing-the-Gospel-The-Levitical-Legacy-of-Thomas-A-Dorsey-by-Kathryn-B-Kemp.pdf
    • http://kiteeearpdf.myhome.cx/4f218f213f217f213f211/The-Son-in-Law-by-Charity-Norman.pdf
    • http://kiteeearpdf.myhome.cx/1f212f211f213f211f210/The-Spectator-by-Charity-Stuart.pdf
    • http://kiteeearpdf.myhome.cx/3f214f210f218f212f217/See-You-In-September-by-Charity-Norman.pdf
    • http://kiteeearpdf.myhome.cx/5f213f215f212f212f218/Charity-by-Paulette-Callen.pdf
    • http://kiteeearpdf.myhome.cx/4f211f218f212f217f216/A-Secure-Heart-by-Charity-Parkerson.pdf
    • http://kiteeearpdf.myhome.cx/4f215f217f218f214f211/Inoperative-Cyborg-1-by-Charity-Parkerson.pdf
    • http://kiteeearpdf.myhome.cx/6f214f219f211f215f216/Finding-Charity-by-Jody-Pardo.pdf
    • http://kiteeearpdf.myhome.cx/1f211f213f217f212f219f219/Defend-Hard-Hit-8-by-Charity-Parkerson.pdf
    • http://kiteeearpdf.myhome.cx/6f214f219f211f214f218/Heart2Heart-A-Charity-Anthology-by-May-Archer.pdf
    • http://kiteeearpdf.myhome.cx/8f214f216f212f219/A-Chance-for-Charity-The-Immortal-Ones-1-by-S-L-Baum.pdf
    • http://kiteeearpdf.myhome.cx/3f218f211f211f214f212/Hunger-Hellish-5-by-Charity-Parkerson.pdf
    • http://kiteeearpdf.myhome.cx/4f211f214f215f217f216/Unequaled-No-Rival-3-by-Charity-Parkerson.pdf
    • http://kiteeearpdf.myhome.cx/4f216f217f214f212f213/An-Act-of-Charity-The-Paradox-Series-1-by-Wordstrings.pdf
    • http://kiteeearpdf.myhome.cx/3f218f216f212f215f219/Hubris-The-Charity-Deacon-Investigations-1-by-P-A-Wilson.pdf
    • http://kiteeearpdf.myhome.cx/5f213f215f212f21

Open this report in the interactive analyzer, or submit your own file for analysis.