Malicious PDF — malware analysis report

Static analysis result for SHA-256 8d75df072ca1bf25…

MALICIOUS

PDF

27.6 KB Created: 2019-05-02 06:09:08 +01:00 Authoring application: mPDF 5.7
MD5: cd147a912fcfadeb7a68629a3216c59a SHA-1: 0593b624056adf99bf699c5e9e94bd4fc987996a SHA-256: 8d75df072ca1bf256669415934d54596bbbd2fd9efca8ed63fe53042046efde6
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment T1059.001 PowerShell

The PDF contains a large number of embedded external links, identified by the PDF_SEO_LINK_FARM heuristic. While many of these links were classified as benign, the sheer volume and structure suggest a malicious intent, possibly for SEO poisoning or to distribute further malicious content. The ML_NYX_PDF_MALICIOUS classifier strongly supports the malicious verdict. No scripts were extracted, and the document body was unreadable.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9908

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/9098091098099095/Quarterly-Profits-vs-Long-Term-Strategy-Balancing-Short-Term-Profits-With-Strategic-Growth-by-Lanze-Thompson.pdf
    • http://loaminoo.linkpc.net/1099099097095/Staying-Power-Long-Term-Lesbian-Couples-by-Susan-E-Johnson.pdf
    • http://loaminoo.linkpc.net/5092090091090092/Governing-for-the-Long-Term-Democracy-and-the-Politics-of-Investment-by-Alan-M-Jacobs.pdf
    • http://loaminoo.linkpc.net/9095093093099093/Let-s-Go-Devotions-for-short-term-missions-partners-by-Melissa-Heiland.pdf
    • http://loaminoo.linkpc.net/6095096093097091/Investing-in-America-s-Infrastructure-Short-And-Long-Term-Strategies-Hearings-Before-the-Subcommittee-on-Economic-Development-of-the-Committee-on-Public-Works-and-Transportation-House-of-Representatives-One-Hundred-Third-Congress-First-Session-Janua-by-Public-Works-and-Transportation-Comm.pdf
    • http://loaminoo.linkpc.net/1098098094093/How-to-Be-Irresistible-to-the-Opposite-Sex-The-Art-of-Dating-Mating-Long-Term-Relating-by-Susan-Bradley.pdf
    • http://loaminoo.linkpc.net/4092099098097090/Old-Norse-Religion-in-Long-Term-Perspectives-Origins-Changes-and-Interactions-by-Anders-Andr-n.pdf
    • http://loaminoo.linkpc.net/4093097093095/When-Genius-Failed-The-Rise-and-Fall-of-Long-Term-Capital-Management-by-Roger-Lowenstein.pdf
    • http://loaminoo.linkpc.net/1091091098099093091/How-to-Invest-in-Condominiums-The-Low-Risk-Option-for-Long-Term-Cash-Flow-by-Andris-Virsnieks.pdf
    • http://loaminoo.linkpc.net/3094096093096099/Taking-Charge-How-to-Master-the-Eight-Most-Common-Fears-of-Long-term-Illness-by-Susan-K-Golant.pdf
    • http://loaminoo.linkpc.net/1091090095090095095/Short-Term-Couples-Therapy-The-Imago-Model-in-Action-by-Wade-Luquet.pdf
    • http://loaminoo.linkpc.net/4090097099094097/Make-Em-Laugh-Short-Term-Memories-of-Longtime-Friends-by-Debbie-Reynolds.pdf
    • http://loaminoo.linkpc.net/4094098099090090/The-Rising-Curve-Long-Term-Gains-In-IQ-and-Related-Measures-Apa-Science-Volumes-by-Ulric-Neisser.pdf
    • http://loaminoo.linkpc.net/5093097094099095/True-Secrets-of-Lesbian-Desire-Keeping-Sex-Alive-in-Long-Term-Relationships-by-Renate-Stendhal.pdf
    • http://loaminoo.linkpc.net/8096097099090096/Prepper-s-Dehydrator-Handbook-Long-term-Food-Storage-Techniques-for-Nutritious-Delicious-Lifesaving-Meals-by-Shelle-Wells.pdf
    • http://loaminoo.linkpc.net/7093096091098099/The-Disruptor-Airline-Cruising-to-Profits---Short-Story-Series-Who-is-the-future-whole-tailing-and-merchandising-airline-around-lifestyle-management-Some-Options-by-Ricardo-Vincent-Pilon.pdf
    • http://loaminoo.linkpc.net/9095095094096098/Building-Long-Term-Relationships-Stumbling-Blocks-or-Building-Blocks-by-MR-John-W-Loeff.pdf
    • http://loaminoo.linkpc.net/8090090096099095/How-to-Swing-Trade-Stocks-for-High-Profits-by-Joe-Monnaie.pdf
    • http://loaminoo.linkpc.net/1090091091094090099/When-to-Sell-Inside-Strategies-for-Stock-Market-Profits-by-Justin-Mamis.pdf
    • http://loaminoo.linkpc.net/7094092093094097/Beware-False-Profits-Ministry-is-Murder-Mystery-3-by-Emilie-Richards.pdf
    • http://loaminoo.linkpc.net/6095096093097091/Investing-i

Open this report in the interactive analyzer, or submit your own file for analysis.