Malicious PDF — malware analysis report

Static analysis result for SHA-256 8f095d23367a8b3b…

MALICIOUS

PDF

16.4 KB Created: 2019-04-30 02:57:13 +01:00 Authoring application: mPDF 5.7
MD5: c456fc6f901b70be302df2a92a5469f4 SHA-1: fdfabf6c23da53cbc3569893da7bb733bd91d694 SHA-256: 8f095d23367a8b3bad5837f93b6854fd99d1bdbd344d9c98096f02766cac7982
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious File

The PDF file contains a large number of embedded URLs, identified as a link farm. The ML classifier also flagged this PDF as malicious. The primary attack pattern appears to be SEO spam or a lure to a large number of external PDF files, likely to host malicious content or redirect users. No scripts were extracted from this sample.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9811

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/4a06a02a00a00a03/The-Symphony-of-Ages-Boxed-Set-I-Symphony-of-Ages-1-3-by-Elizabeth-Haydon.pdf
    • http://muicuiu.dumb1.com/2a08a00a06a06a02/The-Merchant-Emperor-Symphony-of-Ages-7-by-Elizabeth-Haydon.pdf
    • http://muicuiu.dumb1.com/3a05a09a03a00a02/The-Hollow-Queen-Symphony-of-Ages-8-by-Elizabeth-Haydon.pdf
    • http://muicuiu.dumb1.com/4a06a09a03a03/Prophecy-Child-of-Earth-Symphony-of-Ages-2-by-Elizabeth-Haydon.pdf
    • http://muicuiu.dumb1.com/2a03a02a03a01a04/Across-the-Ages-Across-the-Ages-1-by-RaShelle-Workman.pdf
    • http://muicuiu.dumb1.com/2a00a07a04a03a07/Dark-Ages-Setite-Dark-Ages-Clan-Novel-4-by-Kathleen-Ryan.pdf
    • http://muicuiu.dumb1.com/2a00a07a02a08a08/Dark-Ages-Malkavian-Dark-Ages-Clan-Novel-7-by-Ellen-P-Kiley.pdf
    • http://muicuiu.dumb1.com/2a01a08a09a08a08/Dark-Ages-Nosferatu-Dark-Ages-Clan-Novel-1-by-Gherbod-Fleming.pdf
    • http://muicuiu.dumb1.com/4a01a07a03a00a04/Tails-Are-Not-for-Pulling-Ages-0-3-by-Elizabeth-Verdick.pdf
    • http://muicuiu.dumb1.com/6a04a00a06a08a03/Peoples-of-the-Sea-A-Reconstruction-of-Ancient-History-A-Continuation-of-the-Ages-in-Chaos-Series-Ages-in-Chaos-series-2-by-Immanuel-Velikovsky.pdf
    • http://muicuiu.dumb1.com/2a03a02a04a01a00/The-Ages-of-Man-Medieval-Interpretations-of-the-Life-Cycle-by-Elizabeth-Sears.pdf
    • http://muicuiu.dumb1.com/3a01a08a06a04a08/Midnight-Symphony-by-A-L-Kessler.pdf
    • http://muicuiu.dumb1.com/1a00a00a04a00a03/Bittersweet-Symphony-by-Rebecca-McNutt.pdf
    • http://muicuiu.dumb1.com/7a02a00a03a05a02/Symphony-Espagnole-Op-21-by-Douard-Lalo.pdf
    • http://muicuiu.dumb1.com/1a08a01a08a07a00/The-Haunted-House-Symphony-by-Sue-Latham.pdf
    • http://muicuiu.dumb1.com/2a01a01a08a06a00/The-Symphony-of-Silence-by-Louis-H-Campbell.pdf
    • http://muicuiu.dumb1.com/2a00a06a04a08a07/A-Symphony-of-Cicadas-by-Crissi-Langwell.pdf
    • http://muicuiu.dumb1.com/7a02a03a00a01a06/Brahms-Symphony-No-1-by-David-Lee-Brodbeck.pdf
    • http://muicuiu.dumb1.com/1a00a03a03a00a07/Summer-Symphony-by-Brandon-Shire.pdf
    • http://muicuiu.dumb1.com/1a03a00a02a02a08/Bittersweet-Symphony-by-Rebecca-McNutt.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.