Malicious PDF — malware analysis report

Static analysis result for SHA-256 9d2c5b7f16ff1813…

MALICIOUS

PDF

13.7 KB Created: 2019-04-30 02:37:40 +01:00 Authoring application: mPDF 5.7
MD5: b17c9fadbb12286ba2c23b37e6be7c46 SHA-1: 022355a30be4ec4e22ba4242303b43892630a334 SHA-256: 9d2c5b7f16ff18132bd898fb51dfee87278c3e249e8fbb13ba02b64385a7ef95
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1059.001 PowerShell

The PDF file was flagged as malicious by an ML classifier and contains a large number of embedded links. The heuristic 'PDF_SEO_LINK_FARM' indicates that these links are likely part of a link farm, a common tactic for SEO manipulation or to distribute malicious content. While the URLs themselves are currently marked as benign, the sheer volume and the nature of the heuristic suggest a malicious intent behind the document's creation. No scripts were extracted from this sample.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9102

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/1a00a05a06a08/The-Unidentified-Redhead-Redhead-1-by-Alice-Clayton.pdf
    • http://muicuiu.dumb1.com/3a05a02a01a07a08/The-Unidentified-Redhead-Redhead-1-by-Alice-Clayton.pdf
    • http://muicuiu.dumb1.com/8a06a03a04a08a08/Redhead-by-Ian-Cook.pdf
    • http://muicuiu.dumb1.com/8a06a03a06a03a07/Redhead-by-Anonymous.pdf
    • http://muicuiu.dumb1.com/8a06a03a04a09a07/Wycliffe-and-the-Redhead-by-W-J-Burley.pdf
    • http://muicuiu.dumb1.com/9a07a02a06a01a05/Redhead-Whore-456-by-Eros.pdf
    • http://muicuiu.dumb1.com/2a08a08a03a05a00/Sensuous-Passions-by-A-Redhead.pdf
    • http://muicuiu.dumb1.com/9a07a02a06a00a04/Nude-Redhead-456-by-Eros.pdf
    • http://muicuiu.dumb1.com/8a06a03a04a09a03/The-Rancher-And-The-Redhead-by-Allison-Leigh.pdf
    • http://muicuiu.dumb1.com/8a06a03a06a07a09/Wreath-for-a-Redhead-by-Peter-Chambers.pdf
    • http://muicuiu.dumb1.com/8a06a03a06a06a05/Dead-Redhead-by-Tracey-Herd.pdf
    • http://muicuiu.dumb1.com/3a09a02a06a03a06/The-Ranger-and-the-Redhead-by-Lynna-Banning.pdf
    • http://muicuiu.dumb1.com/8a06a03a04a09a00/The-Wicked-Redhead-by-Beatriz-Williams.pdf
    • http://muicuiu.dumb1.com/9a07a02a07a02a09/Redhead-Slut-456-Uncensored-Pussies-by-Nuart.pdf
    • http://muicuiu.dumb1.com/8a06a03a05a03a01/The-Case-of-the-Restless-Redhead-by-Erle-Stanley-Gardner.pdf
    • http://muicuiu.dumb1.com/8a06a03a05a08a05/-Til-the-Fat-Redhead-Sleeps-A-Big-Apple-Story-by-Victoria-Wilson.pdf
    • http://muicuiu.dumb1.com/8a06a03a06a06a07/Poetry-and-Prose-from-My-Heart-by-Elizabeth-Redhead-Phillip.pdf
    • http://muicuiu.dumb1.com/3a06a02a06a08a08/Random-Ramblings-of-a-Raving-Redhead-Daily-Devotional-for-Women-by-Dana-Rongione.pdf
    • http://muicuiu.dumb1.com/2a05a01a07a01a07/The-Wicked-Redhead-and-the-Billionaire-Novelist-Billionaire-Novelist-3-by-Mimi-Strong.pdf
    • http://muicuiu.dumb1.com/1a02a00a03a09a04/Mai-Tai-d-Up-Cocktail-4-by-Alice-Clayton.pdf
    • http://muicuiu.dumb1.com/8a06a03a04a09a00/The-Wicked-Redhead-by-B

Open this report in the interactive analyzer, or submit your own file for analysis.