Malicious PDF — malware analysis report

Static analysis result for SHA-256 a000bf2ce6c86588…

MALICIOUS

PDF

32.1 KB Created: 2019-04-30 04:02:47 +01:00 Authoring application: mPDF 5.7
MD5: 4bd112f65c25058b3b042b2b1fb09df3 SHA-1: dfdcd054acaf610125fd2aa1392f474b557bff6c SHA-256: a000bf2ce6c865880618b8b5ccf35bab28f44ea295350b03b88beb8d927cc080
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious Link

The PDF file contains a heuristic firing for a link farm, indicating it is designed to redirect users to numerous external resources. The embedded URLs, while individually marked as benign, collectively form a pattern of a link farm. The document body, though heavily obfuscated, contains these URLs, suggesting the primary purpose is to drive traffic to these external PDF files, likely as a form of SEO manipulation or to host malicious content indirectly.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://xiixmcuin.linkpc.net/4201205207208200/All-Deliberate-Speed-Reflections-on-the-First-Half-Century-of-Brown-v-Board-of-Education-by-Charles-J-Ogletree-Jr-.pdf
    • http://xiixmcuin.linkpc.net/4208207203203204/Speed-Reading-Speed-Reading-Guide-for-Hacking-Learning-amp-Strategies-for-Speed-Analysis-and-Memorization-Education-Tactics-Summary-Guidebook-Learn-Chess-Master-Coding-Visual-Fast-by-Simon-Thompson.pdf
    • http://xiixmcuin.linkpc.net/8203201200205202/Association-Ou-Organisme-Lie-A-L-Education-Maison-Familiale-Rurale-Association-Canadienne-D-Education-de-Langue-Francaise-Parsec-Planete-Sciences-Les-Petits-Debrouillards-La-3e-Voie-Board-of-European-Students-of-Technology-by-Source-Wikipedia.pdf
    • http://xiixmcuin.linkpc.net/4205201208206202/Four-Steps-to-Speed-Reading-Read-Absorb-and-Learn-More-In-Half-the-Time-by-William-Kirkpatrick.pdf
    • http://xiixmcuin.linkpc.net/4204200204209209/Arthur-Goes-to-School-Great-Big-Board-Book-by-Marc-Brown.pdf
    • http://xiixmcuin.linkpc.net/7207204201208205/The-Abolition-of-Man---Reflections-on-Education-Riddell-Memorial-Lectures-Fifteenth-Series-by-C-S-Lewis.pdf
    • http://xiixmcuin.linkpc.net/3208205206208209/The-Oxford-History-of-the-British-Empire-Volume-IV-The-Twentieth-Century-Twentieth-Century-Vol-4-by-Judith-M-Brown.pdf
    • http://xiixmcuin.linkpc.net/1203202209200203/Reappraisals-Reflections-on-the-Forgotten-Twentieth-Century-by-Tony-Judt.pdf
    • http://xiixmcuin.linkpc.net/9204205209200204/My-First-Body-Board-Book-My-1st-Board-Books-by-Iris-Rosoff.pdf
    • http://xiixmcuin.linkpc.net/1209209200205/Making-Gay-History-The-Half-Century-Fight-for-Lesbian-and-Gay-Equal-Rights-by-Eric-Marcus.pdf
    • http://xiixmcuin.linkpc.net/3204202204203207/How-the-Other-Half-Ate-A-History-of-Working-Class-Meals-at-the-Turn-of-the-Century-by-Katherine-Leonard-Turner.pdf
    • http://xiixmcuin.linkpc.net/1207200206206204/Exposed-The-Education-of-Sarah-Brown-by-Michele-E-Gwynn.pdf
    • http://xiixmcuin.linkpc.net/1201202200206202209/One-Hundred-Lectures-on-the-Ancient-and-Mordern-Dramatic-Poets-the-Heathen-Mythology-Oratory-and-Elocution-Down-to-the-Nineteenth-Century-Commencing-with-Thespis-the-Founder-of-the-Dramatic-Art-Sixth-Century-B-C-by-Benjamin-Charles-Jones.pdf
    • http://xiixmcuin.linkpc.net/3205202201200204/Teaching-Education-and-Academics-at-the-Turn-of-the-Century-by-Terry-Crawford-Palardy.pdf
    • http://xiixmcuin.linkpc.net/4202207208209202/Higher-Education-by-Charles-Sheffield.pdf
    • http://xiixmcuin.linkpc.net/5201208205207208/On-Reflection-An-Essay-on-Technology-Education-and-the-Status-of-Thought-in-the-Twenty-First-Century-by-Ellen-Rose.pdf
    • http://xiixmcuin.linkpc.net/7203200201203/A-Thomas-Jefferson-Education-Teaching-a-Generation-of-Leaders-for-the-Twenty-first-Century-by-Oliver-DeMille.pdf
    • http://xiixmcuin.linkpc.net/5201208205208204/Printing-Literacy-and-Education-in-Eighteenth-Century-Ireland-Why-the-Irish-Speak-English-by-Peter-K-Fallon.pdf
    • http://xiixmcuin.linkpc.net/6209203204206205/Mannerism-in-Arabic-Poetry-A-Structural-Analysis-of-Selected-Texts-3rd-Century-Ah-9th-Century-Ad-5th-Century-Ah-11th-Century-Ad-by-Stefan-Sperl.pdf
    • http://xiixmcuin.linkpc.net/2203200209201200/Cat-of-the-Century-A-Mrs-Murphy-Mystery-by-Rita-Mae-Brown.pdf
    • http://xiixmcuin.linkpc.net/8203201200205202/Association-Ou-Organisme-Lie-A-L-Education-Maison-Familiale-Rurale-Association-Canadienne-D-Education-de-La

Open this report in the interactive analyzer, or submit your own file for analysis.