Malicious PDF — malware analysis report

Heuristics 4

• Password-protected archive handoff high SE_PASSWORD_ARCHIVE_LURE
  Document gives password instructions for an archive or attachment — often used to keep payloads encrypted until after gateway scanning
• PDF link farm advertises cracked/pirated software medium PDF_CRACKED_SOFTWARE_LURE
  PDF contains many clickable links whose targets use cracked-software, keygen, serial-key, or warez vocabulary. These are SEO-spam lure documents that rank for software-piracy searches and route users to fake 'crack' download pages distributing potentially-unwanted programs, adware, or droppers. The PDF itself carries no exploit — the risk is the linked destinations.
• External URI info PDF_URI
  PDF contains an external URL action
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL http://lehmanbrotherbankruptcy.com/aveeno/kinaesthetic/polyethylene.../RG93bmxvYWQgU3VidGl0bGUgSW5kb25lc2lhIEtvaSBNaWwgR2F5YQRG9?masea=ZG93bmxvYWR8UkswWTNsNlpIeDhNVFkxTmpjeE1qTXdOWHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA PDF link annotation

  • https://www.farmington.nh.us/sites/g/files/vyhlif566/f/uploads/transfer_station_information_flyer.pdfIn PDF document text
  • https://kramart.com/wp-content/uploads/2022/07/Usenet_Nl_Premium_Account_Generator.pdfIn PDF document text
  • http://www.vxc.pl/?p=34459In PDF document text
  • http://findmallorca.com/steinberg-cubase-7-5-crack-for-windows-and-mac-os-rar-best/In PDF document text
  • https://harneys.blog/2022/07/02/dasvidaniya-part-1-in-hindi-download-720p-dual-audio-torrent-download-extra-quality/In PDF document text
  • https://kramart.com/firmware-nokia-300-rm781-v765-bi/In PDF document text
  • https://topnotchjobboard.com/system/files/webform/resume/deinann535.pdfIn PDF document text
  • https://pionerossuites.com/virtual-dj-pro-ddj-wego-crack-link/In PDF document text
  • https://indir.fun/18-busty-league-��-ver-186-every-stats-x10-mod-apk/In PDF document text
  • https://unsk186.ru/garmin-g1000-simulator-crack-top-128283/In PDF document text
  • http://livesextransvestite.com/?p=2021In PDF document text
  • https://marcalinatural.com/pokemon-resolute-version-full-walkthrough-best/In PDF document text
  • https://www.spasvseyarusi.ru/advert/durga-saptashati-beej-mantra-sadhana-pdf-41-upd/In PDF document text
  • https://www.voyavel.it/wp-content/uploads/2022/07/karnan_tamil_movie_full_1080p_desktop.pdfIn PDF document text
  • https://hormariye.net/wp-content/uploads/2022/07/eischens_fried_chicken_copycat_recipe.pdfIn PDF document text
  • https://ictlife.vn/upload/files/2022/07/o9PyTJoZhkE2Rh3nJp2C_02_45a065c8f9f29df86fbf132ed8029af1_file.pdfIn PDF document text
  • https://www.ci.lancaster.ma.us/sites/g/files/vyhlif4586/f/uploads/marriage_intentions_rules.pdfIn PDF document text
  • http://joshuatestwebsite.com/maya2015movierepack-download720p/In PDF document text
  • https://www.riseupstar.com/upload/files/2022/07/NwwZ3hfIjXwBgzL5r8TG_02_45a065c8f9f29df86fbf132ed8029af1_file.pdfIn PDF document text
  • https://www.gifmao.com/wp-content/uploads/2022/07/tarhen.pdfIn PDF document text
  • http://www.tcpdf.orgIn PDF document text
  • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
  • http://purl.org/dc/elements/1.1/In PDF document text
  • http://ns.adobe.com/xap/1.0/In PDF document text
  • http://ns.adobe.com/pdf/1.3/In PDF document text
  • http://ns.adobe.com/xap/1.0/mm/In PDF document text
  • http://www.aiim.org/pdfa/ns/extension/In PDF document text
  • http://www.aiim.org/pdfa/ns/schema#In PDF document text
  • http://www.aiim.org/pdfa/ns/property#In PDF document text
  • http://www.aiim.org/pdfa/ns/id/In PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.