Malicious PDF — malware analysis report

Static analysis result for SHA-256 a6aee03a6eca677f…

MALICIOUS

PDF

13.0 KB Created: 2019-05-02 14:52:37 +01:00 Authoring application: mPDF 5.7
MD5: 5913e01af59ccedfb57252a4355d06ff SHA-1: f92a8fc491d895ed7469f759325732c888302c39 SHA-256: a6aee03a6eca677f42140828c18939860666e32b328908217b94464e65e7a9cd
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Phishing:Spearphishing Attachment T1204.002 Malicious Link

The PDF file contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic, pointing to a domain that hosts what appear to be book titles. The DOC BODY confirms these links are present and are the primary content of the document. This suggests a lure to drive traffic to the linked domain, potentially for SEO manipulation or to host further malicious content. No scripts were extracted from this sample.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/2099097090093094/If-Morning-Ever-Comes-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/2095099099096095/The-Accidental-Tourist-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/3098098096097/Ladder-of-Years-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/4092090091095096/A-Patchwork-Planet-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/4092098094092091/Breathing-Lessons-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/3095093092099093/Earthly-Possessions-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/6097097094090/The-Amateur-Marriage-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/3091097094097/A-Spool-of-Blue-Thread-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/4092098090096093/Dinner-at-the-Homesick-Restaurant-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/2094097093098095/A-Spool-of-Blue-Thread-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/3096096097091093/A-Spool-of-Blue-Thread-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/1097093094090098/A-Spool-of-Blue-Thread-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/2097092092093090/A-Spool-of-Blue-Thread-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/2098093099093093/Dinner-at-the-Homesick-Restaurant-by-Anne-Tyler.pdf
    • http://loaminoo.linkpc.net/6093091097099094/Watched-Tough-Justice-1-2-by-Tyler-Anne-Snell.pdf
    • http://loaminoo.linkpc.net/4094090099097097/Dream-on-Livin-on-the-Edge-With-Steven-Tyler-and-Aerosmith-by-Cyrinda-Foxe-Tyler.pdf
    • http://loaminoo.linkpc.net/3090097095097090/Tyler-s-Ultimate-Brilliant-Simple-Food-to-Make-Any-Time-by-Tyler-Florence.pdf
    • http://loaminoo.linkpc.net/2097099091095096/The-Haunting-of-Tyler-May-Tyler-May-1-by-B-J-Mears.pdf
    • http://loaminoo.linkpc.net/9091094093091/Tangled-Lies-Men-Made-In-America-2-11-by-Anne-Stuart.pdf
    • http://loaminoo.linkpc.net/3094090099092099/Glen-amp-Tyler-s-High-Seas-Hijinks-Glen-amp-Tyler-Adventures-4-by-J-B-Sanders.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.