Malicious PDF — malware analysis report

Static analysis result for SHA-256 a7556beac42d7904…

MALICIOUS

PDF

16.4 KB Created: 2019-05-22 18:50:52 +01:00 Authoring application: mPDF 5.7
MD5: 87bc96d550255e437ae062b0de10275d SHA-1: 17e08455532e587c689ad7850892e36e17e80983 SHA-256: a7556beac42d790491af53b96b3196db619be073a0380d0eef8c8586c5ad3f5e
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious Link

The PDF contains a large number of embedded URLs, identified by the PDF_SEO_LINK_FARM heuristic. These URLs point to various book titles hosted on the same domain, suggesting a link farm or SEO manipulation tactic. No scripts were extracted from this sample. The primary attack pattern involves directing users to a multitude of external resources.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://cefasfese.4pu.com/1730731735733735736/Finding-Infinity-by-Susan-Kiernan-Lewis.pdf
    • http://cefasfese.4pu.com/4739737736735731/Finding-Someplace-by-Denise-Lewis-Patrick.pdf
    • http://cefasfese.4pu.com/1731739737736739/Glimpsing-Infinity-Infinity-Series-Book-1-by-K-L-Strader.pdf
    • http://cefasfese.4pu.com/1732739739736736/Finding-the-Landlord-A-Guidebook-to-C-S-Lewis-s-Pilgrim-s-Regress-by-Kathryn-Lindskoog.pdf
    • http://cefasfese.4pu.com/1731736735738730/Finding-Maslow-by-Susan-Walberg.pdf
    • http://cefasfese.4pu.com/3734730731731737/Infinity-Rises-The-Infinity-Trilogy-2-by-S-Harrison.pdf
    • http://cefasfese.4pu.com/7733737735733/Don-t-Let-Me-Go-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/1739738739734738/Don-t-Let-Me-Go-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/2734732731733733/The-Choice-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/6735737738738735/Obsession-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/3734735730739738/Finding-Marie-Frasier-Island-2-by-Susan-Page-Davis.pdf
    • http://cefasfese.4pu.com/4733735732739730/A-French-Affair-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/1739738739735731/Too-Close-To-Home-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/2736731732735739/Behind-Closed-Doors-by-Susan-Lewis.pdf
    • http://cefasfese.4pu.com/1734735732738739/Infinity-Infinity-4-by-Layne-Harper.pdf
    • http://cefasfese.4pu.com/6732739730739738/Finding-Your-Inner-Moose-Ida-Leclair-s-Guide-to-Livin-the-Good-Life-by-Susan-Poulin.pdf
    • http://cefasfese.4pu.com/1732739739737733/C-S-Lewis-A-Reference-Guide-1972-1988-by-Susan-Lowenberg.pdf
    • http://cefasfese.4pu.com/8739738732737735/The-Noble-Legacy-Collection-Reclaiming-Nick-Taming-Rafe-Finding-Stefanie-by-Susan-May-Warren.pdf
    • http://cefasfese.4pu.com/5731737736730732/Unexceptional-Women-Female-Proprietors-in-Mid-Nineteenth-Century-Albany-New-York-1830-1885-by-Susan-I-Lewis.pdf
    • http://cefasfese.4pu.com/3730732738731733/Fionn-o-the-Fae-by-Kiernan-Kelly.pdf
    • http://cefasfese.4pu.com/3734735730739738/Finding-Mar

Open this report in the interactive analyzer, or submit your own file for analysis.