Malicious PDF — malware analysis report

Static analysis result for SHA-256 a8757ac672b2acf3…

MALICIOUS

PDF

12.3 KB Created: 2019-04-30 05:47:18 +01:00 Authoring application: mPDF 5.7
MD5: 6707f1f908ed538f797376f08ef01894 SHA-1: 0cf0c23f185f0342493fcc3d704367c5e7c3a4db SHA-256: a8757ac672b2acf37e336a940edf835e2ee2da576d94db4f76097be98c9e673e
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious Link

The PDF file contains a large number of embedded URLs, forming a link farm. The heuristic 'PDF_SEO_LINK_FARM' indicates that this is a technique to distribute malicious content by linking to numerous external PDFs. The primary IOC is the domain 'loaminoo.linkpc.net' which hosts these linked PDFs.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/4098099091092090/No-No-Yes-Yes-by-Leslie-Patricelli.pdf
    • http://loaminoo.linkpc.net/1098095091093090/Faster-Faster-by-Leslie-Patricelli.pdf
    • http://loaminoo.linkpc.net/1090099095091091093/Higher-Higher-by-Leslie-Patricelli.pdf
    • http://loaminoo.linkpc.net/2093096092097092/Binky-to-the-Rescue-by-Ashley-Spires.pdf
    • http://loaminoo.linkpc.net/7099098090097091/Leslie-Peltier-s-guide-to-the-stars-by-Leslie-C-Peltier.pdf
    • http://loaminoo.linkpc.net/3090090093094095/Leslie-Nielsen-The-Naked-Truth-by-Leslie-Nielsen.pdf
    • http://loaminoo.linkpc.net/3091092093093093/Are-You-My-Dad-by-Leslie-Kelley.pdf
    • http://loaminoo.linkpc.net/3096099099096091/Cheer-by-Leslie-A-Gordon.pdf
    • http://loaminoo.linkpc.net/3096090097097091/The-Ouroboros-Key-by-Patricia-Leslie.pdf
    • http://loaminoo.linkpc.net/3099097097091092/The-Fortunes-Five-by-Leslie-Margolis.pdf
    • http://loaminoo.linkpc.net/7093094093096090/The-Curve-by-Leslie-Pike.pdf
    • http://loaminoo.linkpc.net/4099090094095094/In-the-Red-Canoe-by-Leslie-Davidson.pdf
    • http://loaminoo.linkpc.net/2093095099097094/After-the-Bloom-by-Leslie-Shimotakahara.pdf
    • http://loaminoo.linkpc.net/4094094097096098/Crunch-by-Leslie-Connor.pdf
    • http://loaminoo.linkpc.net/2098093098094/About-Mrs-Leslie-by-Vi-a-Delmar.pdf
    • http://loaminoo.linkpc.net/2095099098098/Skein-and-Bone-by-V-H-Leslie.pdf
    • http://loaminoo.linkpc.net/1090091092096099093/Sleeper-by-Leslie-Glass.pdf
    • http://loaminoo.linkpc.net/4098092096093095/Here-Comes-Trouble-by-Leslie-Kelly.pdf
    • http://loaminoo.linkpc.net/7096093091094099/Kaleidoscope-by-Adam-S-Leslie.pdf
    • http://loaminoo.linkpc.net/1091092099099098/Everybody-Bugs-Out-by-Leslie-Margolis.pdf
    • http://loaminoo.linkpc.net/2095099098098/Skein-

Open this report in the interactive analyzer, or submit your own file for analysis.