Malicious PDF — malware analysis report

Static analysis result for SHA-256 af23681a5339925d…

MALICIOUS

PDF

119.4 KB Created: 2022-07-03 01:48:31 +00:00 Authoring application: jandzand (via PDF Master 1.0.1) First seen: 2026-06-21
MD5: ff3847b052533f6621b08346cec99c88 SHA-1: 347e9a413acd9e78ad4dc0996a6cb6bd865a88d6 SHA-256: af23681a5339925d83ba95d57c95516b437b12531a804b295cacbc3d7b4239c1
94 Risk Score

Machine Learning

  • Nyx PDF Classifier clean score 0.0007

Heuristics 4

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • PDF link farm advertises cracked/pirated software medium PDF_CRACKED_SOFTWARE_LURE
    PDF contains many clickable links whose targets use cracked-software, keygen, serial-key, or warez vocabulary. These are SEO-spam lure documents that rank for software-piracy searches and route users to fake 'crack' download pages distributing potentially-unwanted programs, adware, or droppers. The PDF itself carries no exploit — the risk is the linked destinations.
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://godsearchs.com/trips/semi.drooling.employeesi.ZG93bmxvYWR8R2U5WnpCMVpIeDhNVFkxTmpjM01UZ3hPSHg4TWpVNU1IeDhLRTBwSUZkdmNtUndjbVZ6Y3lCYldFMU1VbEJESUZZeUlGQkVSbDA.masses/nicd?Qmx1ZSBMYWdvb24gVGhlIEF3YWtlbmluZyAxMDgwcCBUb3JyZW50Qmx=offence PDF link annotation
    • http://www.shopinrockdale.com/wp-content/uploads/2022/07/TotalWarShoGun2REPACKKaOsskidrowreloaded.pdfIn PDF document text
    • https://wishfruits.com/wp-content/uploads/2022/07/watcot.pdfIn PDF document text
    • https://dbrolly.com/wp-content/uploads/2022/07/FirstEver_Microsoft_Linux_Conference_Announced_for_March_101.pdfIn PDF document text
    • http://babauonline.com/wp-content/uploads/2022/07/Flowjo_10_Serial_Number_REPACK_Crack_44.pdfIn PDF document text
    • http://freemall.jp/gran-turismo-4-pc-free-download-full-version-new.htmlIn PDF document text
    • https://www.chimfab.com/m3-bitlocker-recovery-5-5-keygen-verified/In PDF document text
    • http://noverfood.com/wp-content/uploads/2022/07/leires.pdfIn PDF document text
    • https://swecentre.com/wp-content/uploads/2022/07/EXCLUSIVE_Download_Film_Sunan_Wali_Songo.pdfIn PDF document text
    • https://lavo-easy.ch/wp-content/uploads/2022/07/Xforce_Keygen_Autocad_2015_Crack_45.pdfIn PDF document text
    • http://mathurakiawaz.com/wp-content/uploads/2022/07/amodear.pdfIn PDF document text
    • https://efekt-metal.pl/witaj-swiecie/In PDF document text
    • https://worldwidedigitalstore.com/wp-content/uploads/2022/07/talisass.pdfIn PDF document text
    • http://www.interprys.it/?p=32407In PDF document text
    • https://papayo.nl/wp-content/uploads/2022/07/AUTODESK3DSMAXV2016WIN64ISO_Setup_Free.pdfIn PDF document text
    • https://startpointsudan.com/index.php/2022/07/03/second-life-copybot-viewer-_top_-download/In PDF document text
    • https://www.odooblogs.com/wp-content/uploads/2022/07/ululnick.pdfIn PDF document text
    • https://pionerossuites.com/wp-content/uploads/2022/07/dahltan.pdfIn PDF document text
    • https://www.valenciacfacademyitaly.com/2022/07/03/scooby-doo-meets-the-boo-brothers-2021-full-movie-download/In PDF document text
    • https://www.standish.org/sites/g/files/vyhlif5026/f/pages/how_to_start_a_business_in_standish_me.pdfIn PDF document text
    • http://babauonline.com/wp-content/uploads/2022/07/flowjo_10_serial_number_repack_crack_44.pdfIn PDF document text
    • https://reaspopipha.wixsite.com/hinxnersture/post/dragonballafdarkdimensionps2isoIn PDF document text
    • http://www.tcpdf.orgIn PDF document text
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
    • http://purl.org/dc/elements/1.1/In PDF document text
    • http://ns.adobe.com/xap/1.0/In PDF document text
    • http://ns.adobe.com/pdf/1.3/In PDF document text
    • http://ns.adobe.com/xap/1.0/mm/In PDF document text
    • http://www.aiim.org/pdfa/ns/extension/In PDF document text
    • http://www.aiim.org/pdfa/ns/schema#In PDF document text
    • http://www.aiim.org/pdfa/ns/property#In PDF document text
    • http://www.aiim.org/pdfa/ns/id/In PDF document text