Malicious PDF — malware analysis report

Static analysis result for SHA-256 b1d19194222ea845…

MALICIOUS

PDF

36.7 KB Created: 2019-04-30 03:42:14 +01:00 Authoring application: mPDF 5.7
MD5: 2201e1d4fcb04590d0e309beba50794b SHA-1: c6a1d733793aba7771d4fb321f2ca179146d7c2d SHA-256: b1d19194222ea84519c6abdba1b6a71e25946696df3f2bc9265968be8dc26e5e
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment

The PDF contains a large number of embedded links to external PDF files, as indicated by the PDF_SEO_LINK_FARM heuristic. The ML classifier also flagged the document as malicious. While the document body is heavily obfuscated, the presence of numerous links suggests a link-farming or redirection attempt, likely to distribute further malicious content or engage in SEO poisoning. No scripts were extracted from this sample.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9636

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/1a00a02a05a06a09a05/The-Contemporary-French-Writers-Selections-from-the-French-Writers-of-the-Second-Part-of-the-19th-Century-with-Literary-Notices-and-Historical-Geographical-Etymological-Grammatical-and-Explanatory-Notes-by-Rosine-Melle.pdf
    • http://muicuiu.dumb1.com/1a01a00a01a04a05a09/Selections-from-Uhland-s-Ballads-and-Romances---With-Biographical-Notices-and-Historical-and-Grammatical-Notes-by-George-Eug-ne-Fasnacht.pdf
    • http://muicuiu.dumb1.com/1a01a04a05a01a08a00/Materials-for-German-Prose-Composition-or-Selections-from-Modern-English-Writers-With-Grammatical-Notes-Idiomatic-Renderings-of-Difficult-Phrases-Essentials-of-German-Syntax-Preliminary-Chapters-on-Punctuation-and-the-Division-of-Words-in-German-and-by-C-A-Buchheim.pdf
    • http://muicuiu.dumb1.com/8a01a08a07a02a04/The-ne-d-of-Virgil-With-English-Notes-Critical-and-Explanatory-A-Metrical-Clavis-and-an-Historical-Geographical-and-Mythological-Index-by-Virgil.pdf
    • http://muicuiu.dumb1.com/1a01a00a01a05a04a05/Comparative-French-English-Studies-Grammatical-and-Idiomatic-Being-an-Entirely-Re-Written-Edition-of-the-French-Exercises-for-Middle-and-Upper-Forms-Adapted-to-the-Student-s-Comparative-French-Grammar-by-G-Eugene-Fasnacht.pdf
    • http://muicuiu.dumb1.com/7a06a01a00a06a06/Letters-and-Conversations-Selected-from-the-Best-Writers-for-the-Use-of-English-Students-to-Facilitate-the-Practice-of-Translating-from-English-Into-French-with-Notes-by-G-A-Neveu.pdf
    • http://muicuiu.dumb1.com/9a00a00a00a06a06/Dictionary-of-Literary-Biography-Contemporary-German-Fiction-Writers-by-Wolfgang-Elfe.pdf
    • http://muicuiu.dumb1.com/8a04a01a02a02a09/Against-the-Postcolonial-quot-francophone-quot-Writers-at-the-Ends-of-French-Empire-by-Richard-Serrano.pdf
    • http://muicuiu.dumb1.com/7a04a07a08a06a05/Nautical-Terms-in-English-and-French-and-French-and-English-With-Notes-and-Tables-by-Leon-Delbos.pdf
    • http://muicuiu.dumb1.com/6a01a01a07a03a02/The-Science-Writers-Handbook-Everything-You-Need-to-Know-to-Pitch-Publish-and-Prosper-in-the-Digital-Age-by-Writers-of-SciLance.pdf
    • http://muicuiu.dumb1.com/4a01a04a01a04a01/To-Live-and-to-Write-Selections-by-Japanese-Women-Writers-1913-1938-by-Yukiko-Tanaka.pdf
    • http://muicuiu.dumb1.com/6a06a08a04a05a07/Emerging-Contemporary-Readings-for-Writers-by-Barclay-Barrios.pdf
    • http://muicuiu.dumb1.com/5a05a02a01a04a07/Familypedia---French-Language-Articles-in-French-French-Speaking-Countries-La-Francophonie-Pages-in-French-Translations-Needed-Fr-User-Fr-Abraham-Coste-Baronnet-Beaudet-Brice-Baronnet-Charles-Borromee-Beaudet-Charles-Baronnet-by-Source-Wikia.pdf
    • http://muicuiu.dumb1.com/2a05a06a02a02a02/The-Art-of-Fiction-Notes-on-Craft-for-Young-Writers-by-John-Gardner.pdf
    • http://muicuiu.dumb1.com/8a04a04a04a07a03/Historical-Research-A-Guide-for-Writers-of-Dissertations-Theses-Articles-and-Books-by-W-H-McDowell.pdf
    • http://muicuiu.dumb1.com/2a02a03a08a02/America-s-Literary-Legends-The-Lives-and-Burial-Places-of-50-Great-Writers-by-Michael-Thomas-Barry.pdf
    • http://muicuiu.dumb1.com/3a01a05a04a07/A-Second-Helping-of-Murder-More-Diabolically-Delicious-Recipes-from-Contemporary-Mystery-Writers-by-Jo-Grossman.pdf
    • http://muicuiu.dumb1.com/3a01a05a08a09/A-Taste-of-Murder-Diabolically-Delicious-Recipes-from-Contemporary-Mystery-Writers-by-Jo-Grossman.pdf
    • http://muicuiu.dumb1.com/2a07a01a04a05a09/The-Slate-of-Life-More-Contemporary-Stories-by-Women-Writers-of-India-by-Laura-Kalpakian.pdf
    • http://muicuiu.dumb1.com/1a09a07a09a06/Go-the-Way-Your-Blood-Beats-An-Anthology-of-Lesbian-and-Gay-Literary-Fiction-by-African-American-Writers-by-Shawn-Stewart-Ruff.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.