Malicious PDF — malware analysis report

Static analysis result for SHA-256 c849c6f8048f136a…

MALICIOUS

PDF

17.5 KB Created: 2019-04-30 04:17:44 +01:00 Authoring application: mPDF 5.7
MD5: fd916b6d169933c1987b4ad9a5116e5e SHA-1: 1eacc26f0dd76dea69b75ed352211acefd93190e SHA-256: c849c6f8048f136a6b973e493ba3f0701e73843a361d9d8472ac0daefa8da578
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious Link

The PDF file contains a large number of embedded links to external PDF documents, a technique often used for SEO poisoning or to distribute malicious content. The ML classifier strongly indicated maliciousness. The primary heuristic identified a link farm hosted on the domain 'loaminoo.linkpc.net', suggesting a coordinated effort to direct users to potentially harmful content. No scripts were extracted from this sample.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9925

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/9097095095096092/Osvoji-ljubav-Surrender-Your-Love-2-by-J-C-Reed.pdf
    • http://loaminoo.linkpc.net/8096098094094096/Surrender-your-Love---Ergeben-by-J-C-Reed.pdf
    • http://loaminoo.linkpc.net/9097095095095097/Predaj-se-ljubavi-Surrender-Your-Love-1-by-J-C-Reed.pdf
    • http://loaminoo.linkpc.net/1090093093094/Surrender-Your-Love-Surrender-Your-Love-1-by-J-C-Reed.pdf
    • http://loaminoo.linkpc.net/4096090093091097/The-Lover-s-Surrender-No-Exceptions-4-by-J-C-Reed.pdf
    • http://loaminoo.linkpc.net/4095097092093090/Hungry-for-Love-by-Rick-R-Reed.pdf
    • http://loaminoo.linkpc.net/4098095096097091/No-Surrender-Love-United-2-by-Melyssa-Winchester.pdf
    • http://loaminoo.linkpc.net/1094097090098099/Surrender-to-Love-Night-Calls-3-by-J-C-Valentine.pdf
    • http://loaminoo.linkpc.net/3093092098098096/Surf-amp-Surrender-Summer-Love-2-by-Riley-Edgewood.pdf
    • http://loaminoo.linkpc.net/1090095097092092092/Reed-Book-Of-Maori-Mythology-by-Alexander-Wyclif-Reed.pdf
    • http://loaminoo.linkpc.net/2092095095093097/Pieces-of-Eight-A-Story-of-Sex-amp-Love-Trust-amp-Betrayal-by-Michael-Richard-Reed-McLaughlin.pdf
    • http://loaminoo.linkpc.net/3096093094093092/a-little-book-about-believing-The-Transformative-Healing-Power-of-Faith-Love-and-Surrender-by-Cash-Peters.pdf
    • http://loaminoo.linkpc.net/4097091090090093/Love-and-Glory-Silhouette-By-Request-3-s-A-Question-of-Honor-No-Surrender-Return-of-a-Hero-by-Lindsay-McKenna.pdf
    • http://loaminoo.linkpc.net/2099098093096097/Willing-Surrender-Willing-Surrender-1-by-Carrie-Hogle.pdf
    • http://loaminoo.linkpc.net/4092094097098096/Surrender-Surrender-1-by-Melody-Anne.pdf
    • http://loaminoo.linkpc.net/2099097090098095/To-Love-a-Cougar-Cougar-Surrender-2-by-Marisa-Chenery.pdf
    • http://loaminoo.linkpc.net/8090099096090099/Reed-Farrel-Coleman-Books-2017-Checklist-Reading-Order-of-Coleman-s-Jesse-Stone-Series-Gus-Murphy-Series-Joe-Serpe-Series-Moe-Prager-Series-and-List-of-All-Reed-Farrel-Coleman-Books-by-Series-Order.pdf
    • http://loaminoo.linkpc.net/4096091090093/Beautiful-by-Amy-Reed.pdf
    • http://loaminoo.linkpc.net/3094091091093092/Interference-by-Zoe-Reed.pdf
    • http://loaminoo.linkpc.net/2096096090093092/Enclave-by-Kit-Reed.pdf
    • http://loaminoo.linkpc.net/3096093094093092/a-little-book-about-believing-The-Transformative-Healing-Power-

Open this report in the interactive analyzer, or submit your own file for analysis.