Malicious PDF — malware analysis report

Static analysis result for SHA-256 c94f9e94d9f9584a…

MALICIOUS

PDF

35.2 KB Created: 2019-05-01 17:09:14 +01:00 Authoring application: mPDF 5.7
MD5: 4da5b92713bfb025eaad0574db6634ff SHA-1: f87f0be994349e0d31d44f0234cd3c47411cea36 SHA-256: c94f9e94d9f9584ad90069951d6b7c04ab2da34123a9b484abb672691ccc25cf
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 User Execution: Malicious File

The PDF file contains a link farm with numerous external URLs, as indicated by the PDF_SEO_LINK_FARM heuristic. The embedded URLs point to a large collection of documents, suggesting a tactic to overwhelm or distract the user. No scripts were extracted from this sample. The primary attack pattern involves directing the user to a multitude of external resources.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/8095092098091096/In-the-United-States-Circuit-Court-of-Appeals-for-the-Ninth-Circuit-United-States-of-America-Appellant-vs-Emery-J-Lesher-Appelle-Transcript-of-Record-Upon-Appeal-from-the-United-States-District-Court-for-the-District-of-Oregon-by-United-States-Court-of-Appeals.pdf
    • http://loaminoo.linkpc.net/1090091094093093091/United-States-Circuit-Court-of-Appeals-for-the-Ninth-Circuit-1912-Vol-5-of-6-Transcript-of-Record-William-F-Kettenbach-and-George-H-Kester-Plaintiffs-in-Error-Vs-The-United-States-of-America-Defendant-in-Error-Pages-1521-to-1916-Inclusive-by-United-States-Court-of-Appeals.pdf
    • http://loaminoo.linkpc.net/4098096099096098/World-History-Ancient-History-United-States-History-European-Native-American-Russian-Chinese-Asian-Indian-and-Australian-History-Wars-including-World-War-1-and-2-by-Adam-Brown.pdf
    • http://loaminoo.linkpc.net/1090091094093094090/United-States-Circuit-Court-of-Appeals-for-the-Ninth-Circuit-Vol-3-of-6-Transcript-of-Record-William-F-Kettenbach-Geo-H-Kester-and-William-Dwyer-Plaintiffs-in-Error-vs-the-United-States-of-America-Defendant-in-Error-Pages-817-to-1232-Inclusi-by-United-States-Circuit-Court-of-Appeals.pdf
    • http://loaminoo.linkpc.net/8095092098091093/United-States-Circuit-Court-of-Appeals-Fo-the-Ninth-Circuit-The-United-States-of-America-Appellant-vs-Komada-and-Co-Appelle-Condensed-Transcript-of-Record-Upon-Appeal-from-the-United-States-Circuit-Court-for-Northern-District-of-California-by-U-S-Court-of-Appeals-Ninth-Circuit.pdf
    • http://loaminoo.linkpc.net/2097098093095091/A-People-s-History-of-the-United-States-by-Lin-Xun.pdf
    • http://loaminoo.linkpc.net/8090090091094092/The-Collection-of-United-States-Cents-of-Dr-S-T-Millard-Together-with-the-Collections-of-United-States-and-Pioneer-Gold-and-Silver-Coins-of-Mr-Edward-Heissler-Chicago-and-Other-Properties-To-Be-Sold-at-Auction-Thursday-March-18th-1915-by-B-Max-Mehl.pdf
    • http://loaminoo.linkpc.net/1090092094096090093/United-States-Court-of-Appeals-for-the-Ninth-Circuit-Connell-Brothers-Company-a-Corporation-Plaintiff-in-Error-vs-H-Diederichsen-and-Company-Defendant-in-Error-Transcript-of-Record-Upon-Writ-of-Error-to-the-United-States-Court-for-China-by-United-States-Circuit-Court-of-Appeals.pdf
    • http://loaminoo.linkpc.net/5095095098092/A-People-s-History-of-the-United-States-by-Howard-Zinn.pdf
    • http://loaminoo.linkpc.net/1095093092093/A-People-s-History-of-the-United-States-by-Howard-Zinn.pdf
    • http://loaminoo.linkpc.net/1090097092092099097/A-People-s-History-of-the-United-States-by-Howard-Zinn.pdf
    • http://loaminoo.linkpc.net/3093098091090090/The-Cartoon-History-of-the-United-States-by-Larry-Gonick.pdf
    • http://loaminoo.linkpc.net/8099092095095098/A-Child-s-History-of-the-United-States-by-Emma-Wortmann.pdf
    • http://loaminoo.linkpc.net/3094098099091/The-Columbia-Literary-History-of-the-United-States-by-Emory-Elliott.pdf
    • http://loaminoo.linkpc.net/8099092097090092/A-Child-s-History-of-the-United-States-in-Verse-by-Emma-Wortmann.pdf
    • http://loaminoo.linkpc.net/1090099092097090092/Mexicanos-A-History-of-Mexicans-in-the-United-States-by-Manuel-G-Gonzales.pdf
    • http://loaminoo.linkpc.net/2093093095098/The-Supreme-Court-in-United-States-History-by-Charles-Warren.pdf
    • http://loaminoo.linkpc.net/2092092093096092/Our-Nation-s-Archive-The-History-of-the-United-States-in-Documents-by-Erik-Bruun.pdf
    • http://loaminoo.linkpc.net/9098096098096095/Land-of-Promise-An-Economic-History-of-the-United-States-by-Michael-Lind.pdf
    • http://loaminoo.linkpc.net/3092095096098/An-Indigenous-Peoples-History-of-the-United-States-by-Roxanne-Dunbar-Ortiz.pdf
    • http://loaminoo.linkpc.net/4098096099096098/World-History-Ancient-History-United-States-History-Europ

Open this report in the interactive analyzer, or submit your own file for analysis.