Malicious PDF — malware analysis report

Static analysis result for SHA-256 cb899ae5fcd4fd58…

MALICIOUS

PDF

25.0 KB Created: 2019-05-02 17:42:09 +01:00 Authoring application: mPDF 5.7 First seen: 2021-08-20
MD5: 8a0687f278bc467c3873e75cbc0e38a6 SHA-1: 30996350891fb51fa0b910d8bead012eb1830cba SHA-256: cb899ae5fcd4fd58ae68847fb7c2957332cca2957e1138c02356130b12d59ec9
92 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF contains a large number of embedded external links, identified by the PDF_SEO_LINK_FARM heuristic. The ML_NYX_PDF_MALICIOUS classifier also flagged this document with high confidence. The embedded URLs likely serve as a lure to external content, potentially for SEO manipulation or to host further malicious payloads.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9910

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://kiteeearpdf.myhome.cx/1f210f210f213f219f210f213/Irena-s-Children-The-Extraordinary-Story-of-the-Woman-Who-Saved-2-500-Children-from-the-Warsaw-Ghetto-by-Tilar-J-Mazzeo.pdf In PDF document text
    • http://kiteeearpdf.myhome.cx/8f219f211f212/Eliza-Hamilton-The-Extraordinary-Life-and-Times-of-the-Wife-of-Alexander-Hamilton-by-Tilar-J-Mazzeo.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/2f217f214f211f219f218/The-Secret-of-Chanel-No-5-The-Intimate-History-of-the-World-s-Most-Famous-Perfume-by-Tilar-J-Mazzeo.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/1f210f212f217f218f218f214/Irena-Sendler-Mother-of-the-Children-of-the-Holocaust-by-Anna-Mieszkowska.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/1f210f210f216f218f219f219/The-Other-Schindler-Irena-Sendler-Savior-of-the-Holocaust-Children-by-Abhijit-Thite.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/1f210f210f213f219f216f215/Children-of-the-Ghetto-by-Israel-Zangwill.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/1f211f213f211f211f214f216/Five-Children-And-It-The-Story-Of-The-Amulet-Five-Children-1-amp-3-by-E-Nesbit.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/4f212f214f211f213f214/I-Remember-Nothing-More-The-Warsaw-Children-s-Hospital-and-the-Jewish-Resistance-by-Adina-Blady-Szwajger.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/4f217f215f219f211f216/Mama-Maggie-The-Untold-Story-of-One-Woman-s-Mission-to-Love-the-Forgotten-Children-of-Egypt-s-Garbage-Slums-by-Martin-Makary.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/5f210f213f219f214f219/Ordinary-Children-Extraordinary-Teachers-by-Marva-Collins.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/3f218f215f214f218f218/Five-Years-in-the-Warsaw-Ghetto-by-Bernard-Goldstein.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/1f213f219f211f217f210/Two-Flags-Return-to-the-Warsaw-Ghetto-by-Marian-Apfelbaum.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/4f211f213f218f212/In-Search-of-the-Castaways-or-the-Children-of-Captain-Grant-Extraordinary-Voyages-5-by-Jules-Verne.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/7f215f215f217f212f216/Christians-in-the-Warsaw-Ghetto-An-Epitaph-for-the-Unremembered-by-Peter-F-Dembowski.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/2f215f214f215f212f214/The-Bravest-Battle-The-Twenty-eight-Days-of-the-Warsaw-Ghetto-Uprising-by-Dan-Kurzman.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/4f218f216f218f215f213/The-Warsaw-Ghetto-in-Photographs-206-Views-Made-in-1941-by-Ulrich-Keller.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/9f217f217f219f217f210/Children-And-The-Aids-Virus-A-Book-For-Children-Parents-amp-Teachers-by-Rosmarie-Hausherr.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/2f214f217f210f212/Children-of-Thorns-Children-of-Water-Dominion-of-the-Fallen-1-5-by-Aliette-de-Bodard.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/8f210f211f217f215f218/Stitchery-For-Children-A-Manual-For-Teachers-Parents-And-Children-by-Jacqueline-Enthoven.pdfIn PDF document text
    • http://kiteeearpdf.myhome.cx/2f218f211f216f219f219/50-Children-One-Ordinary-American-Couple-s-Extraordinary-Rescue-Mission-into-the-Heart-of-Nazi-Germany-by-Steven-Pressman.pdfIn PDF document text