Malicious PDF — malware analysis report

Static analysis result for SHA-256 cd7e586955d8c432…

MALICIOUS

PDF

120.6 KB Created: 2022-07-25 07:25:04 +00:00 Authoring application: richsyre (via PDF Master 1.0.1) First seen: 2026-06-18
MD5: 8731d3ca5f094fde0f30b0ceb42b0eae SHA-1: 81e39727539762229b1a01f3503b0c7b56e076d0 SHA-256: cd7e586955d8c432be0baca503cbea2101b5d604dc11f3a3fab9c68ef5be0f02
64 Risk Score

Machine Learning

  • Nyx PDF Classifier clean score 0.0012

Heuristics 3

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://emailgoal.com/ZG93bmxvYWR8eHoyWVRabGFIeDhNVFkxT0RJeE9EazROWHg4TWpVNU1IeDhLRTBwSUZkdmNtUndjbVZ6Y3lCYldFMU1VbEJESUZZeUlGQkVSbDA/bolognese/chevys/V2luZG93cyAxMCBEaWdpdGFsIExpY2Vuc2UgQWN0aXZhdGlvbiBTY3JpcHQgNC4wIEZ1bGxbQmFidVBDXSBVdG9ycmVudAV2l/disappointed..illicit.thanatos.montgo PDF link annotation
    • https://bonnethotelsurabaya.com/wp-content/uploads/Tunein_Radio_Pro_Cracked_Apk_Filesl.pdfIn PDF document text
    • https://amoserfotografo.com/advert/starcraft-brood-war-expansion-no-install-game-link-download/In PDF document text
    • https://coleccionohistorias.com/wp-content/uploads/2022/07/ferque.pdfIn PDF document text
    • https://www.consultingproteam.com/2022/07/25/kundli-for-windows-computer-zone-free-download-work-full-version/In PDF document text
    • https://maithai-massage.cz/wp-content/uploads/2022/07/havfely.pdfIn PDF document text
    • https://baron-leather.com/wp-content/uploads/2022/07/FREastern_Sage_and_Sarah_Together_Sage_set_45_and_2_bonus_s.pdfIn PDF document text
    • http://classic.directory/wp-content/uploads/2022/07/tommar.pdfIn PDF document text
    • https://directory-news.com/wp-content/uploads/2022/07/padsae.pdfIn PDF document text
    • http://www.xn--1mq674hzcau92k.com/wp-content/uploads/xavmar.pdfIn PDF document text
    • https://www.tnrhcp.com/wp-content/uploads/2022/07/Kabhi_Khushi_Kabhie_Gham_BEST_Full_Movie_Hd_1080p_Blu_Ray_269.pdfIn PDF document text
    • http://levitra-gg.com/wp-content/uploads/2022/07/Essentials_Of_Business_Communication_Downloadl.pdfIn PDF document text
    • https://mac.com.hk/advert/hong-kong-97-magazine-link/In PDF document text
    • https://www.d360.fr/wp-content/uploads/2022/07/greglyn.pdfIn PDF document text
    • http://www.italiankart.it/advert/astute-phantasm-v3-0-2-for-adobe-link/In PDF document text
    • https://psychomotorsports.com/snowmobiles/43997-wallace-y-gromit-la-batalla-de-los-vegetales-1080p-latino-work/In PDF document text
    • http://googlepages.in/wp-content/uploads/2022/07/gillragn.pdfIn PDF document text
    • http://riccardoriparazioni.it/?p=18475In PDF document text
    • http://www.coneccta.com/2022/07/25/wongs-essentials-of-pediatric-nursing-ebook-free-download-work/In PDF document text
    • https://slitetitle.com/men-of-war-assault-squad-2-pause-link/In PDF document text
    • https://arlingtonliquorpackagestore.com/driver-mouse-benq-m800-p2m-__hot__/In PDF document text
    • https://bonnethotelsurabaya.com/wp-In PDF document text
    • https://amoserfotografo.com/advert/starcraft-brood-war-expansion-no-install-game-link-In PDF document text
    • https://www.consultingproteam.com/2022/07/25/kundli-for-windows-computer-zone-In PDF document text
    • https://baron-leather.com/wp-content/uploads/2022/07/FREastern_Sage_and_Sarah_ToIn PDF document text
    • https://www.tnrhcp.com/wp-content/uploads/2022/07/Kabhi_Khushi_Kabhie_Gham_BESIn PDF document text
    • http://levitra-gg.com/wp-In PDF document text
    • https://psychomotorsports.com/snowmobiles/43997-wallace-y-gromit-la-batalla-de-los-In PDF document text
    • http://www.coneccta.com/2022/07/25/wongs-essentials-of-pediatric-nursing-ebook-free-In PDF document text
    • http://www.tcpdf.orgIn PDF document text
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
    • http://purl.org/dc/elements/1.1/In PDF document text
    • http://ns.adobe.com/xap/1.0/In PDF document text
    • http://ns.adobe.com/pdf/1.3/In PDF document text
    • http://ns.adobe.com/xap/1.0/mm/In PDF document text
    • http://www.aiim.org/pdfa/ns/extension/In PDF document text
    • http://www.aiim.org/pdfa/ns/schema#In PDF document text
    • http://www.aiim.org/pdfa/ns/property#In PDF document text
    • http://www.aiim.org/pdfa/ns/id/In PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.