Malicious PDF — malware analysis report

Static analysis result for SHA-256 d1c8202782fde69a…

MALICIOUS

PDF

16.4 KB Created: 2019-05-02 00:47:57 +01:00 Authoring application: mPDF 5.7
MD5: f72675a8514815c0371c81449f15cdb7 SHA-1: 4deaab474b16ed3316cce0d437648732cbab1bce SHA-256: d1c8202782fde69a18a36af57f8b992ee52fd4711a3d72884ca9255341e84af6
90 Risk Score

Malware Insights

MITRE ATT&CK
T1059.001 PowerShell

The PDF contains a large number of links to external PDF files, constituting a link farm. While the extracted URLs themselves are classified as benign, the sheer volume and structure suggest a malicious intent to drive traffic or potentially host malicious content indirectly. The ML classifier also strongly indicated maliciousness.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9898

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/1a01a01a07a01a00a06/Chess-Informant-51-by-Editor-MATANOVIC-ALEKSANDAR.pdf
    • http://muicuiu.dumb1.com/1a01a01a06a09a05a05/Chess-Informant-25-by-Aleksandar-Matanovi-.pdf
    • http://muicuiu.dumb1.com/1a01a01a06a08a04a03/Encyclopedia-of-Chess-Openings-E-by-Aleksandar-Matanovi-.pdf
    • http://muicuiu.dumb1.com/1a01a01a06a08a04a02/Encyclopedia-of-Chess-Openings-C-by-Aleksandar-Matanovi-.pdf
    • http://muicuiu.dumb1.com/1a01a01a06a09a05a04/Small-Encyclopedia-of-Chess-Openings-by-Aleksandar-Matanovi-.pdf
    • http://muicuiu.dumb1.com/1a01a01a06a09a05a00/Encyclopaedia-of-Chess-Endings-I-Pawn-Endings-2nd-ed-by-Aleksandar-Matanovi-.pdf
    • http://muicuiu.dumb1.com/4a01a06a06a08a08/The-Informant-Kaz-Phelps-1-by-Susan-Wilkins.pdf
    • http://muicuiu.dumb1.com/7a02a07a01a09a02/Tactics-Training-Anatoly-Karpov-How-to-improve-your-Chess-with-Anatoly-Karpov-and-become-a-Chess-Tactics-Master-by-Frank-Erwich.pdf
    • http://muicuiu.dumb1.com/1a01a01a07a00a03a09/The-New-Troubadours-Songbook-by-Milenko-Matanovi-.pdf
    • http://muicuiu.dumb1.com/1a00a08a02a06a05a03/O-emu-ti-to-govori-by-Julijana-Matanovi-.pdf
    • http://muicuiu.dumb1.com/1a09a07a01a09a09/The-Use-of-Man-by-Aleksandar-Ti-ma.pdf
    • http://muicuiu.dumb1.com/1a01a01a07a00a04a03/Meandering-Rivers-amp-Square-Tomatoes-The-Art-of-Crafting-Visions-by-Milenko-Matanovi-.pdf
    • http://muicuiu.dumb1.com/7a04a00a09a03a02/New-American-Stories-by-Aleksandar-Hemon.pdf
    • http://muicuiu.dumb1.com/5a02a00a01a05a07/Love-and-Obstacles-by-Aleksandar-Hemon.pdf
    • http://muicuiu.dumb1.com/7a04a00a07a00a06/Best-European-Fiction-2013-by-Aleksandar-Hemon.pdf
    • http://muicuiu.dumb1.com/4a04a05a03a07a01/Best-European-Fiction-2011-by-Aleksandar-Hemon.pdf
    • http://muicuiu.dumb1.com/9a08a02a03a02/The-Editor-by-Luke-Carroll.pdf
    • http://muicuiu.dumb1.com/4a02a07a04a05a04/The-Editor-by-Steven-Rowley.pdf
    • http://muicuiu.dumb1.com/7a04a08a04a03a05/Editor-s-Choice-by-Assouline.pdf
    • http://muicuiu.dumb1.com/6a09a01a03a01a08/Boulevard-by-Jessica-Rogan-editor-.pdf
    • http://muicuiu.dumb1.com/7a02a07a01a09a02/Tactics-Tr

Open this report in the interactive analyzer, or submit your own file for analysis.