Malicious PDF — malware analysis report

Static analysis result for SHA-256 dbe211b97b332fd6…

MALICIOUS

PDF

16.7 KB Created: 2019-04-30 05:24:16 +01:00 Authoring application: mPDF 5.7
MD5: bea1eaf1fcceadd7468d25fa63d9c64b SHA-1: 50556273e5ea8e59bc680e05ad9d697c3e9c387d SHA-256: dbe211b97b332fd6ebab9e17ab1f5597a795f18fd91d44e935c4a493e48e2275
70 Risk Score

Malware Insights

MITRE ATT&CK
T1059.001 PowerShell

The ClamAV heuristic identified this PDF as a dropper, indicating it is designed to download and execute other malicious content. The document body contains embedded URLs that appear to be lures for downloading files, likely to facilitate the execution of a second-stage payload. The presence of a visual download button further supports this attack pattern.

Heuristics 4

  • ClamAV: Pdf.Dropper.Agent-7204547-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Pdf.Dropper.Agent-7204547-0
  • Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
    Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/1a07a01a01a02/Hard-Frost-Inspector-Frost-4-by-R-D-Wingfield.pdf
    • http://muicuiu.dumb1.com/5a08a00a04a06a08/Mythos-Academy-Bundle-First-Frost-Touch-of-Frost-Kiss-of-Frost-amp-Dark-Frost-by-Jennifer-Estep.pdf
    • http://muicuiu.dumb1.com/2a06a06a06a07a00/Miss-Frost-Solves-a-Cold-Case-Jayne-Frost-1-by-Kristen-Painter.pdf
    • http://muicuiu.dumb1.com/2a06a09a05a02a04/Frost-at-Midnight-Detective-Jack-Frost-Prequel-4-by-James-Henry.pdf
    • http://muicuiu.dumb1.com/2a05a04a05a01a01/Jo-Frost-s-Confident-Baby-Care-What-You-Need-To-Know-For-The-First-Year-From-The-Uk-s-Most-Trusted-Nanny-by-Jo-Frost.pdf
    • http://muicuiu.dumb1.com/6a02a00a08a06a09/Miss-Frost-Saves-The-Sandman-A-Nocturne-Falls-Mystery-Jayne-Frost-3-by-Kristen-Painter.pdf
    • http://muicuiu.dumb1.com/1a07a05a03a02a05/Desire-in-Frost-Crystal-Frost-2-by-Alicia-Rades.pdf
    • http://muicuiu.dumb1.com/1a07a06a00a08a08/Glass-Frost-Frost-2-by-Liz-DeJesus.pdf
    • http://muicuiu.dumb1.com/8a02a07a02a02/Frost-Nixon-by-David-Frost.pdf
    • http://muicuiu.dumb1.com/3a09a03a07a05a09/Enchanted-Frost-Frost-8-by-Kailin-Gow.pdf
    • http://muicuiu.dumb1.com/1a03a02a07a08a09/Forever-Frost-Frost-2-by-Kailin-Gow.pdf
    • http://muicuiu.dumb1.com/1a01a07a04a06a00/Midnight-Frost-Frost-5-by-Kailin-Gow.pdf
    • http://muicuiu.dumb1.com/4a06a00a04a02a04/Frost-Fire-Frost-6-by-Kailin-Gow.pdf
    • http://muicuiu.dumb1.com/4a05a07a09a06a04/Frost-Poems-by-Robert-Frost.pdf
    • http://muicuiu.dumb1.com/2a07a09a06a09a01/Frost-Fire-Frost-6-by-Kailin-Gow.pdf
    • http://muicuiu.dumb1.com/2a09a07a01a00a09/Danann-Frost-Falls-from-Grace-Danann-Frost-1-by-Joanne-Valiukas.pdf
    • http://muicuiu.dumb1.com/2a05a07a06a05a05/Agamemnon-Frost-and-the-House-of-Death-Agamemnon-Frost-1-by-Kim-Knox.pdf
    • http://muicuiu.dumb1.com/3a07a05a02a09a08/Complete-Poems-Of-Robert-Frost-1949-by-Robert-Frost.pdf
    • http://muicuiu.dumb1.com/5a08a00a04a07a01/The-Darkest-Frost-Vol-2-The-Darkest-Frost-2-by-Tanya-Holmes.pdf
    • http://muicuiu.dumb1.com/2a03a03a01a05/The-Poetry-of-Robert-Frost-by-Robert-Frost.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.