Malicious PDF — malware analysis report

Static analysis result for SHA-256 e93e65391603b3d3…

MALICIOUS

PDF

19.0 KB Created: 2019-05-24 13:47:33 +01:00 Authoring application: mPDF 5.7
MD5: 6efa240377438994d6b6060c26940720 SHA-1: ab9be1921967fa4366e535032b0b055fd5ff3660 SHA-256: e93e65391603b3d311d777a0b8f7a5b54844f2768e3b3cf1b33bbf254e7bf1ae
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment T1059.001 PowerShell

The PDF file was identified as malicious due to a critical heuristic firing for a large number of embedded external links. These links, such as http://cefasfese.4pu.com/7736732737733739/History-of-Paradise-The-Garden-of-Eden-in-Myth-and-Tradition-by-Jean-Delumeau.pdf, suggest a link farm or a method to distribute further malicious content. No scripts were extracted, and the document body was truncated, limiting further analysis of the specific lure.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://cefasfese.4pu.com/7736732737733739/History-of-Paradise-The-Garden-of-Eden-in-Myth-and-Tradition-by-Jean-Delumeau.pdf
    • http://cefasfese.4pu.com/4735733738738739/An-Eden-of-Sorts-The-Natural-History-of-My-Feral-Garden-by-John-Hanson-Mitchell.pdf
    • http://cefasfese.4pu.com/7736732737738731/L-avenir-de-Dieu-by-Jean-Delumeau.pdf
    • http://cefasfese.4pu.com/7736732737734737/La-seconde-gloire-de-Rome-by-Jean-Delumeau.pdf
    • http://cefasfese.4pu.com/7736732737735732/Naissance-Et-Affirmation-de-La-Reforme-by-Jean-Delumeau.pdf
    • http://cefasfese.4pu.com/7736732737734732/Catholicism-Between-Luther-and-Voltaire-A-New-View-of-the-Counter-Reformation-by-Jean-Delumeau.pdf
    • http://cefasfese.4pu.com/7736732737733738/Sin-and-Fear-The-Emergence-of-a-Western-Guilt-Culture-13th-18th-Centuries-by-Jean-Delumeau.pdf
    • http://cefasfese.4pu.com/2734739739730732/Drawn-From-Paradise-The-Discovery-Art-and-Natural-History-of-the-Birds-of-Paradise-by-David-Attenborough.pdf
    • http://cefasfese.4pu.com/2734731739736732/Garden-of-Eden-by-Kate-Cowan.pdf
    • http://cefasfese.4pu.com/1736739737734734/The-Dark-Garden-by-Eden-Bradley.pdf
    • http://cefasfese.4pu.com/6730737737738731/The-Garden-of-Truth-The-Vision-and-Promise-of-Sufism-Islam-s-Mystical-Tradition-by-Seyyed-Hossein-Nasr.pdf
    • http://cefasfese.4pu.com/2738735736736730/The-Garden-of-Fate-The-Eden-Chronicles-3-by-L-L-Hunter.pdf
    • http://cefasfese.4pu.com/3730734736739737/Torture-in-the-Garden-of-Eden-by-David-Smith.pdf
    • http://cefasfese.4pu.com/1734739735735734/Walk-to-Paradise-Garden-by-John-B-Campbell.pdf
    • http://cefasfese.4pu.com/6734735735733736/The-Garden-of-Eden-and-Other-Criminal-Delights-by-Faye-Kellerman.pdf
    • http://cefasfese.4pu.com/2737730736731732/Who-Told-You-That-You-Were-Naked-A-Refreshing-Reexamination-of-the-Garden-of-Eden-by-William-Combs.pdf
    • http://cefasfese.4pu.com/2739736732737733/Another-Fine-Myth-Myth-Conceptions-Myth-Adventures-1-2-by-Robert-Lynn-Asprin.pdf
    • http://cefasfese.4pu.com/2739735733734739/Myth-Direction-Hit-or-Myth-Myth-Adventures-3-4-by-Robert-Lynn-Asprin.pdf
    • http://cefasfese.4pu.com/4738739737739737/West-of-Eden-An-American-Place-by-Jean-Stein.pdf
    • http://cefasfese.4pu.com/5730735737737733/The-Templars-History-amp-Myth-by-Michael-Haag.pdf
    • http://cefasfese.4pu.com/2734739739730732/Drawn-From-Paradi

Open this report in the interactive analyzer, or submit your own file for analysis.