Malicious PDF — malware analysis report

Static analysis result for SHA-256 eaeba2827f09b873…

MALICIOUS

PDF

28.3 KB Created: 2019-05-01 18:55:50 +01:00 Authoring application: mPDF 5.7
MD5: fd55e37ffa82fdce09d4c7b62a1f0db7 SHA-1: 1ab440406383a98fff3ed4ba3bc166473bc01895 SHA-256: eaeba2827f09b873b11fd1c1c6deb65b1c9092a160322f4168f30ee9612f3dc2
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment

The PDF file contains a link farm with 31 external PDF links, as indicated by the PDF_SEO_LINK_FARM heuristic. The ML classifier also flagged the document as malicious with high confidence. The embedded URLs, although individually marked as benign, collectively form a pattern of SEO spam or a link farm designed to direct users to potentially malicious content. No scripts were extracted, and the document body was unreadable.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9695

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://leakscaioiobook.4dq.com/1d0c1d0c6d0c4d0c4d0c5d0c1/Love-with-Aftershocks-Liebe-kann-auch-Gl-ck-bringen-by-Emma-Smith.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c7d0c7d0c9d0c5d0c3/ASBO---Es-kann-auch-dir-passieren-by-Iain-Rob-Wright.pdf
    • http://leakscaioiobook.4dq.com/1d0c0d0c1d0c8d0c6d0c1d0c9/Auch-an-tr-ben-Tagen-kann-die-Sonne-scheinen-Er-besuchte-sie-im-Hospiz---50-Jahre-hatten-sie-sich-nicht-gesehen-by-Raimund-Seidl.pdf
    • http://leakscaioiobook.4dq.com/9d0c3d0c6d0c4d0c0d0c2/Der-kleine-F-rst-146---Adelsroman-Liebe-kann-so-schwierig-sein-by-Viola-Maybach.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c1d0c5d0c1d0c5d0c1/10-Kilo-abnehmen-in-einer-Woche-mit-Proteinen-Sie-verschaffen-auch-dem-gestressten-K-rper-gen-gend-Kraftstoffe-und-sorgen-gleichzeitig-daf-r-dass-sich-darin-nichts-berfl-ssiges-ansammeln-kann-by-I-Vemaro.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c7d0c9d0c5d0c6d0c4/Liebe-mich---Gesamtausgabe-Love-U-Liebe-und-Intrige-in-Hollywood-by-Kate-B-Jacobson.pdf
    • http://leakscaioiobook.4dq.com/5d0c4d0c5d0c9d0c1d0c9/Liebe-nur-in-Ausnahmef-llen-Tangled-3-by-Emma-Chase.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c1d0c6d0c1d0c4d0c0/Levini-Lemnii-Occulta-Naturae-Miracula-Wunderbarliche-Geheimnisse-Der-Natur-in-Des-Menschen-Liebe-Und-Seel-Auch-in-Vielen-Andern-Nat-rlichen-Dingen-ALS-Steinen-Ertzt-Gewechs-Und-Thieren-by-Levinus-Lemnius.pdf
    • http://leakscaioiobook.4dq.com/5d0c8d0c8d0c5d0c2d0c1/Portaltage-Hilfe-aus-dem-Kosmos-in-Freude-leben-und-Drama-Trauma-Karma-aufl-sen-Wir-sind-spirituelle-Wesen-die-aktuellen-Krisen-erfordern-ein-gemeinsames-Liebe-sich-wer-kann-by-Melanie-Miano.pdf
    • http://leakscaioiobook.4dq.com/9d0c8d0c8d0c5d0c1d0c6/Kein-Kapitalismus-ist-auch-keine-L-sung-Die-Krise-der-heutigen-konomie-oder-Was-wir-von-Smith-Marx-und-Keynes-lernen-k-nnen-by-Ulrike-Herrmann.pdf
    • http://leakscaioiobook.4dq.com/9d0c7d0c9d0c8d0c9d0c7/Punktlandung-in-Sachen-Liebe-by-Jennifer-E-Smith.pdf
    • http://leakscaioiobook.4dq.com/8d0c6d0c9d0c2d0c5d0c8/Punktlandung-in-Sachen-Liebe-by-Jennifer-E-Smith.pdf
    • http://leakscaioiobook.4dq.com/1d0c0d0c4d0c9d0c9d0c6d0c2/Be-with-you-Sammelband-by-Emma-Smith.pdf
    • http://leakscaioiobook.4dq.com/3d0c7d0c6d0c7d0c7d0c2/Undeniable-by-Emma-L-Smith.pdf
    • http://leakscaioiobook.4dq.com/2d0c9d0c2d0c1d0c5d0c8/Logan-Lost-by-Emma-L-Smith.pdf
    • http://leakscaioiobook.4dq.com/2d0c1d0c9d0c9d0c4d0c7/Escape-to-Love-Love-in-a-Hopeless-Place-2-by-Emma-Calin.pdf
    • http://leakscaioiobook.4dq.com/2d0c0d0c0d0c2d0c8d0c5/The-Great-Western-Beach-A-Memoir-of-a-Cornish-Childhood-Between-the-Wars-by-Emma-Smith.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c8d0c9d0c5d0c3d0c4/Lie-for-Love-Ver-nderte-Liebe-by-Amy-M-Soul.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c7d0c0d0c4d0c1d0c3/Love-with-Challenges-Liebe-mit-Hindernissen-by-Vanessa-Streng.pdf
    • http://leakscaioiobook.4dq.com/9d0c6d0c7d0c7d0c9d0c5/Aftershocks-by-Jess-Wells.pdf
    • http://leakscaioiobook.4dq.com/1d0c1d0c1d0c5d0c1d0c5d0c1/10-Kilo-abnehmen-in-einer-Woche-mit-Proteinen-Sie-verschaffen-auch-dem-gestressten-K-rper-gen-gend-Kraftstoffe-und-sorgen-gleichzeitig-daf-r-dass-sich-darin-nichts-berfl-ssiges-ansammeln-kann-by-I-V

Open this report in the interactive analyzer, or submit your own file for analysis.