Malicious PDF — malware analysis report

Static analysis result for SHA-256 ee95be888241068d…

MALICIOUS

PDF

13.6 KB Created: 2019-05-07 03:06:37 +01:00 Authoring application: mPDF 5.7
MD5: 71acdbe572df67df0bca1c54b1e1e915 SHA-1: a100aed37d37231ddc31ebbf4ae6e16b91e1f56c SHA-256: ee95be888241068d87541cdec1bef83c3e2878210c22368d612ffcc284ce248d
90 Risk Score

Malware Insights

MITRE ATT&CK
T1059.001 PowerShell

The PDF file was flagged by a machine learning classifier and contains a heuristic indicating a link farm with 21 external PDF links. While the document body is heavily obfuscated and unreadable, the presence of numerous links suggests an attempt to manipulate search engine results or distribute content through a large number of similarly structured PDFs. The primary technique observed is the creation of a link farm, likely for SEO manipulation or to host a large volume of content.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9102

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/4a02a08a09a06a03/Everything-We-Shut-Our-Eyes-To-by-Gene-Gant.pdf
    • http://muicuiu.dumb1.com/1a07a06a07a03a02/The-Thunder-in-His-Head-by-Gene-Gant.pdf
    • http://muicuiu.dumb1.com/1a07a06a07a01a02/The-Battle-for-Jericho-by-Gene-Gant.pdf
    • http://muicuiu.dumb1.com/5a08a01a07a03a08/The-Taste-of-The-Gant-by-Homeowners-and-Employees-of-The-Gant-Aspen.pdf
    • http://muicuiu.dumb1.com/5a08a01a08a00a07/Dynamism-and-Heroism-The-Memoirs-of-Cliff-Gant-by-Cliff-Gant.pdf
    • http://muicuiu.dumb1.com/2a05a08a04a01/The-Best-of-Gene-Wolfe-A-Definitive-Retrospective-of-His-Finest-Short-Fiction-by-Gene-Wolfe.pdf
    • http://muicuiu.dumb1.com/4a07a07a02a08a04/Three-Men-on-a-Bender-by-Patrick-Rossi.pdf
    • http://muicuiu.dumb1.com/1a04a07a09a06/Refund-by-Karen-E-Bender.pdf
    • http://muicuiu.dumb1.com/5a03a02a07a03/Soldiers-and-Secrets-by-E-Jon-Gant.pdf
    • http://muicuiu.dumb1.com/5a08a01a07a09a00/Gant-the-Ant-by-Brad-Closson.pdf
    • http://muicuiu.dumb1.com/1a01a04a00a01a02/Giraffe-and-Bird-by-Rebecca-Bender.pdf
    • http://muicuiu.dumb1.com/6a08a00a09a04a04/I-Am-the-Elephant-in-the-Room-by-Jack-Bender.pdf
    • http://muicuiu.dumb1.com/4a01a02a09a02a09/An-Invisible-Sign-of-My-Own-by-Aimee-Bender.pdf
    • http://muicuiu.dumb1.com/4a00a03a09a02a07/Forgotten-Sweethearts-by-Melissa-Bender.pdf
    • http://muicuiu.dumb1.com/2a04a01a07a04a09/An-Invisible-Sign-of-My-Own-by-Aimee-Bender.pdf
    • http://muicuiu.dumb1.com/6a02a07a05a00a02/The-Tomorrow-Gene-The-Tomorrow-Gene-1-by-Sean-Platt.pdf
    • http://muicuiu.dumb1.com/5a08a01a07a04a03/Not-Wanted-in-Hollywood-by-Leonie-Gant.pdf
    • http://muicuiu.dumb1.com/5a08a01a06a07a09/Not-Famous-in-Hollywood-by-Leonie-Gant.pdf
    • http://muicuiu.dumb1.com/5a08a01a07a03a06/Not-Talented-in-Hollywood-by-Leonie-Gant.pdf
    • http://muicuiu.dumb1.com/5a08a01a08a00a08/The-New-Girl-at-Pen-Y-Gant-by-Dorothea-Moore.pdf
    • http://muicuiu.dumb1.com/6a08a00a09a04a04/I-Am-t

Open this report in the interactive analyzer, or submit your own file for analysis.