Malicious PDF — malware analysis report

Static analysis result for SHA-256 f06055069c5938ef…

MALICIOUS

PDF

17.2 KB Created: 2019-05-01 07:45:12 +01:00 Authoring application: mPDF 5.7
MD5: 87eb77d10695279f73b3d2d643d422ca SHA-1: 773af1c3142b33750bc40d4e82e1e951db5fcf6f SHA-256: f06055069c5938ef22b6fbafa1da47b81f5698d69731b5c04897a7cd498a1eb9
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1204.002 Malicious Link

The PDF document contains a large number of embedded links to external PDF files, as indicated by the PDF_SEO_LINK_FARM heuristic. While most of these links were classified as benign, the sheer volume and the nature of the heuristic suggest a malicious intent, possibly for SEO poisoning or to drive traffic to potentially malicious content. The ML classifier also flagged this PDF as malicious with high confidence.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9806

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://muicuiu.dumb1.com/2a06a08a06a00a01/To-Venice-With-Love-Venetian-Chronicles-1-by-Kiki-Leach.pdf
    • http://muicuiu.dumb1.com/2a04a01a02a02a05/Her-Royal-Seduction-Royal-Chronicles-of-Denmark-1-by-Kiki-Leach.pdf
    • http://muicuiu.dumb1.com/8a03a05a07a03a01/Inflamed-Shadow-Riders-MC-1-by-Kiki-Leach.pdf
    • http://muicuiu.dumb1.com/5a00a07a09a08a09/Venice-and-Antiquity-The-Venetian-Sense-of-the-Past-by-Patricia-Fortini-Brown.pdf
    • http://muicuiu.dumb1.com/8a00a07a01a04a04/The-Painter-s-Apprentice-A-Novel-of-16th-Century-Venice-Venetian-Artisans-1-by-Laura-Morelli.pdf
    • http://muicuiu.dumb1.com/7a06a00a08a09a07/Marienbad-My-Love-Vol-1-by-Mark-Leach.pdf
    • http://muicuiu.dumb1.com/8a07a01a09a01/A-Venetian-Affair-A-True-Tale-of-Forbidden-Love-in-the-18th-Century-by-Andrea-di-Robilant.pdf
    • http://muicuiu.dumb1.com/9a05a05a05a09a04/Love-Die-Neighbor-Kiki-Lowenstein-Scrap-n-Craft-Mystery-0-by-Joanna-Campbell-Slan.pdf
    • http://muicuiu.dumb1.com/4a08a09a03a05a06/A-Thief-in-Venice-Nights-in-Venice-1-by-Tara-Crescent.pdf
    • http://muicuiu.dumb1.com/1a08a08a08a06a04/Venice-Vampyr-The-First-2-Novellas-Venice-Vampyr-1-2-by-Tina-Folsom.pdf
    • http://muicuiu.dumb1.com/2a09a00a09a07a00/Worth-The-Risk-by-K-M-Leach.pdf
    • http://muicuiu.dumb1.com/1a05a00a09a06a05/The-Last-King-of-Lydia-by-Tim-Leach.pdf
    • http://muicuiu.dumb1.com/2a09a00a03a08a09/The-Venetian-Bargain-by-Marina-Fiorato.pdf
    • http://muicuiu.dumb1.com/1a08a01a03a05a06/The-Thing-at-the-Foot-of-the-Bed-by-Maria-Leach.pdf
    • http://muicuiu.dumb1.com/4a00a03a00a03a03/The-Venetian-Empire-A-Sea-Voyage-by-Jan-Morris.pdf
    • http://muicuiu.dumb1.com/2a04a09a04a04a04/The-Venetian-Contract-by-Marina-Fiorato.pdf
    • http://muicuiu.dumb1.com/5a00a07a09a07a07/Guillaume-de-Machaut-by-Elizabeth-Eva-Leach.pdf
    • http://muicuiu.dumb1.com/1a00a05a09a05a07a05/Hamada-Potter-by-Bernard-Leach.pdf
    • http://muicuiu.dumb1.com/5a08a03a06a02a00/Venetian-Masque-by-Rafael-Sabatini.pdf
    • http://muicuiu.dumb1.com/2a07a07a01a09/Bruce-and-the-Road-to-Courage-by-Gale-Leach.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.