Malicious PDF — malware analysis report

Static analysis result for SHA-256 f89b3ea16a6aa3a7…

MALICIOUS

PDF

9.5 KB Created: 2019-04-30 04:51:27 +01:00 Authoring application: mPDF 5.7
MD5: 52698bac11139798631716cdf9e54968 SHA-1: a70cc7dc0e8ee2d7fa3c4c45dc4d969a3c254a82 SHA-256: f89b3ea16a6aa3a7b4a6cfd3f1ce82578467a942085643ed5275c9b7d956b9cc
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1059.001 PowerShell

The PDF file contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic. These links point to various book titles hosted on the same domain, suggesting a potential SEO manipulation scheme or a distribution point for malicious content. While no scripts were extracted, the sheer volume of links and the critical heuristic firing indicate a malicious intent to direct users to external resources. The document body itself is heavily obfuscated and contains repeated URLs.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/9098093096090091/The-Coffer-Dams-by-Kamala-Markandaya.pdf
    • http://loaminoo.linkpc.net/1093098090094096/A-Handful-of-Rice-by-Kamala-Markandaya.pdf
    • http://loaminoo.linkpc.net/7092097092098096/Cultural-Imperialism-and-the-Indo-English-Novel-Genre-and-Ideology-in-R-K-Narayan-Anita-Desai-Kamala-Markandaya-and-Salman-Rushdie-by-Fawzia-Afzal-Khan.pdf
    • http://loaminoo.linkpc.net/2090090093097095/Nectar-Nectar-1-by-D-D-Prince.pdf
    • http://loaminoo.linkpc.net/4097096090091099/Going-to-Sea-in-a-Sieve-by-Danny-Baker.pdf
    • http://loaminoo.linkpc.net/1099099094099095/Nectar-from-a-Stone-by-Jane-Guill.pdf
    • http://loaminoo.linkpc.net/1092093091095096/Ganesha-by-Kamala-Chandrakant.pdf
    • http://loaminoo.linkpc.net/1090097096097098/The-Girl-in-the-Garden-by-Kamala-Nair.pdf
    • http://loaminoo.linkpc.net/7093095093094090/Tales-of-Maryada-Rama-by-Kamala-Chandrakant.pdf
    • http://loaminoo.linkpc.net/7093095092092093/Dasharatha-The-Story-of-Rama-s-Father-by-Kamala-Chandrakant.pdf
    • http://loaminoo.linkpc.net/7093095093095093/Ancestors-of-Rama-A-Noble-Inheritance-by-Kamala-Chandrakant.pdf

Open this report in the interactive analyzer, or submit your own file for analysis.