Malicious PDF — malware analysis report

Static analysis result for SHA-256 f9754a3c1a3ca0ea…

MALICIOUS

PDF

12.9 KB Created: 2019-04-30 18:39:34 +01:00 Authoring application: mPDF 5.7
MD5: 739bb22e17524a51db150ba2d581e950 SHA-1: c63796602bdfd51e89fc7d608c288ac225bf7c79 SHA-256: f9754a3c1a3ca0eaaff427ac7578ede93fdeab5281b3720eec7c9994f399497f
60 Risk Score

Malware Insights

MITRE ATT&CK
T1059.001 PowerShell

The PDF file contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic, pointing to various PDF documents hosted on loaminoo.linkpc.net. While the URLs themselves are labeled as confirmed benign, the sheer volume and structure suggest a potential attempt at SEO manipulation or a distribution mechanism for malicious content. No scripts were extracted, and the document body was unreadable, limiting further analysis.

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/1097097098090090/Reapers-with-Issues-by-H-E-Ellis.pdf
    • http://loaminoo.linkpc.net/3099095091090/The-Reapers-are-the-Angels-Reapers-1-by-Alden-Bell.pdf
    • http://loaminoo.linkpc.net/4098093099094093/The-Reapers-Are-the-Angels-Reapers-1-by-Alden-Bell.pdf
    • http://loaminoo.linkpc.net/6090099093095099/Contemporary-Issues---Issues-in-Drug-Abuse-by-Heather-Moehn-Mirman.pdf
    • http://loaminoo.linkpc.net/5092097094092/The-Reapers-The-Hunted-1-by-Ali-Winters.pdf
    • http://loaminoo.linkpc.net/4099090093094096/The-Reapers-Are-the-Angels-by-Alden-Bell.pdf
    • http://loaminoo.linkpc.net/7098092098098093/Reapers-Thirteen-Brothers-by-tsubame.pdf
    • http://loaminoo.linkpc.net/3092099095094094/The-Reapers-are-the-Angels-by-Alden-Bell.pdf
    • http://loaminoo.linkpc.net/2090090099094094/Reapers-Inc---Brigit-s-Cross-by-B-L-Newport.pdf
    • http://loaminoo.linkpc.net/4093091095090099/Chance-God-s-Reapers-MC-1-by-Kara-Parker.pdf
    • http://loaminoo.linkpc.net/2098094095094090/Reapers-The-Druid-Series-1-by-Marata-Eros.pdf
    • http://loaminoo.linkpc.net/3099095091091094/Reaper-s-Stand-Reapers-MC-4-by-Joanna-Wylde.pdf
    • http://loaminoo.linkpc.net/2090091097/Reaper-s-Fall-Reapers-MC-5-by-Joanna-Wylde.pdf
    • http://loaminoo.linkpc.net/7094097099099/The-Reapers-Charlie-Parker-7-by-John-Connolly.pdf
    • http://loaminoo.linkpc.net/2098090095094095/Reaper-s-Vow-Shadow-Reapers-2-by-Sarah-McCarty.pdf
    • http://loaminoo.linkpc.net/5094092090093091/Char-Black-Reapers-MC-4-by-Jade-Kuzma.pdf
    • http://loaminoo.linkpc.net/2090090091093091/Reaper-s-Property-Reapers-MC-1-by-Joanna-Wylde.pdf
    • http://loaminoo.linkpc.net/5095096091099094/Reaper-s-Legacy-Reapers-MC-2-by-Joanna-Wylde.pdf
    • http://loaminoo.linkpc.net/6097099092092/Devil-s-Game-Reapers-MC-3-by-Joanna-Wylde.pdf
    • http://loaminoo.linkpc.net/3099098096097098/Reaper-s-Fire-Reapers-MC-6-by-Joanna-Wylde.pdf
    • http://loaminoo.linkpc.net/3099095091091094/Reaper-s-Stand-Reapers-MC-4-by-Joanna-Wyl

Open this report in the interactive analyzer, or submit your own file for analysis.