Malicious PDF — malware analysis report

Static analysis result for SHA-256 fe40e37c60d6c04b…

MALICIOUS

PDF

28.5 KB Created: 2019-04-29 23:32:25 +01:00 Authoring application: mPDF 5.7
MD5: cce98044fb4e07796d31e74acf756d6e SHA-1: df526c0f878dde96b6efe500ea051ca10c7bded9 SHA-256: fe40e37c60d6c04b55ba994b7fc4e95d5f2fe3822c7f041df2179b74e9f04d20
90 Risk Score

Malware Insights

MITRE ATT&CK
T1566.002 Spearphishing Attachment T1204.002 Malicious Link

The PDF file contains a large number of embedded external links, as indicated by the PDF_SEO_LINK_FARM heuristic. The ML classifier also flagged this PDF as malicious with high confidence. The embedded URLs, while many are marked as benign, point to a domain that is likely used to host or redirect to malicious content. The primary attack pattern appears to be a link farm designed to manipulate search engine results or distribute malware.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9892

Heuristics 2

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://loaminoo.linkpc.net/7095096098097097/Seidel-s-Guide-to-Physical-Examination-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/7095096099094091/Student-Laboratory-Manual-for-Seidel-s-Guide-to-Physical-Examination-by-Jane-W-Ball.pdf
    • http://loaminoo.linkpc.net/8099091097099096/e-Study-Guide-for-Becoming-Qualitative-Researchers-by-Corrine-Glesne-ISBN-9780137047970-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/7095094091093094/e-Study-Guide-for-Structure-amp-Function-of-the-Body-by-Gary-A-Thibodeau-ISBN-9780323049665-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/5098094093091099/Theories-of-Personality-by-Feist-Feist-amp-ISBN-9780073191812--Study-Guide-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/9093090091090099/Essentials-of-Meteorology-by-C-Donald-Ahrens-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/8094091094090094/Studyguide-for-Intro-STATS-by-Veaux-ISBN-9780321826275-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/8094091093091096/Studyguide-for-Intro-STATS-by-Veaux-ISBN-9780321826244-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1091090096099092090/Study-Resource-for-Foerster-s-Financial-Management-Concepts-and-Applications-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1090098094094096093/Studyguide-for-Sociology-A-Global-Perspective-by-Ferrante-ISBN-9780495005629-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1091093092099092097/Outlines-amp-Highlights-for-Emergency-Care-by-Limmer-ISBN-0131593625-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1090090097096095097/Studyguide-for-Educational-Psychology-by-Woolfolk-Anita-ISBN-9780137144549-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/9096094091090091/The-Outlines-amp-Highlights-for-Atmosphere-An-Introduction-to-Meteorology-by-Frederick-K-Lutgens-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/9092097092090099/Studyguide-for-Beginning-Algebra-by-Schwitters-Kaufmann-amp-ISBN-9780840065896-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1090090094098093095/Studyguide-for-the-Essential-World-History-by-Duiker-William-J-ISBN-9781305645356-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1090090094098092099/Studyguide-for-the-Essential-World-History-by-Duiker-William-J-ISBN-9781305645363-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/1091097099091094096/Studyguide-for-Fundamentals-of-Chemical-Engineering-Thermodynamics-by-Matsoukas-Themis-ISBN-9780132693066-by-Cram101-Textbook-Reviews.pdf
    • http://loaminoo.linkpc.net/9095096093096098/Study-Guide-for-the-National-Counselor-Examination-by-Andrew-A-Helwig.pdf
    • http://loaminoo.linkpc.net/1091093099097096099/The-Mental-Status-Examination-in-Neurology-the-Mental-Status-Examination-in-Neurology-the-Mental-Status-Examination-in-Neurology-by-Richard-L-Strub.pdf
    • http://loaminoo.linkpc.net/7096090090098099/Adolescents-on-the-Autism-Spectrum-A-Parent-s-Guide-to-the-Cognitive-Social-Physical-and-Transition-Needs-ofTeen-agers-with-Autism-Spectrum-Disorders-by-Chantal-Sicile-Kira.pdf
    • http://loaminoo.linkpc.net/5098094093091099/Theories-of-Personality-by-Feist-Feist-amp-ISBN-9780073191812--Study-G

Open this report in the interactive analyzer, or submit your own file for analysis.