MALICIOUS
92
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic, which are disguised as book titles. These links all point to the same domain, weisncio.myhome.cx, suggesting a coordinated effort to redirect users to potentially malicious content. The ML_NYX_PDF_MALICIOUS heuristic further supports the malicious nature of this file. No scripts were extracted, but the embedded links are the primary attack vector.
Machine Learning
- Nyx PDF Classifier malicious score 0.9800
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://weisncio.myhome.cx/1625628626628627/Cosa-Nostra-A-History-of-the-Sicilian-Mafia-by-John-Dickie.pdf In PDF document text
- http://weisncio.myhome.cx/7622623628627624/Mafia-Republic-Italy-s-Criminal-Curse-Cosa-Nostra-ndrangheta-and-Camorra-from-1946-to-the-Present-by-John-Dickie.pdfIn PDF document text
- http://weisncio.myhome.cx/9626627625621620/Sicily-A-Short-History-from-the-Greeks-to-Cosa-Nostra-by-John-Julius-Norwich.pdfIn PDF document text
- http://weisncio.myhome.cx/1627625622625/The-Honoured-Society-The-Sicilian-Mafia-Observed-by-Norman-Lewis.pdfIn PDF document text
- http://weisncio.myhome.cx/4627629623626622/Sicilian-Nights-The-Sicilian-Boss-s-Mistress-The-Sicilian-s-Baby-Bargain-by-Penny-Jordan.pdfIn PDF document text
- http://weisncio.myhome.cx/7622624621620627/Dickie-Dick-Dickens---Dickie-gegen-Chicago-by-Rolf-A-Becker.pdfIn PDF document text
- http://weisncio.myhome.cx/7622624621627620/Dirty-Dickie-s-Dynamite-Dick-Book-I-Dickie-at-18-by-V-J-Leone.pdfIn PDF document text
- http://weisncio.myhome.cx/7622624622623621/Darkest-Italy-The-Nation-and-Stereotypes-of-the-Mezzogiorno-1860-1900-by-John-Dickie.pdfIn PDF document text
- http://weisncio.myhome.cx/3623628622629624/Sicilian-Splendors-Discovering-the-Secret-Places-That-Speak-to-the-Heart-by-John-Keahey.pdfIn PDF document text
- http://weisncio.myhome.cx/9620620628628626/Her-Russian-Mafia-Captor-Volkov-Mafia-2-by-Bella-Rose.pdfIn PDF document text
- http://weisncio.myhome.cx/9620620628622624/Her-Russian-Mafia-Boss-Volkov-Mafia-1-by-Bella-Rose.pdfIn PDF document text
- http://weisncio.myhome.cx/7624623624621626/Vendetta-The-Mafia-Judge-Falcone-and-the-Quest-for-Justice-by-John-Follain.pdfIn PDF document text
- http://weisncio.myhome.cx/9626627627622621/Who-We-Are-la-nostra-autobiografia-by-One-Direction.pdfIn PDF document text
- http://weisncio.myhome.cx/9626627625621622/Casa-Nostra-by-Chris-Sarracini.pdfIn PDF document text
- http://weisncio.myhome.cx/3628627629624/Terra-Nostra-by-Carlos-Fuentes.pdfIn PDF document text
- http://weisncio.myhome.cx/5625625620622628/Dio-non-grande-Come-la-religione-avvelena-ogni-cosa-by-Christopher-Hitchens.pdfIn PDF document text
- http://weisncio.myhome.cx/9626627626620628/Terra-Nostra-Tome-II-by-Carlos-Fuentes.pdfIn PDF document text
- http://weisncio.myhome.cx/6620622623623621/Cosa-accadde-in-Per-Le-Cronache-di-Magnus-Bane-1-by-Cassandra-Clare.pdfIn PDF document text
- http://weisncio.myhome.cx/2629622627623624/The-History-of-John-Bull-by-John-Arbuthnot.pdfIn PDF document text
- http://weisncio.myhome.cx/7622624621622621/80-Not-Out-by-Dickie-Bird.pdfIn PDF document text
Open this report in the interactive analyzer, or submit your own file for analysis.