MALICIOUS
92
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains a large number of embedded URLs, identified as a link farm. While the extracted document body is heavily corrupted, the heuristic 'PDF_SEO_LINK_FARM' indicates the primary function is to link to numerous external resources. The ML classifier also flagged the document as malicious, supporting the assessment that this is not a benign document. The IOCs are the URLs found within the document.
Machine Learning
- Nyx PDF Classifier malicious score 0.9891
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://loaminoo.linkpc.net/1098098092090092/Dark-Leopard-Magic-by-Sapphire-Phelan.pdf
- http://loaminoo.linkpc.net/2092091097090092/Meeting-Magic-Next-Door-2-by-Nina-Kiriki-Hoffman.pdf
- http://loaminoo.linkpc.net/4092095094095092/Out-of-This-World-The-Story-of-Muse-Mark-Beaumont-by-Mark-Beaumont.pdf
- http://loaminoo.linkpc.net/2094099090096098/Love-Nina-Despatches-from-Family-Life-by-Nina-Stibbe.pdf
- http://loaminoo.linkpc.net/7091098093091092/Visionary-Landscapes-The-Films-Of-Nina-Danino-by-Nina-Danino.pdf
- http://loaminoo.linkpc.net/2095095098095094/Harnessing-Air-Magic-A-Witch-s-Guide-to-Elemental-Magic-Elemental-Witchcraft-and-Magic-Book-1-by-Viivi-James.pdf
- http://loaminoo.linkpc.net/3098092093092090/Push-by-Sapphire.pdf
- http://loaminoo.linkpc.net/1093093092098097/E-by-Matt-Beaumont.pdf
- http://loaminoo.linkpc.net/4098091092090098/I-Like-Myself-by-Karen-Beaumont.pdf
- http://loaminoo.linkpc.net/3091096098095099/The-Sapphire-Sea-by-David-Andrews.pdf
- http://loaminoo.linkpc.net/4095090092098099/Under-The-Sun-Stories-from-Sapphire-Cay-2-by-R-J-Scott.pdf
- http://loaminoo.linkpc.net/4094099096091090/Without-Due-Process-J-P-Beaumont-10-by-J-A-Jance.pdf
- http://loaminoo.linkpc.net/2092094093094094/The-More-Things-Change-by-K-C-Beaumont.pdf
- http://loaminoo.linkpc.net/5095096099094095/Sapphire-Blue-by-Kerstin-Gier.pdf
- http://loaminoo.linkpc.net/1099097098091091/Being-Familiar-With-a-Witch-by-Sapphire-Phelan.pdf
- http://loaminoo.linkpc.net/1096096093095093/Nina-Hagen-That-s-Why-the-Lady-is-a-Punk-by-Nina-Hagen.pdf
- http://loaminoo.linkpc.net/7090090090097090/Fighting-Back-Nina-Fredricks-by-Nina-Fredricks.pdf
- http://loaminoo.linkpc.net/2090098099092094/Betrayal-Of-Trust-J-P-Beaumont-20-by-J-A-Jance.pdf
- http://loaminoo.linkpc.net/4095090094099093/Ring-in-the-Dead-J-P-Beaumont-20-5-by-J-A-Jance.pdf
- http://loaminoo.linkpc.net/2098096099095097/Dismissed-with-Prejudice-J-P-Beaumont-7-by-J-A-Jance.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.