MALICIOUS
92
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains a large number of embedded URLs, identified as a link farm, which is a common tactic for SEO manipulation or distributing malicious content. While the specific URLs extracted were labeled as benign, the sheer volume and the heuristic firing indicate a suspicious pattern. The ML classifier also flagged this PDF as malicious with high confidence.
Machine Learning
- Nyx PDF Classifier malicious score 0.9920
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://xiixmcuin.linkpc.net/1200202207205208203/A-Visit-from-Saint-Nicholas-Twas-the-Night-Before-Christmas-with-Original-1849-Illustrations-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/1200204202200207204/A-Visit-from-Saint-Nicholas-eBook-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/6201206203200207/A-Visit-From-Saint-Nicholas-Illustrated-Vintage-Series-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/7205204206208207/Twas-the-Night-Before-Christmas---The-Illustrated-Treasury-Edition-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/6208206206202203/Twas-the-Night-Before-Christmas-by-OnceUponAnApp-OnceUponAnApp-Puzzle-Pictures-Companion-Books-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/5209202205209200/A-Visit-from-St-Nicholas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/7208200201204200/Night-Before-Christmas-Rubber-Stamp-Storybook-and-Christmas-Crafts-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/2200205201205207/The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/6208200207203206/The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/8202202204207208/The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/4200207205205208/The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/8203205204207202/The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/7204203207209200/Puzzles-to-Go-The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/6200203200203200/The-Night-Before-Christmas-Board-Book-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/8207202207202207/Die-Nacht-vor-Weihnachten-The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/1200200206208202202/Amazing-Maze-Adventures-The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/1201203209207203204/The-Everett-Shinn-illustrated-edition-of-The-Night-Before-Christmas-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/1200207203207207203/My-First-Night-Before-Christmas-A-Touch-amp-Feel-amp-Sparkle-Book-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/1200208202201206200/The-night-before-Christmas-lateinisch-englisch-und-deutsch-Beata-illa-nox-by-Clement-C-Moore.pdf
- http://xiixmcuin.linkpc.net/5203201202209204/A-CHRISTMAS-CAROL-In-Prose-BEING-A-GHOST-STORY-OF-CHRISTMAS-With-68-original-manuscript-pages-with-1843-and-1905-edition-illustrations-by-Charles-Dickens.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.