MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
The PDF contains a large number of embedded URLs, identified by the PDF_SEO_LINK_FARM heuristic, suggesting a link farm or distribution mechanism. The ML classifier also flagged this PDF as malicious with high confidence. While no scripts were extracted, the sheer volume of links points to a malicious intent, likely to redirect users to malicious sites or to manipulate search engine results.
Machine Learning
- Nyx PDF Classifier malicious score 0.9920
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://loaminoo.linkpc.n
- http://loaminoo.linkpc.net/1090091099097091092/The-Legend-of-Sleepy-Hollow-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/2097092097097093/The-Legend-of-Sleepy-Hollow-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/4094094099095096/The-Legend-of-Sleepy-Hollow-and-Other-Tales-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/9094091096094091/Die-Legende-Von-Schlaf-Tal-The-Legend-of-Sleepy-Hollow-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/8091096095099092/A-Lenda-Do-Vale-Dormir-The-Legend-of-Sleepy-Hollow-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/5093098094098093/The-Legend-of-Sleepy-Hollow-and-the-Spectre-Bridegroom-From-the-Sketch-Book-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1091095091090091093/The-legend-of-Sleepy-Hollow-Found-Among-the-Papers-of-the-Late-Diedrich-Knickerbocker-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1090091096095097098/The-Legend-of-Sleepy-Hollow-and-Rip-Van-Winkle-by-Jack-Kelly.pdf
- http://loaminoo.linkpc.net/9092098092095099/Die-Legende-von-Sleepy-Hollow-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1090096098093098099/La-leyenda-de-Sleepy-Hollow-edici-n-biling-e-Libro-biling-e-English-Espa-ol-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1090091096095098097/Rip-Van-Winkle-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1099094090094090/Rip-Van-Winkle-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1090091096096099095/Washington-Irving-s-Rip-Van-Winkle-by-Thomas-Locker.pdf
- http://loaminoo.linkpc.net/8097099090095095/Murder-amp-Mystery-The-Hound-of-the-Baskervilles-Macbeth-The-Legend-of-Sleepy-Hollow-by-Monica-Rausch.pdf
- http://loaminoo.linkpc.net/8095091095091090/The-Sketch-Book-by-Washington-Irving-with-Sketch-of-the-Author-s-Life-and-Compositional-Critical-and-Explanatory-Notes-By-G-A-Chase-by-Washington-Irving.pdf
- http://loaminoo.linkpc.net/1096091091092095/Whiskey-Dreams-Sleepy-Hollow-1-by-Ranae-Rose.pdf
- http://loaminoo.linkpc.net/3095095092096094/The-Sleepy-Hollow-Family-Almanac-by-Kris-D-39-Agostino.pdf
- http://loaminoo.linkpc.net/3098091096098098/Sleepy-Hollow-and-the-Road-You-d-Better-Not-Follow-by-Donna-Davies.pdf
- http://loaminoo.linkpc.net/1090097090090098098/Colonial-Horrors-Sleepy-Hollow-and-Beyond-by-Graeme-Davis.pdf
- http://loaminoo.linkpc.net/4099096096095097/Spellbound-in-Sleepy-Hollow-A-Von-Tassel-Sisters-Anthology-by-Patricia-Eimer.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.