MALICIOUS
160
Risk Score
Machine Learning
- Nyx PDF Classifier malicious score 0.9999
Heuristics 4
-
ClamAV: Pdf.Phishing.TtraffRobotInstall-7605656-0 critical CLAMAV_DETECTIONClamAV detected this file as malware: Pdf.Phishing.TtraffRobotInstall-7605656-0
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTONDocument contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://sujivejeja.weebly.com/uploads/1/3/0/5/130539899/2fc3e.pdf In PDF document text
- http://hnhojjat.com/uploads/2020/01/28/doniruru.pdfIn PDF document text
- http://lerogezobo.desarrollo365.com/uploads/2020/01/27/0d4ff50d81eedca.pdfIn PDF document text
- http://meritcardmoapp.com/uploads/1/3/0/2/130288486/jebekebabelarida.pdfIn PDF document text
- http://mypccontractor.com/uploads/1/3/0/4/130476505/f8b602a6.pdfIn PDF document text
- http://scopehomeinspection.com/uploads/1/3/0/5/130543050/texirobefegijif.pdfIn PDF document text
- http://shaohuawu.com/uploads/1/3/0/5/130539645/tuvasikebidap.pdfIn PDF document text
- http://activervupholstery.weebly.com/uploads/1/3/0/5/130542781/8593797.pdfIn PDF document text
- https://patemitom.weebly.com/uploads/1/3/0/2/130289755/80aa909226c.pdfIn PDF document text
- http://tel.lechenienarkomanii-blagoveshhensk.ru/uploads/2020/01/28/affa85.pdfIn PDF document text
- http://pawz4acause.com/uploads/1/3/0/5/130588412/zegonawupokuduv.pdfIn PDF document text
- http://dinnerandacupcake.com/uploads/1/3/0/2/130287881/furumir_lubum_didam_mitipewaragujur.pdfIn PDF document text
- http://saytal.ru/uploads/2020/01/28/c39868828a0.pdfIn PDF document text
- http://dawiropaja.audiostart16.icu/uploads/2020/01/27/69023debfce.pdfIn PDF document text
- https://fazufabuparofer.weebly.com/uploads/1/3/0/5/130540928/fogumezukezo.pdfIn PDF document text
- http://cameliascandles.org/uploads/1/3/0/6/130640094/defiwabexuxopavegexe.pdfIn PDF document text
- http://macdesignthinking.com/uploads/1/3/0/6/130603740/59b1ea.pdfIn PDF document text
- http://misswcourtroom.com/uploads/1/3/0/5/130589252/438f977713abe.pdfIn PDF document text
- http://jeka.vipiski-online29.icu/uploads/2020/01/28/jofasikonewag_fawubi_jazoge_takujet.pdfIn PDF document text
- http://mel.dljatebja.com/uploads/2020/01/29/zapelewuzikife_vatinikolixe_dubasabuk.pdfIn PDF document text
- http://amaakarate.weebly.com/uploads/1/3/0/2/130270887/jabuwo_nugiz_vasezepiro_vizasiduforoxil.pdfIn PDF document text
- http://mrebeccaprattfortowncouncil.org/uploads/1/3/0/5/130551562/2836656.pdfIn PDF document text
- http://kefifoz.nhatminhphoto.online/uploads/2020/01/28/ligivurate-wedaxobosalat.pdfIn PDF document text
- http://tuzu.rusfermer.info/uploads/2020/01/29/kagef.pdfIn PDF document text
- http://blueskycenteronline.com/uploads/1/3/0/5/130589178/130589178.html#acdsee+ultimate+10+keygen+coreIn PDF document text
Extracted artifacts 1
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
font_00_sfnt_off000017eb.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x17EB | 8216 bytes |
SHA-256: d38fccb1e58ae3518ca42afeb01e2f019ca8ccfda5e83c33ffea259759c4b782 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.