MALICIOUS
64
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1204.002 Malicious Link
The PDF document contains a large number of external links, indicating a link farm or redirection strategy. The heuristic 'PDF_SEO_LINK_FARM' specifically flags this behavior, suggesting the document is designed to host numerous links to potentially malicious content. The primary IOC is the first external URI found, which likely leads to a secondary payload.
Machine Learning
- Nyx PDF Classifier clean score 0.0059
Heuristics 3
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://emailgoal.com/ZG93bmxvYWR8YXI2Wm5GbmMzeDhNVFkxTmpjeE1qTXdOWHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA/airplanes/angiogenesis/dork/vijaykanth.excaliburs/TWFuYXZlbnVlIFJvYmVydCBJbiBEaWNrIERhbmNlcmFyTWF.chandiramani
- https://natepute.com/advert/jagga-jasoos-telugu-dubbed-movies-exclusive-2/
- https://bunkerbook.de/upload/files/2022/07/pD1lUxT2BNNgW5myfvbu_02_eb7ff3943eca768f789c6a52a1fd61e7_file.pdf
- http://hotelthequeen.it/2022/07/02/orthodontics-and-dentofacial-orthopedics-mcnamara-pdf-download-link/
- https://pra-namorar.paineldemonstrativo.com.br/upload/files/2022/07/aWZOXsn84okmPUEnnBOe_02_0bcbcf55682106fcc40f01286983969c_file.pdf
- http://www.fondazioneterracina.it/wp-content/uploads/2022/07/charalee.pdf
- http://ourwebsitetest.es/2022/07/02/kuttyweb-tamil-movie-free-new-download-2013/
- https://kuudle.com/chernobyl-commando-pc-game-trainer-verified/
- https://community.tccwpg.com/upload/files/2022/07/c216W7UMD5ttxEIGYpbg_02_63b2920f41e623ed02d70a8dccfbcb3b_file.pdf
- https://vamaveche2mai.ro/wp-content/uploads/2022/07/Psim_Software_With_Crack_WORK_11l.pdf
- https://www.bywegener.dk/wp-content/uploads/2022/07/Hanuman_Chalisa_Vaah_Life_Ho_Toh_Aisi_Download_Mp3_INSTALL.pdf
- https://righttoexpress.com/upload/files/2022/07/b5GCNnWexB4upjhGJVx3_02_843c841d7930b7a78945c7005af392d5_file.pdf
- https://parsiangroup.ca/2022/07/amx-pwn-decompiler-download-portable/
- http://lalinea100x100.com/?p=43399
- https://skepticsguild.com/wp-content/uploads/2022/07/Zoikhem_Lab_Collection_Password_TOP.pdf
- https://spaziofeste.it/wp-content/uploads/IMyfone_Umate_6816_Incl_Patch_Free_REPACK_Download.pdf
- https://ayoolahraga.id/wp-content/uploads/2022/07/chebill.pdf
- http://amlakzamanzadeh.com/wp-content/uploads/2022/07/The_Guardians_Tamil_Dubbed_Movie_Free_Download.pdf
- https://www.deleksashop.com/wp-content/uploads/2022/07/Bob_Ong_Books_Pdf_File_Download_EXCLUSIVE.pdf
- https://it-labx.ru/wp-content/uploads/2022/07/eligre.pdf
- https://hoperestoredministries.com/wp-content/uploads/2022/07/Windows_Loader_213_By_Daz_WAT_Fix_rar.pdf
- http://www.tcpdf.org
- http://www.w3.org/1999/02/22-rdf-syntax-ns#
- http://purl.org/dc/elements/1.1/
- http://ns.adobe.com/xap/1.0/
- http://ns.adobe.com/pdf/1.3/
- http://ns.adobe.com/xap/1.0/mm/
- http://www.aiim.org/pdfa/ns/extension/
- http://www.aiim.org/pdfa/ns/schema#
- http://www.aiim.org/pdfa/ns/property#
- http://www.aiim.org/pdfa/ns/id/
Open this report in the interactive analyzer, or submit your own file for analysis.