MALICIOUS
72
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The file is identified as malicious by ClamAV with the signature Pdf.Phishing.Roblox062100-9873116-0, indicating a phishing attempt related to Roblox. The document contains an embedded URL pointing to 'gaminggenerator.org', which likely serves as a lure for users seeking game-related content. The presence of a download button heuristic further supports the malicious intent of tricking users into downloading a payload.
Machine Learning
- Nyx PDF Classifier clean score 0.2248
Heuristics 4
-
ClamAV: Pdf.Phishing.Roblox062100-9873116-0 critical CLAMAV_DETECTIONClamAV detected this file as malware: Pdf.Phishing.Roblox062100-9873116-0
-
Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTONDocument contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://gaminggenerator.org/app/431946152/adventure-cheat-codes-roblox-id
- https://www.nema.go.ke/images/roblox-free-event-items.pdf
- http://force-seniorklub.dk/images/roblox-items-that-you-can-get-for-free-right-now.pdf
- http://ilijakom.com/images/hacks-roblox-xonnek.pdf
- http://bc97.de/images/how-did-someone-used-lots-of-hacks-in-roblox-jailbreak.pdf
- http://act.gr/images/caillou-hacks-roblox.pdf
- https://treeconsult.de/images/crystalsheepyoutube-how-to-get-free-robux.pdf
- http://batterikongen.no/images/hack-robux-apk.pdf
- http://www.jureclomas.com.ar/images/get-roblox-premium-free.pdf
- http://addair.co.uk/images/roblox-free-objet.pdf
- http://sintraelecol.org/images/roblox-free-models-viruses-keep-coming-back.pdf
- https://digitalsenseafrica.com.ng/images/how-to-be-a-hacker-on-roblox-jailbreak.pdf
- https://helsoft.se/images/roblox-stucid-fly-hack.pdf
- http://dsmpublishing.biz/images/ap-get-free-robux-and-tips-for-roblox-2021.pdf
- http://dream-house.de/images/free-robux-hack-xbox-one.pdf
- http://www.eurologistiki.gr/images/roblox-counter-strike-hacks.pdf
- http://iedarelief.us/images/best-roblox-hack-clients-2021.pdf
- https://ai-appenzell.ch/images/youtube-roblox-piano-hack.pdf
- https://eurekaaccounting.co.za/images/free-member-roblox.pdf
- http://alroglobal.com/images/robux-hack-top-no-survey.pdf
- http://g3galileo.com/images/working-at-a-pizza-place-roblox-hack-script.pdf
- https://seedungo.com/images/roblox-hacks-for-pet-simulator.pdf
- http://facingachild.org/images/cheat-roblox-aimbot-arsenal.pdf
- http://www.drent.se/images/roblox-how-to-get-dominus-hat-for-free.pdf
- https://ogm-goettingen.de/images/how-to-get-free-robux-on-roblox-fast-and-easy.pdf
- https://www.les-sp.org/images/free-exploits-for-roblox-mac.pdf
- http://xn----7sbq6amdnuk.xn--p1ai/images/free-robux-without-any-verification.pdf
- http://halitbayramoglu.com.tr/images/free-robux-only-today-ad.pdf
- http://news123.it/images/roblox-admin-commands-script-hack.pdf
- http://agrao.in/images/free-robux-claimrbx.pdf
- http://ecoleduchat-grenoble.fr/images/how-to-cheat-in-roblox-booga-booga.pdf
- http://en.wikipedia.org/wiki/MIT_License
Extracted artifacts 2
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
font_00_sfnt_off000373ee.bin38e86fc17b426174f1af476802b3696dc355de8a5676b77a6ed43c81927635f6 |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x373EE | 21588 bytes |
font_01_sfnt_off0003a333.bin22653cec2de5a90bd1214ffcd8db43a71e904ca701c9009cd1628af289867cfe |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x3A333 | 18296 bytes |
Open this report in the interactive analyzer, or submit your own file for analysis.