MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
T1204.002 Malicious Link
The PDF contains a large number of embedded links to external PDF files, hosted on the domain xiixmcuin.linkpc.net. This heuristic firing, combined with the ML classifier, indicates a malicious intent to redirect users to potentially harmful content. No scripts were extracted, and the document body was heavily obfuscated, limiting further analysis of the specific lure.
Machine Learning
- Nyx PDF Classifier malicious score 0.9922
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://xiixmcuin.lin
- http://xiixmcuin.linkpc.net/4205205204201209/Murder-in-the-Arts-District-Chanse-MacLeod-7-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/4205204208208201/Murder-In-The-Rue-St-Ann-Chanse-MacLeod-2-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/9202209200202209/Wanna-Wrestle-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/4205204209209201/Who-Dat-Whodunnit-Scotty-Bradley-5-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/3200202208201206/Jackson-Square-Jazz-Scotty-Bradley-2-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/1201206209208200/Shadows-of-the-Night-Queer-Tales-of-the-Uncanny-and-Unusual-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/2207209203208202/Florida-Happens-Tales-of-Mystery-Mayhem-and-Suspense-from-the-Sunshine-State-by-Greg-Herren.pdf
- http://xiixmcuin.linkpc.net/1201202200205207203/The-Lake-District-Murder-Superintendent-Meredith-1-by-John-Bude.pdf
- http://xiixmcuin.linkpc.net/5205205203203209/The-Hunger-Games---Tributes-Career-Tributes-Quarter-Quell-Tributes-Tributes-from-District-1-Tributes-from-District-11-Victors-Brutus-Career-Tribute-Cashmere-Cato-Clove-District-1-Female-Glimmer-Gloss-Marvel-Beetee-Blight-by-Source-Wikia.pdf
- http://xiixmcuin.linkpc.net/9209205204209203/Barton-Village-Murders-Chief-Superintendent-Fred-Parker-s-Crime-amp-Murder-Imvestigations-in-the-Lake-District-by-Millie-Aveyard.pdf
- http://xiixmcuin.linkpc.net/1206207203202200/Royal-Murder-The-Deadly-Intrigue-of-Ten-Sovereigns-by-Elizabeth-MacLeod.pdf
- http://xiixmcuin.linkpc.net/3208206202208209/A-Quantum-Murder-Greg-Mandel-2-by-Peter-F-Hamilton.pdf
- http://xiixmcuin.linkpc.net/4205208203202201/A-Quantum-Murder-Greg-Mandel-2-by-Peter-F-Hamilton.pdf
- http://xiixmcuin.linkpc.net/3209209206204202/Opposites-Attract-includes-MacLeod-2-7-de-Piaget-MacLeod-6-5-by-Lynn-Kurland.pdf
- http://xiixmcuin.linkpc.net/2202205201208203/Christmas-Spirits-includes-MacLeod-2-8-de-Piaget-MacLeod-3-5-by-Lynn-Kurland.pdf
- http://xiixmcuin.linkpc.net/7205203207205205/The-Traveller-MacLeod-2-6-de-Piaget-MacLeod-7-5-by-Lynn-Kurland.pdf
- http://xiixmcuin.linkpc.net/1204200201203206/The-Very-Thought-of-You-MacLeod-2-de-Piaget-MacLeod-4-by-Lynn-Kurland.pdf
- http://xiixmcuin.linkpc.net/2200204209209205/Much-Ado-in-the-Moonlight-MacLeod-5-de-Piaget-MacLeod-12-by-Lynn-Kurland.pdf
- http://xiixmcuin.linkpc.net/1208209204209206/With-Every-Breath-MacLeod-7-de-Piaget-MacLeod-14-by-Lynn-Kurland.pdf
- http://xiixmcuin.linkpc.net/7205203207205206/MacLeod-s-Clinical-Examination-by-John-MacLeod.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.