MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1204.002 Malicious Link
The PDF contains a large number of embedded links pointing to external PDF files, a technique often used for SEO poisoning or to distribute malware. The ML classifier strongly indicated maliciousness, and the PDF_SEO_LINK_FARM heuristic identified a mass external link farm. While the individual linked PDFs were marked as benign, the overall structure and the heuristic firing suggest a malicious intent to redirect users. No scripts were extracted from this sample.
Machine Learning
- Nyx PDF Classifier malicious score 0.9931
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://cefasfese.4pu.com/3738738735732730/The-King-in-Yellow-by-Robert-W-Chambers.pdf
- http://cefasfese.4pu.com/1736731734730732/The-King-in-Yellow-by-Robert-W-Chambers.pdf
- http://cefasfese.4pu.com/3738732738737/The-King-in-Yellow-and-Other-Horror-Stories-by-Robert-W-Chambers.pdf
- http://cefasfese.4pu.com/3732737730730730/The-Yellow-Sign-amp-Other-Stories-by-Robert-W-Chambers.pdf
- http://cefasfese.4pu.com/1731738731738731732/Chambers-s-Edinburgh-Journal-No-458-by-Robert-Chambers.pdf
- http://cefasfese.4pu.com/1730735734731739735/Chambers-s-Edinburgh-Journal-No-455-by-Robert-Chambers.pdf
- http://cefasfese.4pu.com/8735739735737733/Police-by-Robert-W-Chambers.pdf
- http://cefasfese.4pu.com/1738730737738735/Purple-Green-and-Yellow-by-Robert-Munsch.pdf
- http://cefasfese.4pu.com/1731735730737730733/Messerschmitt-Me262A-Schwalbe-Yellow-Series-by-Robert-Peczkowskim.pdf
- http://cefasfese.4pu.com/4734730730736732/Children-of-the-Yellow-Kid-The-Evolution-of-the-American-Comic-Strip-by-Robert-C-Harvey.pdf
- http://cefasfese.4pu.com/1731737730730738731/Chambers-Crossword-Lists---New-Edition-by-Chambers-Dictionaries.pdf
- http://cefasfese.4pu.com/1731735730737734731/Messerschmitt-Me-262-A-Schwalbe-Mushroom-Model-Magazine-Special-Yellow-Series-6105-by-Robert-P-czkowski.pdf
- http://cefasfese.4pu.com/4734730735733735/-oku-The-Inner-Chambers-Volume-4-oku-The-Inner-Chambers-4-by-Fumi-Yoshinaga.pdf
- http://cefasfese.4pu.com/4734730735733736/-oku-The-Inner-Chambers-Volume-5-oku-The-Inner-Chambers-5-by-Fumi-Yoshinaga.pdf
- http://cefasfese.4pu.com/1730735738730739/-oku-The-Inner-Chambers-Volume-1-oku-The-Inner-Chambers-1-by-Fumi-Yoshinaga.pdf
- http://cefasfese.4pu.com/1735738734730731/The-Thran-by-J-Robert-King.pdf
- http://cefasfese.4pu.com/4731730737734733/The-Last-King-The-Kings-1-by-Katee-Robert.pdf
- http://cefasfese.4pu.com/3736731730738733/Developing-a-Photograph-of-God-by-Robert-S-King.pdf
- http://cefasfese.4pu.com/9738737735731736/The-Gravedigger-s-Roots-by-Robert-S-King.pdf
- http://cefasfese.4pu.com/8733731737736/King-Jesus-by-Robert-Graves.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.