MALICIOUS
72
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1204.002 Malicious File
The PDF contains a large number of external links, many of which appear to be SEO-optimized for download-related keywords, suggesting a link farm designed to distribute malicious files. One of the primary external URIs points to a suspicious URL that likely hosts a secondary payload. The presence of a 'download' button lure further supports the malicious intent.
Machine Learning
- Nyx PDF Classifier clean score 0.0293
Heuristics 4
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTONDocument contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://rocketcarrental.com/ZG93bmxvYWR8dFcyWm5KbVkzeDhNVFkxTmpjeE1qTXdOWHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA/drooling/crisper.lively/recorder/TGVhcm4gQXJhYmljIExhbmd1YWdlIEluIFVyZHUgUGRmIERvd25sb2FkTGV/komodo
- http://insenergias.org/?p=21181
- https://getwisdoms.com/wp-content/uploads/2022/07/The_Day_After_Tomorrow_Hindi_1080p_TOP.pdf
- https://www.wir-schule.de/2022/07/02/the-distance-between-us-kasie-west-pdf-free-download-upd/
- https://ecop.pk/fs9-fsx-p3d-x-plane-navigraph-airac-cycle-1505-free-download-new/
- http://avc-mx.com/wp-content/uploads/2022/07/yoko_tsuno_cbr_download_comics.pdf
- https://www.raven-guard.info/stripper-anya-2-x-migufighters-apk-verified-downloadgolkes/
- https://endlessflyt.com/pesevargesh-per-pranveren-rapidshare/
- http://schweigert.ninja/wp-content/uploads/2022/07/stronghold_crusader_free_download_full_game_version.pdf
- https://friendzz.co/upload/files/2022/07/hyVpbqiF6z6bNR9vNdiZ_02_b4c274419ccc234391c080c92877eff1_file.pdf
- https://losoxla.net/bhaag-milkha-bhaag-tamil-full-movie-hot-download/
- https://www.rueami.com/2022/07/02/ebp-auto-entrepreneur-pratic-2014-crack-__full__/
- https://thebrothers.cl/wp-content/uploads/2022/07/Malayalam_Full_UPDATED_Movie_Highway_203_Download.pdf
- https://www.pickupevent.com/it-s-a-wonderful-afterlife-movie-download-in-hindi-1080p-__link__/
- http://masterarena-league.com/wp-content/uploads/2022/07/Barcode_Generator_And_Overprinter_66_12_11.pdf
- http://www.ecomsrl.it/the-return-to-religion-henry-link-pdf-__exclusive__-download/
- https://charlottekoiclub.com/advert/new-release-windows-7-extreme-draconis-edition-v3-sp1-x64-german-full/
- https://sissycrush.com/upload/files/2022/07/D5c44FWRef4qIRGRSluc_02_ef0ea798e5b92afe1b8365a1fb6fa847_file.pdf
- https://expertiniworldtech.com/wp-content/uploads/2022/07/Doa_Dead_Or_Alive_Full_TOP_Movie_In_Hindi_1080p.pdf
- https://atennis.kz/tour/upload/files/2022/07/KcFBx4ii9EfIOxmCseLI_02_ef0ea798e5b92afe1b8365a1fb6fa847_file.pdf
- https://ofsnl.nl/wp-content/uploads/2022/07/Fizika_Masalalar_Yechish_Usullari_122-1.pdf
- http://www.tcpdf.org
- http://www.w3.org/1999/02/22-rdf-syntax-ns#
- http://purl.org/dc/elements/1.1/
- http://ns.adobe.com/xap/1.0/
- http://ns.adobe.com/pdf/1.3/
- http://ns.adobe.com/xap/1.0/mm/
- http://www.aiim.org/pdfa/ns/extension/
- http://www.aiim.org/pdfa/ns/schema#
- http://www.aiim.org/pdfa/ns/property#
- http://www.aiim.org/pdfa/ns/id/
Open this report in the interactive analyzer, or submit your own file for analysis.