SUSPICIOUS
42
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains numerous URLs related to Roblox cheats and free items, with a prominent link to 'gaminggenerator.org'. The ML classifier strongly flagged this PDF as malicious, and the presence of embedded URIs suggests an attempt to redirect the user to a potentially malicious website. While no scripts were explicitly extracted, the document's structure and embedded links indicate a phishing or scam lure.
Machine Learning
- Nyx PDF Classifier malicious score 0.9192
Heuristics 3
-
Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTONDocument contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://gaminggenerator.org/app/431946152/roblox-free-draw-alpha-2-discord-server PDF link annotation
- http://www.anies.eu/images/free-robux-help-com.pdfIn PDF document text
- https://www.cnte.org.br/images/roblox-jailbreak-noclip-and-speed-hack.pdfIn PDF document text
- https://estalagemmonteverde.com.br/images/roblox-how-to-get-free-script-executor.pdfIn PDF document text
- https://www.seeingindependence.org/images/free-items-in-roblox-catalog-2021.pdfIn PDF document text
- https://socialvalue.gr/images/how-do-you-get-free-skins-in-roblox.pdfIn PDF document text
- https://www.foodsafety.cz/images/roblos-free-robux.pdfIn PDF document text
- https://www.fhccu.com/images/how-to-play-bloxburg-for-free-no-robux.pdfIn PDF document text
- https://www.foodsafety.cz/images/can-u-get-insta-banned-in-roblox-for-hacking.pdfIn PDF document text
- http://www.htc.edu.au/images/island-royale-roblox-hack.pdfIn PDF document text
- https://www.saisystem.it/images/roblox-hack-xenox.pdfIn PDF document text
- http://nevesomost.by/images/como-utilizar-cheat-engine-en-roblox-2021.pdfIn PDF document text
- http://www.vktzunami.cz/images/roblox-script-injector-2021-free.pdfIn PDF document text
- http://www.cosver.nl/images/roblox-girl-hairs-free.pdfIn PDF document text
- https://www.saisystem.it/images/free-jailbreak-hack-roblox.pdfIn PDF document text
- http://www.lovecraftiana.com.ar/images/roblox-reach-hack.pdfIn PDF document text
- https://consorziocsa-asicaivano.it/images/robux-giving-free-robux.pdfIn PDF document text
- https://www.iadh.bi/images/roblox-robux-hack-really-works.pdfIn PDF document text
- https://www.millatgears.com/images/free-robux-now-gg.pdfIn PDF document text
- http://www.drent.se/images/how-to-hack-someones-account-on-roblox-2021.pdfIn PDF document text
- http://www.mikramarine.gr/images/free-robux-for-kids-net.pdfIn PDF document text
- http://www.inservis.cl/images/free-robux-not-fake-app.pdfIn PDF document text
- https://www.eglihotel.gr/images/roblox-player-pathfinding-hack.pdfIn PDF document text
- http://www.maakherumusic.net/images/free-lvl7-full-lua-roblox.pdfIn PDF document text
- http://www.marambio.com.ar/images/roblox-free-items-games.pdfIn PDF document text
- http://www.evaplast.by/images/roblox-lets-party-gear-testing-speed-and-jump-hack.pdfIn PDF document text
- http://www.malonmalon.com.ar/images/comandos-de-roblox-hack.pdfIn PDF document text
- http://sscclc.edu.ec/images/code-speed-hack-roblox.pdfIn PDF document text
- https://www.ncscolour.no/images/hack-de-juegos-apk-robux.pdfIn PDF document text
- http://www.lycee-langevin-wallon.com/images/how-to-hack-roblox-games.pdfIn PDF document text
- http://agrao.in/images/free-robux-inmages.pdfIn PDF document text
- https://www.albisser.ch/images/roblox-ultimate-driving-cheat.pdfIn PDF document text
- http://uctovnictvosnv.sk/images/roblox-free-play-no-download-or-sign-up.pdfIn PDF document text
- https://www.sinaloadiario.mx/images/chowder-land-free-admin-mega-place-update-site-robloxcom.pdfIn PDF document text
- https://amatq.ca/images/anyway-to-get-robux-on-roblox-free.pdfIn PDF document text
- https://pa-waingapu.go.id/images/free-roblox-gift-card-codes-no-human-verification.pdfIn PDF document text
- http://www.web.stc-part.co.th/images/apk-hack-roblox.pdfIn PDF document text
- https://www.porthos.it/images/youtube-roblox-working-hack-tool.pdfIn PDF document text
- http://www.jureclomas.com.ar/images/free-admin-roblox-script.pdfIn PDF document text
- http://www.hawler.in/images/blak-berry-hack-download-roblox.pdfIn PDF document text
- http://www.web.stc-part.co.th/images/how-to-hack-roblox-to-get-robux-2021.pdfIn PDF document text
- https://www.cpnf.ch/images/roblox-swordburst-online-level-hack.pdfIn PDF document text
- https://www.cpnf.ch/images/how-do-we-get-free-robux-on-roblox.pdfIn PDF document text
- http://www.evaplast.by/images/how-to-get-free-hair-with-no-robux-works.pdfIn PDF document text
- http://www.vktzunami.cz/images/711-roblox-hacker.pdfIn PDF document text
- http://www.maakherumusic.net/images/dbz-rage-roblox-cheats.pdfIn PDF document text
- https://www.ghknights.org/images/haow-to-hack-robux-no-bc.pdfIn PDF document text
- http://gops.pruszczgdanski.pl/images/cheat-engine-roblox-2021-robux.pdfIn PDF document text
- https://www.elevage-chiot.fr/images/hack-ultimate-driving-dinero-infinito-roblox.pdfIn PDF document text
- https://www.eglihotel.gr/images/emojicode-roblox-2021-get-emojis-free-2021-d-.pdfIn PDF document text
+2 more URL(s)
Extracted artifacts 2
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
font_00_sfnt_off00005649.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x5649 | 25580 bytes |
SHA-256: 567289e064ccddaf6c6787711dbe3b4a015d8d40ba3e3ae06b1640ab63957b1a |
|||
font_01_sfnt_off00008eec.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x8EEC | 18944 bytes |
SHA-256: 5de208baeb7197264b9a83bac817b42e8142a04f0c477cc1e4233aa9a21c7fda |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.