MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
T1059.001 PowerShell
The PDF contains a large number of embedded links to external PDF files, a technique often used for SEO manipulation or to distribute malicious content. The ML classifier strongly indicated maliciousness. While no scripts were extracted, the PDF structure and link farm heuristic suggest a delivery mechanism for potentially harmful content hosted externally.
Machine Learning
- Nyx PDF Classifier malicious score 0.9942
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://muicuiu.dumb1.com/4a01a07a06a09a07/The-Dwarf-Nose-by-Wilhelm-Hauff.pdf
- http://muicuiu.dumb1.com/1a00a03a02a00a07a04/The-Cold-Heart-Nose-the-Dwarf-by-Wilhelm-Hauff.pdf
- http://muicuiu.dumb1.com/1a00a03a02a00a08a01/Wilhelm-Hauff---Gesammelte-M-rchen-by-Wil-helm-Hauff.pdf
- http://muicuiu.dumb1.com/1a00a03a02a00a08a02/HAUFF-S-FAIRY-TALES-by-Wilhelm-Hauff.pdf
- http://muicuiu.dumb1.com/1a00a03a02a01a05a08/Werke-von-Wilhelm-Hauff-by-Wilhelm-Hauff.pdf
- http://muicuiu.dumb1.com/1a00a03a02a01a06a07/Wilhelm-Hauffs-Sammtliche-Werke-in-Zwei-Banden-by-Wilhelm-Hauff.pdf
- http://muicuiu.dumb1.com/1a00a03a02a01a06a03/The-Marvellous-History-of-the-Shadowless-Man-and-The-Cold-Heart-by-Wilhelm-Hauff.pdf
- http://muicuiu.dumb1.com/1a05a06a04a01a00/The-Nameless-Dwarf-Omnibus-Chronicles-of-the-Nameless-Dwarf-1-3-by-D-P-Prior.pdf
- http://muicuiu.dumb1.com/7a03a01a08a00a01/Understanding-the-I-Ching-The-Wilhelm-Lectures-on-the-Book-of-Changes-by-Hellmut-Wilhelm.pdf
- http://muicuiu.dumb1.com/5a05a01a00a04a07/LARME-005-Sweet-Girly-Artbook---Model-Fashion-Book-Town-MOOK-Japanese-Edition-by-LARME.pdf
- http://muicuiu.dumb1.com/1a00a03a02a00a07a09/Hauff-s-Fairy-Tales-by-Cicely-McDonnell.pdf
- http://muicuiu.dumb1.com/9a05a08a01a02a04/Musikhistorisches-Museum-Von-Wilhelm-Heyer-in-Coln-Kleiner-Katalog-Der-Sammlung-Alter-Musikinstumente-Verfast-Von-Georg-Kinsky-Volume-1---Scholar-s-Choice-Edition-by-Wilhelm-Heyer.pdf
- http://muicuiu.dumb1.com/9a05a03a07a05a00/Heinrich-Wilhelm-Brandes-Vorlesungen-ber-Die-Naturlehre-Zur-Belehrung-Derer-Denen-Es-an-Mathematischen-Vorkenntnissen-Fehlt-Teil-3-by-Heinrich-Wilhelm-Brandes.pdf
- http://muicuiu.dumb1.com/9a02a00a07a04a06/Sidonia-the-Sorceress-Volume-I-of-II-by-Wilhelm-Meinhold-Fiction-Literary-Fairy-Tales-Folk-Tales-Legends-amp-Mythology-by-Wilhelm-Meinhold.pdf
- http://muicuiu.dumb1.com/1a01a01a00a08a08a04/Friedrich-Wilhelm-Murnau---Die-Privaten-Photographien1924-1930-Berlin-Hollywood-Tahiti-by-Friedrich-Wilhelm-Murnau.pdf
- http://muicuiu.dumb1.com/5a06a09a07a00/The-Tsar-s-Dwarf-by-Peter-H-Fogtdal.pdf
- http://muicuiu.dumb1.com/1a03a02a02a09a03/Seven-Dwarf-Stories-by-Everett-Powers.pdf
- http://muicuiu.dumb1.com/1a05a07a05a08a00/The-Disappearing-Dwarf-Balumnia-2-by-James-P-Blaylock.pdf
- http://muicuiu.dumb1.com/4a05a03a09a02a01/Hippo-Eats-Dwarf-by-Alex-Boese.pdf
- http://muicuiu.dumb1.com/8a09a03a04a08a06/Wilhelm-Busch---Gesammelte-Werke-by-Wilhelm-Busch.pdf
- http://muicuiu.dumb1.com/5a05a01a00a04a07/LARME-005-Sweet-Girly-Artbook---Model-Fashion-Book-Town-MOOK-Japanese-Edition-by-LARME
Open this report in the interactive analyzer, or submit your own file for analysis.