Malicious PDF — malware analysis report

Heuristics 2

• PDF links to known malicious redirector infrastructure critical PDF_MALICIOUS_REDIRECTOR_LINK
  PDF contains a clickable URI to redirector infrastructure used by a known malicious PDF SEO/adware delivery campaign. These documents typically rely on user interaction and redirect chains rather than a PDF parser vulnerability.
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL https://ttraff.com/wb?keyword=zero%20first%20and%20second%20conditional%20exercises%20with%20answers%20pdf

  • http://files.nwgachampionship.com/uploads/1/3/1/8/131856039/novofiradop.pdf
  • http://sojad.waynetownshiptrustee.com/uploads/1/3/1/6/131606122/9508350.pdf
  • https://cdn.shopify.com/s/files/1/0433/6710/4668/files/kasewix.pdf
  • https://cdn.shopify.com/s/files/1/0438/2628/2658/files/atm_full_form_in_english.pdf
  • https://cdn.shopify.com/s/files/1/0430/1471/7597/files/snap_circuits_manual.pdf
  • https://cdn.shopify.com/s/files/1/0433/8856/7706/files/auguste_comte_a_general_view_of_positivism.pdf
  • https://cdn.shopify.com/s/files/1/0431/8419/3697/files/89505002618.pdf
  • https://cdn.shopify.com/s/files/1/0431/0705/7825/files/bimupagiditigawipiw.pdf
  • https://cdn.shopify.com/s/files/1/0438/9391/5800/files/wumod.pdf
  • http://www.w3.org/1999/02/22-rdf-syntax-ns#
  • http://purl.org/dc/elements/1.1/
  • http://ns.adobe.com/pdf/1.3/
  • http://ns.adobe.com/xap/1.0/
  • http://ns.adobe.com/xap/1.0/mm/
  • http://ns.adobe.com/xap/1.0/rights/

Open this report in the interactive analyzer, or submit your own file for analysis.