MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
The PDF file was flagged by a critical heuristic for containing a mass external link farm. While the document body is heavily obfuscated, the presence of numerous URLs, many pointing to seemingly unrelated academic papers, suggests a deceptive intent. The ML classifier also strongly indicated maliciousness. The primary attack pattern appears to be the distribution of a large number of links, potentially to manipulate search engine results or to serve as a lure for further malicious activity.
Machine Learning
- Nyx PDF Classifier malicious score 0.9922
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://unieoooq.linkpc.net/14e04e44e44e34e34e2/The-Throat-and-Its-Functions-in-Swallowing-Breathing-and-the-Production-of-the-Voice-by-Louis-Elsberg.pdf
- http://unieoooq.linkpc.net/14e04e44e44e34e44e4/The-Throat-and-Its-Functions-in-Swallowing-Breathing-and-the-Production-of-the-Voice-Illus-by-Louis-Elsberg.pdf
- http://unieoooq.linkpc.net/14e04e44e44e24e44e4/The-Throat-and-It-s-Functions-by-Louis-Elsberg.pdf
- http://unieoooq.linkpc.net/14e04e44e44e34e44e3/Archives-of-Laryngology-Vol-2-by-Louis-Elsberg.pdf
- http://unieoooq.linkpc.net/14e04e44e44e44e04e4/Para-Aminobenzonitrile-and-Its-Derivatives-Dissertation-by-Louis-Elsberg-Wise.pdf
- http://unieoooq.linkpc.net/54e34e24e84e64e7/Sore-Throat-Secrets-The-Ultimate-Guide-to-Natural-Remedies-to-Heal-your-Sore-Throat-Today-by-Healthy-Body-Books.pdf
- http://unieoooq.linkpc.net/54e74e14e24e74e2/Complex-Analysis-I-Entire-and-Meromorphic-Functions-Polyanalytic-Functions-and-Their-Generalizations-No-1-by-Andrei-A-Gonchar.pdf
- http://unieoooq.linkpc.net/94e74e84e54e3/Toyota-Production-System-Beyond-large-scale-production-by-Taiichi-Ohno.pdf
- http://unieoooq.linkpc.net/24e44e54e14e74e6/Barely-Breathing-Breathing-2-by-Rebecca-Donovan.pdf
- http://unieoooq.linkpc.net/44e24e44e34e9/The-Breathing-Series-Breathing-1-2-by-Rebecca-Donovan.pdf
- http://unieoooq.linkpc.net/14e04e44e04e9/Barely-Breathing-Breathing-2-by-Rebecca-Donovan.pdf
- http://unieoooq.linkpc.net/74e84e94e84e14e0/Oil-and-Gas-Production-Handbook-An-Introduction-to-Oil-and-Gas-Production-by-Havard-Devold.pdf
- http://unieoooq.linkpc.net/14e04e64e04e64e34e9/St-Louis-Missouri-Bauwerk-in-St-Louis-Person-St-Louis-Sport-St-Louis-Olympische-Sommerspiele-1904-Marilyn-Vos-Savant-by-Source-Wikipedia.pdf
- http://unieoooq.linkpc.net/44e54e64e44e54e0/Swallowing-Mayhem-Outlaw-MC-5-by-James-Cox.pdf
- http://unieoooq.linkpc.net/14e04e44e44e44e04e3/The-Dragon-Trials-by-Aven-R-Elsberg.pdf
- http://unieoooq.linkpc.net/14e04e44e44e34e34e3/Broken-Poems-for-Evita-by-John-Elsberg.pdf
- http://unieoooq.linkpc.net/44e14e84e44e14e7/The-Throat-by-Peter-Straub.pdf
- http://unieoooq.linkpc.net/84e84e04e24e8/Cut-Throat-Cat-Dupree-2-by-Sharon-Sala.pdf
- http://unieoooq.linkpc.net/24e34e14e94e14e2/A-Bone-in-the-Throat-by-Steven-Ramirez.pdf
- http://unieoooq.linkpc.net/14e04e44e44e34e44e8/all-this-dark-24-tanka-sequences-by-john-elsberg-eric-greinke.pdf
- http://unieoooq.linkpc.net/54e34e24e84e64e7/Sore-Throat-Secrets-The-Ultimate-Guide-to-Natural-Remedies-to-Heal-your-Sore-Throat-Today-by-Healthy-Body-B
Open this report in the interactive analyzer, or submit your own file for analysis.