MALICIOUS
94
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
T1059.007 JavaScript
This PDF document was flagged as malicious by ClamAV and an ML classifier. The file embeds external URLs that direct users to attacker-controlled resources. Specific URLs and indicators for this sample are listed in the indicators section.
Machine Learning
- Nyx PDF Classifier malicious score 0.7081
Heuristics 3
-
ClamAV: Pdf.Phishing.Trojan-d2528dad23a95d95-d2528dad23a95d95-10044376-0 critical CLAMAV_DETECTIONClamAV detected this file as malware: Pdf.Phishing.Trojan-d2528dad23a95d95-d2528dad23a95d95-10044376-0
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://traffking.ru/aws?utm_term=whatsapp+messenger+apk+latest+version+free PDF link annotation
- https://uploads.strikinglycdn.com/files/85503117-db8c-4907-95a7-3652bc354784/gazelle_exercise_machine_manual.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/149565c0-d18e-4a1e-8ef0-5c257cd9512d/relational_algebra_examples_with_sol.pdfIn PDF document text
- https://s3.amazonaws.com/jidosatikim/compensatory_behavior_list.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/a57818d2-0d71-465e-8cd1-86716a4f433d/16054082050.pdfIn PDF document text
- https://s3.amazonaws.com/bubodeliza/pandoc_convert_html_to_in_r.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/ea994b33-23ec-4187-8db5-30effdacfcd2/15035616708.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/bcd310d1-969c-4dd6-a2fa-bc06da8aa524/tilaro.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/76085e5e-cefa-421e-9805-7cb0062b12f2/32455899021.pdfIn PDF document text
Open this report in the interactive analyzer, or submit your own file for analysis.