MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1059.001 PowerShell
The PDF file contains a large number of embedded URLs pointing to external PDF documents, a technique often used for SEO poisoning or to distribute malware. The ML classifier strongly indicated maliciousness. The primary attack pattern involves directing users to a high volume of links hosted on the domain 'ieuicufioao.myhome.cx'. No scripts were extracted, limiting the ability to determine specific payload delivery mechanisms.
Machine Learning
- Nyx PDF Classifier malicious score 0.9919
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://ieuicufioao.myhome.cx/8554559553554552/Hardy-Geraniums-Wisley-Handbooks-by-David-Hibberd.pdf
- http://ieuicufioao.myhome.cx/9556557558550550/Aftershock-Cliff-Hardy-14-by-Peter-Corris.pdf
- http://ieuicufioao.myhome.cx/6553559558559550/The-Greenwich-Apartments-Cliff-Hardy-8-by-Peter-Corris.pdf
- http://ieuicufioao.myhome.cx/1551553553557559/Follow-The-Money-Cliff-Hardy-36-by-Peter-Corris.pdf
- http://ieuicufioao.myhome.cx/9558555552558559/Far-from-the-Madding-Crowd-by-Thomas-Hardy-Illustrated-Delphi-Parts-Edition-Thomas-Hardy-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/8554559555552554/The-Red-Geraniums-by-J-Schlenker.pdf
- http://ieuicufioao.myhome.cx/5556558557558553/Far-from-the-Madding-Crowd-annoted-Love-Story-By-Thomas-Hardy-Romance-Book-1-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/2558559555552556/Hardy-Poems-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/6552556554556559/THE-WOODLANDERS-by-Thomas-Hardy-author-of-Tess-of-the-d-Urbervilles-Far-From-the-Madding-Crowd-Jude-the-Obscure-The-Mayor-of-Casterbridge-The-Well-Beloved-Annotated-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/1551552555552552552/Far-from-the-Madding-Crowd-The-Complete-Works-of-Thomas-Hardy-Volume-6-of-33-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/1551552555553558559/Jude-the-Obscure-The-Complete-Works-of-Thomas-Hardy-Volume-16-of-33-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/7551551556553/Hardy-Boys-Complete-Series-Set-Books-1-66-The-Hardy-Boys-1-66-by-Franklin-W-Dixon.pdf
- http://ieuicufioao.myhome.cx/6554557550553557/TESS-OF-THE-D-URBERVILLES-THOMAS-HARDY-Notes-on-English-Literature-by-Thomas-Hardy.pdf
- http://ieuicufioao.myhome.cx/8554559552559550/Geraniums-and-Pelargoniums-by-John-Feltwell.pdf
- http://ieuicufioao.myhome.cx/8554559555558555/My-Little-White-Geraniums-by-Brandon-Berntson.pdf
- http://ieuicufioao.myhome.cx/8554559554555557/Surprised-Pink-Geraniums-A-Memoir-by-Pat-Brown.pdf
- http://ieuicufioao.myhome.cx/8554559555552552/A-Persistence-of-Geraniums-by-John-Linwood-Grant.pdf
- http://ieuicufioao.myhome.cx/8554559554555552/He-Kissed-Me-Between-the-Geraniums-and-the-Daisies-by-Janice-Silkworth.pdf
- http://ieuicufioao.myhome.cx/8554559555559553/Geraniums-Lilacs-and-Rosebuds-by-Antoinette-Harvey.pdf
- http://ieuicufioao.myhome.cx/8554559554555558/Cabbages-and-Geraniums-Memories-of-the-Holocaust-by-Valerie-Furth.pdf
- http://ieuicufioao.myhome.cx/6552556554556559/THE-WOODLANDERS-by-Thomas-Hardy-author-of-Tess-of-the-d-Urbervilles-Far-From-the-Madding-Crowd-Jude-the-Obscure-The-Mayor-of-Casterbridge-The-Well-Beloved-Annotated-by-Th
Open this report in the interactive analyzer, or submit your own file for analysis.