SUSPICIOUS
34
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF document contains multiple embedded URLs that are designed to trick users into downloading potentially malicious content by offering game-related cheats and currency. The ML classifier strongly indicated maliciousness, and the presence of external URIs suggests a phishing or credential harvesting attempt. No scripts were extracted from this sample.
Machine Learning
- Nyx PDF Classifier malicious score 0.9905
Heuristics 2
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://netcdn.co/app/431946152/free-roblox-ben-10-games-game-hack PDF link annotation
- http://daskrimti-jabar.web.id/library/repository/coin-master-coins-hack_GM406889139.pdfIn PDF document text
- http://daskrimti-jabar.web.id/library//repository/how-to-hack-to-get-robux_GM431946152.pdfIn PDF document text
- http://daskrimti-jabar.web.id/library//repository/earn-free-robux-on-roblox_GM431946152.pdfIn PDF document text
- http://daskrimti-jabar.web.id/library//repository/can-i-have-robux_GM431946152.pdfIn PDF document text
- http://daskrimti-jabar.web.id/library//repository/fb-coin-master_GM406889139.pdfIn PDF document text
- http://daskrimti-jabar.web.id/library/repository/roblox-exploit-scripts_GM431946152.pdfIn PDF document text
- http://daskrimti-jabar.web.id/library/repository/how-to-get-free-robux-without-downloading-anything_GM431946152.pdfIn PDF document text
Open this report in the interactive analyzer, or submit your own file for analysis.