SUSPICIOUS
34
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
This PDF document was flagged as suspicious by an ML classifier. The file embeds external URLs that direct users to attacker-controlled resources. Specific URLs and indicators for this sample are listed in the indicators section.
Machine Learning
- Nyx PDF Classifier malicious score 0.9164
Heuristics 2
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://gaminggenerator.org/app/431946152/roblox-parkour-free-glowing-glove PDF link annotation
- http://chartsmart.com.au/images/roblox-spam-hack.pdfIn PDF document text
- http://www.metinadistribuzione.com/images/how-to-get-redvalk-for-free-roblox.pdfIn PDF document text
- https://www.hofe-gmbh.de/images/how-to-make-pants-on-roblox-for-free-on-photopea.pdfIn PDF document text
- http://intrasservices.com/images/how-do-u-get-free-robux-on-phone.pdfIn PDF document text
- http://badboybiteaway.de/images/those-who-remain-roblox-hack.pdfIn PDF document text
- https://www.cosmosdawn.net/images/free-roblox-giftcards-not-used-100.pdfIn PDF document text
- http://imp.lg.ua/images/free-admin-in-roblox.pdfIn PDF document text
- http://salantiskis.lt/images/robux-free-hack-pc.pdfIn PDF document text
- https://www.audev.com/images/roblox-demonius-free.pdfIn PDF document text
- https://accord.kiev.ua/images/hack-para-tener-robux.pdfIn PDF document text
- http://www.ntc.edu.za/images/how-do-i-hack-roblox-games.pdfIn PDF document text
- http://ipdrs.org/images/code-kingdoms-roblox-all-free.pdfIn PDF document text
- https://www.u-pin-it.com/images/cheating-on-roblox-gf.pdfIn PDF document text
- http://bufbd.org/images/roblox-obby-online-free.pdfIn PDF document text
- http://mostowicz.pl/images/how-to-hack-force-field-in-cheart-engine-on-roblox.pdfIn PDF document text
- http://egorplitka.ru/images/free-roblox-promo-codes-2021-may-14.pdfIn PDF document text
- http://www.lovecraftiana.com.ar/images/how-to-change-your-speed-no-hack-roblox-2021.pdfIn PDF document text
- https://servotecnica.com/images/free-robux-generator-2021-gamingthix.pdfIn PDF document text
- http://gamixpaliwa.pl/images/greg-hacker-roblox-account.pdfIn PDF document text
- http://learningarabic.co.uk/images/roblox-buiders-club-free.pdfIn PDF document text
- http://petarda.hu/images/how-to-get-free-clothes-on-roblox-2021-mobile.pdfIn PDF document text
- https://www.seeingindependence.org/images/roblox-hack-jailbreak-noclip-2021.pdfIn PDF document text
- http://www.nielsen2u.dk/images/free-robux-legit-2021-august.pdfIn PDF document text
- http://modenese.net/images/i-love-free-robux.pdfIn PDF document text
- https://gabrieliassociati.com/images/efree-robux-hack-toold.pdfIn PDF document text
- http://jointworkstudio.com/images/how-to-get-free-robux-no-hacks-gliches-or-troll.pdfIn PDF document text
- http://prodajalec.si/images/free-vip-server-for-speed-race-roblox.pdfIn PDF document text
- http://www.zdravazena.sk/images/roblox-booga-booga-cheat-duplicate-items.pdfIn PDF document text
- http://jdlrelocation.com/images/lifting-simulator-roblox-hack-no-human-verification.pdfIn PDF document text
- https://www.coriglianocalabro.it/images/roblox-hacked-face.pdfIn PDF document text
- https://www.porthos.it/images/5-robux-free.pdfIn PDF document text
- http://cleanteclogistics.com/images/free-promo-codes-roblox-october-2021.pdfIn PDF document text
- http://www.zdravazena.sk/images/how-to-get-free-plus-on-roblox.pdfIn PDF document text
- https://www.milewood.co.uk/images/roblox-cheat-engine-kicked-by-server.pdfIn PDF document text
- http://pia2000.net/images/how-to-get-free-roblox-on-ipad.pdfIn PDF document text
- http://baah.ca/images/roblox-heists-hack.pdfIn PDF document text
- http://pgk-polaniec.pl/images/free-robux-uk.pdfIn PDF document text
- http://ivpr.net/images/free-robux-gen-website.pdfIn PDF document text
- https://www.linzgau-kjh.de/images/how-to-hack-roblox-flee-the-facility.pdfIn PDF document text
- http://www.eptaviation.com/images/roblox-lumber-tycoon-2-grief-hack.pdfIn PDF document text
- http://www.pbconsulting.it/images/bux-com-free-robux.pdfIn PDF document text
- http://seniorenverband-brh-nds.de/images/roblox-theme-park-tycoon-2-script-hack-sitev3rmillionnet.pdfIn PDF document text
- https://billiekawende.com/images/get-free-roblox-accounts.pdfIn PDF document text
- http://hydroconseil.net/images/roblox-legends-of-speed-hack-pain-exist-descargar.pdfIn PDF document text
- https://www.ghknights.org/images/invisibleble-hack-roblox.pdfIn PDF document text
- http://stomatolog-choszczno.pl/images/free-house-roblox.pdfIn PDF document text
- http://www.mjclautrec.fr/images/how-to-hack-games-on-roblox-rpg-rainbow-swords-rpg.pdfIn PDF document text
- http://linde-erbach.de/images/roblox-got-talent-piano-hack.pdfIn PDF document text
- http://www.anies.eu/images/roblox-banned-for-hacking.pdfIn PDF document text
+2 more URL(s)
Extracted artifacts 2
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
stream_003_off000081b6.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x81B6 | 28596 bytes |
SHA-256: f4f21e638b23ade9fa77e6675370f50366e785e130138a33ea6ae9e90c66204e |
|||
font_01_sfnt_off0000c20e.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0xC20E | 2848 bytes |
SHA-256: 4737c2778a085e0cb49e73f3b054b1a71e3f40720d213b4bfda97f95a31bfbf1 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.