Malicious PDF — malware analysis report

Heuristics 3

• Invisible PDF links to CAPTCHA-themed web lure high PDF_CAPTCHA_LINK_LURE
  PDF contains invisible clickable link annotations that point to a CAPTCHA/capcha-themed web path. This is a common phishing and ClickFix-style routing pattern: the PDF itself is inert, while the linked page performs the credential prompt or fake verification.
• Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
  Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL http://netcdn.co/app/431946152/free-robux-generator-recaptcha-game-hack In PDF document text

  • http://www.nelsonssales.com/media/storage/editor/files/free-robux-today_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/free-robux-for-kids-no-verification_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/how-to-get-free-robux-2021-easy_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/claim-free-robux_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/a-code-froom-free-robux_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/minecraft-hacks-list_GM479516143.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/minecraft-com-free_GM479516143.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/claim-free-robux-button_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/free-robux-for-free_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/free-group-roblox_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/send-me-500-2021-spins_GM406889139.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/pokemon-go-free-play_GM1094591345.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/minecraft-pe-016-0-apk-download-free_GM479516143.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/coin-master-free-spins-link-blogspot-today_GM406889139.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/how-to-hack-coin-master-game-2021_GM406889139.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/coin-master-free-spins-2021-no-human-verification_GM406889139.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/robux-generator-free-no-password-no-verification_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/how-to-get-free-robux-codes_GM431946152.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/coin-master-34-4-hack_GM406889139.pdfIn PDF document text
  • http://www.nelsonssales.com/media/storage/editor/files/free-coin-master-coins_GM406889139.pdfIn PDF document text
  • http://en.wikipedia.org/wiki/MIT_LicenseIn PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.