SUSPICIOUS
34
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF document contains numerous external links, disguised as a malaria diagnostic test, which is a common lure for phishing or malware distribution. The heuristic 'PDF_SEO_DISPOSABLE_LINK_FARM' indicates a pattern of using disposable hosting for these links, suggesting malicious intent. No scripts were extracted, but the embedded URLs point to potentially malicious domains.
Machine Learning
- Nyx PDF Classifier suspicious score 0.3531
Heuristics 3
-
Small PDF is a non-clustered link farm on disposable hosting medium PDF_SEO_DISPOSABLE_LINK_FARMSmall PDF contains many clickable external PDF links spread thin across many distinct hosts (no single dominant host), corroborated by a utm_term SEO-redirector link and/or links parked on free/disposable content hosts. This is the 'free document/template' SEO phishing PDF family, which ranks for search queries and routes users into payload/redirect chains, rather than a normal document citation pattern. The PDF itself carries no exploit — the risk is the linked destinations.
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://mezovuduw.ru/award?keyword=diagnostic+test+for+malaria+pdf PDF link annotation
- https://gedepaxu.weebly.com/uploads/1/3/1/3/131378821/zoluvafu-wofomugukedajot.pdfIn PDF document text
- https://vazejaxos.weebly.com/uploads/1/3/1/3/131382607/pegadiduwu.pdfIn PDF document text
- https://cdn-cms.f-static.net/uploads/4389792/normal_604145bc2d97f.pdfIn PDF document text
- https://cdn-cms.f-static.net/uploads/4420764/normal_5fdb168f3acee.pdfIn PDF document text
- http://yozi.store/gevezegiwt4bqv.pdfIn PDF document text
- http://wegevuni.22web.org/sakarexadofi.pdfIn PDF document text
- http://dilijox.22web.org/96078185830.pdfIn PDF document text
- https://static.s123-cdn-static.com/uploads/4486367/normal_5fc7f28e0382b.pdfIn PDF document text
- https://kavisovilige.weebly.com/uploads/1/3/5/3/135308643/0227a5e.pdfIn PDF document text
- https://xikewewojan.weebly.com/uploads/1/3/4/0/134095915/4837480.pdfIn PDF document text
- http://sudidukof.22web.org/ley_de_propiedad_en_condominio_2019_cdmx_word.pdfIn PDF document text
- http://pl50off.info/neoliberalism_and_the_end_of_liberal_democracy_wendy_brown_summarybgzih.pdfIn PDF document text
- http://dagavelowewinoj.iblogger.org/70068109097.pdfIn PDF document text
- http://vovodofozufora.iblogger.org/89177801366.pdfIn PDF document text
- http://praktika-ingenieur.com/sokevesenenapupugozu0bo2b.pdfIn PDF document text
- https://cdn-cms.f-static.net/uploads/4482863/normal_600df1e22bf02.pdfIn PDF document text
- http://promooffer.site/the_caribbean_tamil_dubbed_moviermdto.pdfIn PDF document text
- https://cdn-cms.f-static.net/uploads/4381762/normal_5fe7ed24763c6.pdfIn PDF document text
- http://vufiferej.epizy.com/jokitijesujosik.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/b9f77e9c-5993-4da0-8a60-2f2328718dd7/wawozaluloj.pdfIn PDF document text
- http://zoforex.rf.gd/what_are_the_three_principles_of_universal_design_for_learning.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/76f65e18-ea01-4923-ba68-d05bd0151311/fekimor.pdfIn PDF document text
- http://nolazukij.epizy.com/moon_river_piano_sheet_music_with_letters.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/e4088fb6-1749-4e5b-9ff0-db0fe9639b9b/does_python_3.8_have_pip.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/f94202c0-4ab5-42c3-a654-cf82cb37c393/34763219608.pdfIn PDF document text
- http://zadotelap.epizy.com/xaxamajomururozajolumi.pdfIn PDF document text
- https://uploads.strikinglycdn.com/files/4bc896ba-a613-4aca-9ad6-c449f8fa3498/best_ti_84_calculator_games.pdfIn PDF document text
Open this report in the interactive analyzer, or submit your own file for analysis.