MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
The PDF contains a large number of embedded URLs, identified as a link farm. While the URLs themselves are currently classified as benign, the sheer volume and structure suggest a malicious intent to redirect users. The ML classifier also flagged this PDF with high confidence. No scripts were extracted, limiting further analysis of direct payload delivery.
Machine Learning
- Nyx PDF Classifier malicious score 0.9920
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://kiyuteraspdf.changeip.com/37863786678627868/Percy-Jackson-s-Greek-Gods-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/278647860786478647860/Percy-Jackson-and-the-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/278697863786978617864/Percy-Jackson-and-the-Olympians-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/47861786078647863/The-Sea-of-Monsters-Percy-Jackson-and-the-Olympians-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/87865786878667866/The-Sea-of-Monsters-Percy-Jackson-and-the-Olympians-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/378607867786478617861/The-Last-Olympian-Percy-Jackson-and-the-Olympians-5-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/478627868786378637869/The-Sea-of-Monsters-Percy-Jackson-and-the-Olympians-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/87864786278677864/The-Battle-of-the-Labyrinth-Percy-Jackson-and-the-Olympians-4-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/778607867786878657866/The-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/578627864786678637869/Percy-Jackson---Tome-3---Le-Sort-Du-Titan-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/578607861786478627864/The-Titan-s-Curse-Percy-Jackson-amp-The-Olympians-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/378637866786778647860/The-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/378637866786478697864/The-Titan-s-Curse-Percy-Jackson-and-the-Olympians-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/47867786578667863/The-Titan-s-Curse-Percy-Jackson-and-the-Olympians-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/778637862786178627866/The-Last-Olympian-Percy-Jackson-amp-the-Olympians-Book-5-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/278657868786778667862/The-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/678697864786078607861/Bi-n-Qu-i-V-t-Percy-Jackson-V-C-c-V-Th-n-Olympia-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/37862786878617865/Percy-Jackson-and-the-Olympians-Percy-Jackson-and-the-Olympians-1-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/678687864786678647866/Percy-Jackson-e-gli-Dei-dell-Olimpo---Il-romanzo-a-fumetti-1-Il-Ladro-di-Fulmini-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/178617862786278687862/Demigods-and-Magicians-Three-Stories-from-the-World-of-Percy-Jackson-and-the-Kane-Chronicles-by-Rick-Riordan.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.