MALICIOUS
92
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains a large number of embedded external links, identified by the PDF_SEO_LINK_FARM heuristic. While the URLs themselves are marked as benign, the sheer volume and structure suggest a malicious intent, possibly for SEO spam or to distribute further malicious content. The ML_NYX_PDF_MALICIOUS heuristic also strongly indicates maliciousness. The attack pattern is likely related to distributing or linking to malicious content, potentially as a spearphishing attachment.
Machine Learning
- Nyx PDF Classifier malicious score 0.9920
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://kiyuteraspdf.changeip.com/278647860786478647860/Percy-Jackson-and-the-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/278657868786778667862/The-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/378637866786778647860/The-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/778607867786878657866/The-Lightning-Thief-Percy-Jackson-and-the-Olympians-1-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/37862786878617865/Percy-Jackson-and-the-Olympians-Percy-Jackson-and-the-Olympians-1-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/278697863786978617864/Percy-Jackson-and-the-Olympians-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/478627868786378637869/The-Sea-of-Monsters-Percy-Jackson-and-the-Olympians-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/378607867786478617861/The-Last-Olympian-Percy-Jackson-and-the-Olympians-5-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/87865786878667866/The-Sea-of-Monsters-Percy-Jackson-and-the-Olympians-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/47861786078647863/The-Sea-of-Monsters-Percy-Jackson-and-the-Olympians-2-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/978607864786878667863/The-Lightning-Fart-A-Parody-of-The-Lightning-Thief-Percy-Jackson-amp-the-Olympians-Book-1-by-Steve-Lookner.pdf
- http://kiyuteraspdf.changeip.com/578607861786478627864/The-Titan-s-Curse-Percy-Jackson-amp-The-Olympians-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/378637866786478697864/The-Titan-s-Curse-Percy-Jackson-and-the-Olympians-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/47867786578667863/The-Titan-s-Curse-Percy-Jackson-and-the-Olympians-3-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/87864786278677864/The-Battle-of-the-Labyrinth-Percy-Jackson-and-the-Olympians-4-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/778637862786178627866/The-Last-Olympian-Percy-Jackson-amp-the-Olympians-Book-5-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/77865786178647861/The-Lightning-Thief-The-Graphic-Novel-Percy-Jackson-and-the-Olympians-1-by-Robert-Venditti.pdf
- http://kiyuteraspdf.changeip.com/37863786678627868/Percy-Jackson-s-Greek-Gods-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/478607864786078637861/Percy-Jackson-and-the-Greek-Gods-by-Rick-Riordan.pdf
- http://kiyuteraspdf.changeip.com/578627864786678637869/Percy-Jackson---Tome-3---Le-Sort-Du-Titan-by-Rick-Riordan.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.