MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
The PDF contains a large number of embedded links to external PDF files, a technique often used for SEO manipulation or to distribute malicious content. The ML classifier also flagged this PDF as malicious. While no scripts were extracted, the heuristic 'PDF_SEO_LINK_FARM' indicates a high volume of links, suggesting a deceptive or malicious intent to redirect the user to potentially harmful content hosted on the 'leakscaioiobook.4dq.com' domain.
Machine Learning
- Nyx PDF Classifier malicious score 0.9784
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://leakscaio
- http://leakscaioiobook.4dq.com/4d0c1d0c5d0c0d0c6d0c6/Patience-Princess-Catherine-Young-Royals-4-by-Carolyn-Meyer.pdf
- http://leakscaioiobook.4dq.com/6d0c0d0c5d0c6d0c6/The-Complete-Princess-Trilogy-Princess-Princess-Sultana-s-Daughters-and-Princess-Sultana-s-Circle-by-Jean-Sasson.pdf
- http://leakscaioiobook.4dq.com/1d0c5d0c6d0c0d0c9d0c1/James-and-the-Mini-by-Minerva-Taylor.pdf
- http://leakscaioiobook.4dq.com/1d0c1d0c4d0c9d0c5d0c8/Dangerous-The-Outcasts-1-by-Minerva-Spencer.pdf
- http://leakscaioiobook.4dq.com/4d0c2d0c3d0c6d0c5d0c9/Minerva-The-Six-Sisters-1-by-Marion-Chesney.pdf
- http://leakscaioiobook.4dq.com/1d0c6d0c4d0c6d0c1d0c8/Minerva-Wakes-by-Holly-Lisle.pdf
- http://leakscaioiobook.4dq.com/4d0c6d0c8d0c9d0c7d0c3/The-Princess-in-Black-and-the-Perfect-Princess-Party-The-Princess-in-Black-2-by-Shannon-Hale.pdf
- http://leakscaioiobook.4dq.com/3d0c3d0c0d0c0d0c6d0c6/History-of-Standard-Oil-Company-by-Ida-Minerva-Tarbell.pdf
- http://leakscaioiobook.4dq.com/1d0c5d0c6d0c0d0c8d0c0/The-Mole-Brothers-Magnificent-Mission-by-Minerva-Taylor.pdf
- http://leakscaioiobook.4dq.com/4d0c6d0c6d0c9d0c7d0c5/The-Blood-Stiller-Russian-Trilogy-1-by-Minerva-Taylor.pdf
- http://leakscaioiobook.4dq.com/9d0c2d0c2d0c2d0c0d0c7/The-Mole-Brothers-Magnificent-Mission-by-Minerva-Taylor.pdf
- http://leakscaioiobook.4dq.com/1d0c5d0c0d0c7d0c3d0c5/The-Blood-Stiller-Russian-Trilogy-1-by-Minerva-Taylor.pdf
- http://leakscaioiobook.4dq.com/2d0c9d0c4d0c6d0c2d0c0/Blood-and-Oil-The-Devil-s-Tears-Russian-Trilogy-3-by-Minerva-Taylor.pdf
- http://leakscaioiobook.4dq.com/4d0c2d0c5d0c2d0c0d0c3/At-the-Back-of-the-North-Wind-The-Princess-and-the-Goblin-The-Princess-and-Curdie-by-George-MacDonald.pdf
- http://leakscaioiobook.4dq.com/1d0c6d0c6d0c8d0c0d0c1/The-Poet-and-The-Princess-Memories-of-Rainer-Maria-Rilke-by-Princess-Marie-Von-Thurn-und-Taxis.pdf
- http://leakscaioiobook.4dq.com/1d0c5d0c9d0c4d0c0d0c6/The-Poet-and-The-Princess-Memories-of-Rainer-Maria-Rilke-by-Princess-Marie-Von-Thurn-und-Taxis.pdf
- http://leakscaioiobook.4dq.com/2d0c9d0c1d0c3d0c8d0c8/The-Princess-and-the-Peer-The-Princess-Brides-1-by-Tracy-Anne-Warren.pdf
- http://leakscaioiobook.4dq.com/2d0c0d0c4d0c9d0c1d0c2/Believe-Me-I-Never-Felt-a-Pea-The-Story-of-the-Princess-and-the-Pea-as-Told-by-the-Princess-by-Nancy-Loewen.pdf
- http://leakscaioiobook.4dq.com/3d0c9d0c7d0c6d0c1d0c1/The-Princess-Companion-A-Retelling-of-The-Princess-and-the-Pea-The-Four-Kingdoms-1-by-Melanie-Cellier.pdf
- http://leakscaioiobook.4dq.com/1d0c0d0c5d0c4d0c3d0c9d0c7/The-Witch-of-Willoughby-Lane-455-Willoughby-Lane-Tales-from-Mockingbird-Reef-Book-1-by-Alex-Tilt.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.