MALICIOUS
92
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains a large number of embedded URLs pointing to external PDF files, a technique often used for SEO spam or to distribute malicious content. The ML classifier strongly indicated maliciousness, and the PDF structure itself suggests a link farm. The URLs are hosted on a dynamic DNS domain, which is a common tactic for malware distribution.
Machine Learning
- Nyx PDF Classifier malicious score 0.9925
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://xiixmcuin.linkpc.net/9202207202200208/Thomas-Hirschhorn-Kurt-Schwitters-Plattform-Untere-Kontrolle-by-Carina-Plath.pdf
- http://xiixmcuin.linkpc.net/9202207201200203/Kurt-Schwitters-Catalogue-Raisonne-Volume-I-1905-1922-by-Kurt-Schwitters.pdf
- http://xiixmcuin.linkpc.net/9202207202200207/Schwitters-In-Norwegen-Arbeiten-Dokumente-Ansichten-by-Kurt-Schwitters.pdf
- http://xiixmcuin.linkpc.net/9202206208209204/pppppp-by-Kurt-Schwitters.pdf
- http://xiixmcuin.linkpc.net/9202206208209205/Kurt-Schwitters-by-Roger-Cardinal.pdf
- http://xiixmcuin.linkpc.net/9202206209209202/Kurt-Schwitters-In-Selbstzeugnissen-Und-Bilddokumenten-by-Ernst-N-ndel.pdf
- http://xiixmcuin.linkpc.net/9202207200203207/Kurt-Schwitters-1887-1948-by-Werner-Schmalenbach.pdf
- http://xiixmcuin.linkpc.net/9202207200200201/Conflicts-with-Modernism-or-the-Absence-of-Kurt-Schwitters-by-Rudi-Fuchs.pdf
- http://xiixmcuin.linkpc.net/9202206209200207/The-Collages-Of-Kurt-Schwitters-Tradition-And-Innovation-by-Dorothea-Dietrich.pdf
- http://xiixmcuin.linkpc.net/9202207201200206/German-Dadaist-Literature-Kurt-Schwitters-Hugo-Ball-Hans-Arp-by-Rex-William-Last.pdf
- http://xiixmcuin.linkpc.net/9202207200203209/42-Merzegedichte-in-Memoriam-Kurt-Schwitters-February-1987-September-1989-by-Jackson-Mac-Low.pdf
- http://xiixmcuin.linkpc.net/7208209202206208/Poetry-by-Sylvia-Plath-Ariel-Ennui-Daddy-Lady-Lazarus-Two-Lovers-and-a-Beachcomber-by-the-Real-Sea-the-Munich-Mannequins-by-Sylvia-Plath.pdf
- http://xiixmcuin.linkpc.net/7204208206201200/Letters-of-Sylvia-Plath-Volume-1-1940-1956-by-Sylvia-Plath.pdf
- http://xiixmcuin.linkpc.net/9202207202201205/Ernst-Schwitters-in-Norway-Photographs-1930-1960-by-Ernst-Schwitters.pdf
- http://xiixmcuin.linkpc.net/4208203206202207/Sylvia-Plath-Reads-by-Sylvia-Plath.pdf
- http://xiixmcuin.linkpc.net/1200201208201200208/Tattoos-au-er-Kontrolle-by-Barbara-H-Jung.pdf
- http://xiixmcuin.linkpc.net/9200200206203208/Gesammelte-Werke-Kurt-Kluges-by-Kurt-Kluge.pdf
- http://xiixmcuin.linkpc.net/1200201208201203204/Samsons-Kaugummis-Superkr-fte-au-er-Kontrolle-by-Frauke-Markmann.pdf
- http://xiixmcuin.linkpc.net/8208201206209201/Reportage-Japan-Au-er-Kontrolle-und-in-Bewegung-by-Judith-Brandner.pdf
- http://xiixmcuin.linkpc.net/8208201206209200/KONTROLLIERT-AUSSER-KONTROLLE-Das-Tagebuch-einer-Magers-chtigen-by-Hanna-Charlotte-Blumroth-vom-Lehn.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.