MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
The PDF contains a large number of embedded links to external PDF files, as indicated by the PDF_SEO_LINK_FARM heuristic. The ML classifier also flagged this PDF as malicious with high confidence. The primary attack pattern appears to be a link farm designed to redirect users to potentially malicious content hosted on the domain peldoaio.myhome.cx.
Machine Learning
- Nyx PDF Classifier malicious score 0.9924
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://peldoaio.myhome.cx/23d73d13d83d23d8/Davy-and-the-Goblin-Or-What-Followed-Reading-Alice-s-Adventures-in-Wonderland-by-Charles-Edward-Carryl.pdf
- http://peldoaio.myhome.cx/33d43d23d13d93d5/Alice-s-Adventures-in-Wonderland-Alice-s-Adventures-in-Wonderland-1-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/63d23d93d73d9/Alice-s-Adventures-in-Wonderland-Alice-s-Adventures-in-Wonderland-1-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/33d73d03d73d5/Alice-s-Adventures-in-Wonderland-Alice-s-Adventures-in-Wonderland-1-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/13d13d43d73d83d23d6/The-Camel-s-Lament-by-Charles-Edward-Carryl.pdf
- http://peldoaio.myhome.cx/33d73d43d93d03d3/Alice-s-Cabinet-of-Curiosities-Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-and-What-Alice-Found-There-by-Constantin-Vaughn.pdf
- http://peldoaio.myhome.cx/93d73d33d53d73d3/The-Alice-Books-Alice-s-Adventures-in-Wonderland-amp-Through-the-Looking-Glass-and-What-Alice-Found-There-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/43d23d13d53d43d1/The-Goblin-s-Puzzle-The-Adventures-of-a-Boy-With-No-Name-and-Two-Girls-Called-Alice-by-Andrew-S-Chilton.pdf
- http://peldoaio.myhome.cx/83d73d23d13d43d1/Alice-s-Adventures-in-Wonderland-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/13d03d83d33d73d93d8/Alice-s-Adventures-in-Wonderland-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/13d13d33d43d83d73d2/Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/73d93d73d33d23d8/Alice-s-Adventures-in-Wonderland-amp-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/63d23d83d03d03d9/Alice-s-Adventures-in-Wonderland-amp-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/93d03d33d63d33d2/Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/53d43d83d33d73d0/Alice-s-Adventures-in-Wonderland-amp-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/53d33d23d53d23d7/Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/13d03d93d33d93d93d2/Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/93d03d23d73d53d3/Alice-s-Adventures-in-Wonderland-amp-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/53d23d23d73d9/Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/63d23d63d83d03d6/Alice-s-Adventures-in-Wonderland-and-Through-the-Looking-Glass-by-Lewis-Carroll.pdf
- http://peldoaio.myhome.cx/33d73d03d73d5/Alice-s-Adventures-in-Wonderla
Open this report in the interactive analyzer, or submit your own file for analysis.