MALICIOUS
104
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1204.002 Malicious File
The PDF contains a large number of external links, many of which point to other PDFs hosted on SEO-farmed domains. These links are designed to trick users into downloading malicious files, likely for software cracking or other illicit purposes. The heuristic firings strongly indicate a link farm attack pattern.
Machine Learning
- Nyx PDF Classifier clean score 0.0127
Heuristics 4
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
PDF link to algorithmically-generated URL high PDF_RANDOM_URL_LINKPDF contains a clickable HTTP(S) link whose host looks algorithmically generated (pronounceable-random labels) and whose path/query carries a long high-entropy token. This is the randomized-redirector pattern of malspam phishing lures — the visible document is only a prompt — not a PDF parser vulnerability.
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://findinform.com/poplulation/complements.cGNiIHdpemFyZCBmdWxsIHZlcnNpb24gMzgcGN?spaceship=failover?submerged=ZG93bmxvYWR8ck82YkhSdGQzeDhNVFkxTmpjM01UZ3hPSHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA
- https://colegioalbertsonsslp.com/wp-content/uploads/2022/07/Soundtoys_Full_Bundle_Version_Mac_Crack_LINKed_Torrents.pdf
- https://artemistechstaffing.com/wp-content/uploads/2022/07/driffran.pdf
- https://globaltechla.com/norton-ghost-15-licence-49-install/
- http://dealskingdom.com/nile-valley-contributions-to-civilization-exploding-the-myths-book-pdf-free/
- https://abbasiyatoday.com/wp-content/uploads/2022/07/alyeval-1.pdf
- https://gardeners-market.co.uk/advert/autocad2011xforcekeygen-high-quality32bit/
- https://abwabnet.com/download-iconpackager-full-crack-internet-install/
- https://virtudojo.com/wp-content/uploads/2022/07/Contoh_Credit_Title_Film_Indonesia_UPD_Download.pdf
- http://titfortech.com/?p=32325
- https://nucleodenegocios.com/telecharger-jeux-gratuit-storio-3/
- https://tenontentutors.com/wp-content/uploads/2022/07/adveval.pdf
- https://www.pakruojovarpas.lt/advert/syncios-data-transfer-1-2-5-crack-topedl/
- https://dunstew.com/advert/baby-day-out-full-movie-in-hindi-install-download/
- https://aurespectdesoi.be/windows-7-loader-v1-8-3-dazdibya-crack-exclusive/
- https://jewishafrica.news/advert/internet-download-manager-idm-6-32-build-11-crack-verified/
- https://natsegal.com/wp-content/uploads/2022/07/2011_CrackFaceGenModeller353.pdf
- http://www.vidriositalia.cl/wp-content/uploads/2022/07/Sahifaesajjadiyainurdupdfdownload_INSTALL.pdf
- https://vivegeek.com/wp-content/uploads/2022/07/flemar.pdf
- https://kuchawi.com/minecraft-construction-handbook-pdf-free-download-verified/
- http://shippingcasesnow.com/?p=6529
- http://www.tcpdf.org
- http://www.w3.org/1999/02/22-rdf-syntax-ns#
- http://purl.org/dc/elements/1.1/
- http://ns.adobe.com/xap/1.0/
- http://ns.adobe.com/pdf/1.3/
- http://ns.adobe.com/xap/1.0/mm/
- http://www.aiim.org/pdfa/ns/extension/
- http://www.aiim.org/pdfa/ns/schema#
- http://www.aiim.org/pdfa/ns/property#
- http://www.aiim.org/pdfa/ns/id/
Open this report in the interactive analyzer, or submit your own file for analysis.