PDF static analysis report

Static analysis result for SHA-256 930cc40e2073420b…

CLEAN

PDF

63.0 KB Created: 2021-04-01 19:59:30 +07:00 Authoring application: wkhtmltopdf 0.12.6 (via Qt 4.8.7) First seen: 2021-09-22
MD5: e875d81e8ef924d1db89887ec34d8583 SHA-1: 2026739e0e4590ee3c6877594fec42338ca32067 SHA-256: 930cc40e2073420b361c21ef9da80611b0cb01d82a3af6615a0db0a1a23c873c
12 Risk Score

Machine Learning

  • Nyx PDF Classifier clean score 0.2477

Heuristics 3

  • Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
    Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://gaminggenerator.org/app/431946152/free-robux-generator-no-human-verification-or-offers PDF link annotation
    • http://bkd1.balikpapan.go.id/images/roblox-free-for-pc-download.pdfIn PDF document text
    • http://www.sanjosedeminas.gob.ec/images/free-robux-us.pdfIn PDF document text
    • https://www.hotschool.com.au/images/roblox-build-a-boat-for-treasure-free-vip-server.pdfIn PDF document text
    • http://bilhetim.com.br/images/how-to-get-free-robux-on-roblox-without-human-verification.pdfIn PDF document text
    • https://www.eglihotel.gr/images/pastebin-get-free-robux.pdfIn PDF document text
    • https://www.abrapppe.org.br/images/roblox-com-get-robux-for-free.pdfIn PDF document text
    • http://www.htc.edu.au/images/robux-hack-generator-club.pdfIn PDF document text
    • http://www.lovecraftiana.com.ar/images/galaxy-beta-roblox-hack.pdfIn PDF document text
    • http://bkd1.balikpapan.go.id/images/roblox-injector-hack-2021-synapse.pdfIn PDF document text
    • http://bilhetim.com.br/images/bape-roblox-free-tshirt.pdfIn PDF document text
    • http://portal.crfsp.org.br/images/roblox-kids-free-robux.pdfIn PDF document text
    • https://amatq.ca/images/how-to-get-free-robux-no-subscribing-2021.pdfIn PDF document text
    • http://www.htc.edu.au/images/how-to-get-free-robux-from-inspecting-2021.pdfIn PDF document text
    • http://www.htc.edu.au/images/flame-roblox-hack.pdfIn PDF document text
    • http://learningarabic.co.uk/images/roblox-robux-hack-pc-2021.pdfIn PDF document text
    • https://www.jura-museum.de/images/free-roblox-scripts.pdfIn PDF document text
    • http://escolaarboc.cat/images/hack-roblox-robux-generator-no-human-verification.pdfIn PDF document text
    • https://www.acbc.wa.edu.au/images/how-to-get-on-a-roblox-game-for-free.pdfIn PDF document text
    • https://www.jura-museum.de/images/free-robux-android-app.pdfIn PDF document text
    • http://www.maakherumusic.net/images/roblox-hack-2021-december.pdfIn PDF document text
    • https://www.siaeag.fr/images/free-games-on-roblox-you-can-copy.pdfIn PDF document text
    • https://ballaratcaravans.com.au/images/how-to-hack-roblox-players-2021.pdfIn PDF document text
    • http://www.vktzunami.cz/images/undetectable-cheat-roblox-fly.pdfIn PDF document text
    • https://www.jura-museum.de/images/critical-strike-roblox-hack.pdfIn PDF document text
    • http://www.htc.edu.au/images/invisible-head-roblox-free.pdfIn PDF document text
    • http://www.htc.edu.au/images/roblox-piano-keyboard-hack.pdfIn PDF document text
    • http://cappella-nova.de/images/roblox-hack-fbi-meme.pdfIn PDF document text
    • https://www.seeingindependence.org/images/how-to-hack-a-persons-in-roblox.pdfIn PDF document text
    • http://www.rawbluesparis.fr/images/free-robux-card-codes.pdfIn PDF document text
    • http://hemmet-strand.dk/images/how-to-get-back-a-hacked-accout-back-in-roblox.pdfIn PDF document text
    • http://pa-tanjungselor.go.id/images/roblox-free-model-roller-coaster.pdfIn PDF document text
    • http://www.vktzunami.cz/images/roblox-anti-cheat-jailbreak.pdfIn PDF document text
    • https://www.acbc.wa.edu.au/images/how-to-hack-roblox-games-with-artmoney.pdfIn PDF document text
    • https://amatq.ca/images/roblox-ios-robux-hack-2021.pdfIn PDF document text
    • https://amatq.ca/images/free-robux-pc-2021-not-patched.pdfIn PDF document text
    • https://www.wildpark-johannismuehle.de/images/cool-idems-roblox-free.pdfIn PDF document text
    • https://pa-waingapu.go.id/images/free-roblox-toy-codes-unused-2021-october-6.pdfIn PDF document text
    • https://www.abrapppe.org.br/images/roblox-hacks-download-pc.pdfIn PDF document text
    • https://esl.ipb.ac.id/images/free-robux-giver-2021.pdfIn PDF document text
    • https://jdlgroup.ca/images/roblox-kat-hacks.pdfIn PDF document text
    • http://www.occquimica.com.br/images/how-to-hack-in-a-roblox-account.pdfIn PDF document text
    • http://nevesomost.by/images/roblox-whatever-floats-your-boat-level-hack.pdfIn PDF document text
    • https://www.jura-museum.de/images/free-roblox-exploits-for-mac.pdfIn PDF document text
    • https://www.jura-museum.de/images/how-to-get-any-item-free-on-roblox-2021.pdfIn PDF document text
    • https://www.jura-museum.de/images/boost-free-robux.pdfIn PDF document text
    • https://www.milewood.co.uk/images/easy-hacking-engine-for-roblox.pdfIn PDF document text
    • https://amatq.ca/images/esp-cheat-engine-roblox.pdfIn PDF document text
    • https://www.jura-museum.de/images/free-robux-generator-no-verification-required.pdfIn PDF document text
    • https://www.facmedtananarive.org/images/free-roblox-gift-card-codes-generator-2021-may.pdfIn PDF document text
    +52 more URL(s)

Extracted artifacts 3

Files carved from inside the sample during analysis.

FilenameKindSourceSize
font_00_sfnt_off00008d5e.bin pdf-font-stream PDF embedded font (sfnt) at offset 0x8D5E 22664 bytes
SHA-256: ffc664523b807c31dd0651b077beba7c0ce9169e0b0d765c269926ac9ba8eb41
font_01_sfnt_off0000bff5.bin pdf-font-stream PDF embedded font (sfnt) at offset 0xBFF5 3884 bytes
SHA-256: 40b61f8938bd710dc29dc58ba3fde91c245a6a69596ec569b4d27c769ca417cf
font_02_sfnt_off0000cca6.bin pdf-font-stream PDF embedded font (sfnt) at offset 0xCCA6 18744 bytes
SHA-256: c76b6dbeadb4cd92678ebc24dabef19d2bc5c66a4346b840f99df746e078c708