PDF static analysis report

Static analysis result for SHA-256 93a930fc899085e8…

SUSPICIOUS

PDF

23.6 KB Created: 2021-04-05 19:32:51 +07:00 Authoring application: wkhtmltopdf 0.12.6 (via Qt 4.8.7) First seen: 2021-10-04
MD5: 6c8324398f61487b3b427b1e25171c2b SHA-1: 691e126b599f6d3ea0b118e127d2444e7f6c0f0c SHA-256: 93a930fc899085e88f95b8ea8b2ac2550851e9100178a423dcae702d7744dec9
34 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1059.007 JavaScript

This PDF document was flagged as suspicious by an ML classifier. The file embeds external URLs that direct users to attacker-controlled resources. Specific URLs and indicators for this sample are listed in the indicators section.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9788

Heuristics 2

  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://gaminggenerator.org/app/431946152/free-roblox-lightroom-cinema-4d PDF link annotation
    • http://gingerscience.co.in/images/roblox-cheating-btools.pdfIn PDF document text
    • http://logisticgroup.co/images/roblox-work-at-a-pizza-place-money-hack-script-pastebin.pdfIn PDF document text
    • http://fmbompastor.com.br/images/how-to-use-roblox-hacks.pdfIn PDF document text
    • https://www.romedia.gr/images/does-roblox-have-free-snakes.pdfIn PDF document text
    • https://kinderdam.nl/images/no-pants-roblox-free.pdfIn PDF document text
    • http://prohsa.com/images/resourclyml-free-robux-code.pdfIn PDF document text
    • http://pgk-polaniec.pl/images/how-can-you-get-free-robux-on-laptops-on-roblox.pdfIn PDF document text
    • http://wcasrock.org/images/how-to-hack-roblox-on-mac-2021.pdfIn PDF document text
    • https://www.cpnf.ch/images/female-hacker-roblox.pdfIn PDF document text
    • http://genialica.de/images/new-cheat-codes-for-pets-adopt-me-on-roblox.pdfIn PDF document text
    • https://roberto-gac.com/images/bad-busiiness-roblox-hack.pdfIn PDF document text
    • https://esl.ipb.ac.id/images/freecomree-robux.pdfIn PDF document text
    • http://schlossschaenke-andernach.de/images/roblox-jailbreak-hack-download-mobile.pdfIn PDF document text
    • http://sscclc.edu.ec/images/roblox-hack-scripts-android.pdfIn PDF document text
    • https://masseymotorcars.com/images/50k-roblox-hack-client.pdfIn PDF document text
    • http://elearnfactory.com/images/get-free-robux-no-human-verify.pdfIn PDF document text
    • http://sdservicesrl.it/images/roblox-the-games-free.pdfIn PDF document text
    • http://aiyta.com/images/roblox-redeem-shoprobuxiancom-tutorials-freerobuxcodegenerator.pdfIn PDF document text
    • http://lv-siegen.de/images/roblox-guest-t-shirt-free.pdfIn PDF document text
    • http://adenmarks.se/images/roblox-intriga-injector-free.pdfIn PDF document text
    • http://www.evaplast.by/images/how-to-hack-roblox-accounts-passwords-2021.pdfIn PDF document text
    • https://www.stayon.no/images/free-on-roblox.pdfIn PDF document text
    • http://aeroclub-kaernten.at/images/roblox-speed-hack-download-2021.pdfIn PDF document text
    • http://solidcommunication.ch/images/how-do-i-hack-a-roblox-user.pdfIn PDF document text
    • http://geemarco.com/images/free-robux-no-human-verification-no-inspect-2021.pdfIn PDF document text
    • http://adenmarks.se/images/secret-hack-to-get-free-robux.pdfIn PDF document text
    • https://luminouswisdom.org/images/how-to-get-free-robux-in-less-than-1-minute.pdfIn PDF document text
    • https://verdensbarn.no/images/free-robux-html-code.pdfIn PDF document text
    • http://wokbaarlo.nl/images/promo-code-that-gives-you-free-robux.pdfIn PDF document text
    • http://poltekkeskhjogja.ac.id/images/hacks-for-roblox-injectors.pdfIn PDF document text
    • http://ivalor.fr/images/free-executor-download-roblox.pdfIn PDF document text
    • http://domaizdereva24.ru/images/roblox-booga-booga-spee-hack.pdfIn PDF document text
    • http://stroygrad-spb.com/images/roblox-plus-free-robux.pdfIn PDF document text
    • http://www.pcclawyers.com.au/images/roblox-how-to-get-any-gamepass-for-free-2021.pdfIn PDF document text
    • https://www.najeebqasmi.com/images/how-to-hack-robux-2021-may.pdfIn PDF document text
    • https://www.gvandenakker.nl/images/how-to-get-2021-robux-for-free-2021.pdfIn PDF document text
    • https://www.cosmosdawn.net/images/roblox-hack-no-human-verification-android.pdfIn PDF document text
    • https://amatq.ca/images/hack-rpg-simulator-roblox.pdfIn PDF document text
    • http://axia-verlag.at/images/roblox-hack-winrar.pdfIn PDF document text
    • https://pa-pangkalpinang.go.id/images/roblox-android-rape-hack.pdfIn PDF document text
    • https://estalagemmonteverde.com.br/images/boku-no-roblox-remastered-roblox-hack-scripts.pdfIn PDF document text
    • http://echosvoix.ch/images/hacks-to-the-game-on-roblox-cadet-promotion-course.pdfIn PDF document text
    • http://cosver.eu/images/what-game-gives-you-free-robux.pdfIn PDF document text
    • http://condit-pack.com/images/roblox-how-to-get-free-robux-codes.pdfIn PDF document text
    • http://principessalialaofegypt.com/images/how-to-get-free-unlimited-robux-by-hacking-november-2021.pdfIn PDF document text
    • http://poltekkeskhjogja.ac.id/images/roblox-make-a-cake-hack.pdfIn PDF document text
    • http://www.sapaengineering.kz/images/free-redeem-code-on-roblox.pdfIn PDF document text
    • http://lv-siegen.de/images/how-to-get-free-robux-2021-with-no-survey.pdfIn PDF document text
    • http://elllanorestaurants.com/images/roblox-free-camera-script.pdfIn PDF document text