SUSPICIOUS
42
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
This PDF document was flagged as suspicious by an ML classifier. The file presents a deceptive download button. Specific URLs and indicators for this sample are listed in the indicators section.
Machine Learning
- Nyx PDF Classifier malicious score 0.7795
Heuristics 3
-
Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTONDocument contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://gaminggenerator.org/app/431946152/hack-de-roblox-fly PDF link annotation
- http://poltekkeskhjogja.ac.id/images/caillou-roblox-hack.pdfIn PDF document text
- http://agrao.in/images/roblox-simulator-hacks.pdfIn PDF document text
- http://www.adravietnam.org/images/roblox-2021-free-items.pdfIn PDF document text
- https://inspiration-modellbau.de/images/roblox-pants-download-free.pdfIn PDF document text
- http://www.controverseinterapie.it/images/free-robux-hack-no-verification-no-verification.pdfIn PDF document text
- https://esl.ipb.ac.id/images/robux-gift-card-uk-free.pdfIn PDF document text
- https://www.belgium-archery.be/images/roblox-best-free-items.pdfIn PDF document text
- https://www.hbproducts.dk/images/games-on-roblox-that-promise-you-free-robux.pdfIn PDF document text
- http://garrisonjazz.com/images/free-robux-com-2021.pdfIn PDF document text
- https://texcarmats.com/images/how-get-free-skin-in-csgo-roblox.pdfIn PDF document text
- https://www.cosmosdawn.net/images/roblox-aimbot-hacks-pc.pdfIn PDF document text
- http://www.visiblefilm.com/images/is-it-illegal-to-hack-in-roblox.pdfIn PDF document text
- http://interpretation-dessins-enfants.net/images/free-robux-hack-on-robux-store.pdfIn PDF document text
- http://bluediffusion.it/images/roblox-hack-robux-and-tix-download-free.pdfIn PDF document text
- http://texnes-plus.gr/images/roblox-hack-apk-android-2021.pdfIn PDF document text
- http://www.sanjosedeminas.gob.ec/images/free-roblox-gift-card-codes-septemer-28-2021.pdfIn PDF document text
- https://rieber-transporte.de/images/rbxcity-free-robux.pdfIn PDF document text
- http://ghegamethu.vn/images/roblox-mad-city-cheat-to-kick-people.pdfIn PDF document text
- http://florentineholding.com/images/cheat-roblox-csgo-november-2021.pdfIn PDF document text
- https://ballaratcaravans.com.au/images/roblox-cheat-engine-bypass-august-2021.pdfIn PDF document text
- http://pa-bengkulukota.go.id/images/how-to-get-free-robux-easy-2021.pdfIn PDF document text
- http://pa-tanjungselor.go.id/images/lol-robloxcant-patch-the-free-robux.pdfIn PDF document text
- https://www.coriglianocalabro.it/images/can-i-get-banned-from-a-roblox-game-for-cheating.pdfIn PDF document text
- http://www.lovecraftiana.com.ar/images/youtube-free-robux-hack-glitch.pdfIn PDF document text
- https://www.fenews.co.uk/images/roblox-pc-hack-download.pdfIn PDF document text
- https://www.hbproducts.dk/images/roblox-hack-arsenal-pc.pdfIn PDF document text
- http://www.gadanie.lv/images/new-roblox-hack-2021.pdfIn PDF document text
- https://www.millatgears.com/images/robux-free-online.pdfIn PDF document text
- http://bullyinformate.org/images/where-can-i-get-free-robux.pdfIn PDF document text
- https://www.tartineartisanal.com/images/www-roblox-com-get-robux-for-free.pdfIn PDF document text
- http://www.nielsen2u.dk/images/how-to-hack-roblox-games-using-cheat-engine.pdfIn PDF document text
- https://www.elevage-chiot.fr/images/roblox-passwort-hacken.pdfIn PDF document text
- https://waterpark.by:443/images/hacks-for-pet-ranch-roblox.pdfIn PDF document text
- https://bapalaye.org/images/get-free-eggmin-egg-on-roblox-egg-hunt-2021-livw.pdfIn PDF document text
- https://www.cfdcnv.com/images/free-robux-by-just-generating-survey.pdfIn PDF document text
- http://fratellimazzoleni.it/images/roblox-hack-tool-2021-download.pdfIn PDF document text
- https://europe-upkl.eu/images/roblox-games-with-free-boombox.pdfIn PDF document text
- http://www.sanjosedeminas.gob.ec/images/robux-hack-2021.pdfIn PDF document text
- http://pacatuamigo.com/images/roblox-mad-city-free-vip.pdfIn PDF document text
- http://medicalafrica.net/images/roblox-natural-disaster-survival-hack.pdfIn PDF document text
- http://baah.ca/images/equillex-how-to-get-free-robux-and-builders-club.pdfIn PDF document text
- https://www.wildpark-johannismuehle.de/images/how-to-hack-on-roblox-3-simple-steps-youtube.pdfIn PDF document text
- https://vtvvaals.nl/images/how-to-get-free-robux-no-inspect-element.pdfIn PDF document text
- https://www.air-shop.cz/images/free-cash-script-ultimate-driving-roblox-pastebin.pdfIn PDF document text
- http://www.evaplast.by/images/hacker-takes-over-roblox-streamers.pdfIn PDF document text
- http://cadcam.no/images/roblox-mad-city-hack-money.pdfIn PDF document text
- http://jijel.info/images/how-to-get-free-robux-no-survey-or-human-verification.pdfIn PDF document text
- http://www.hawler.in/images/robux-free-infini.pdfIn PDF document text
- http://gods-own.org/images/how-to-hack-robux-using-inspect-element-2021.pdfIn PDF document text
+16 more URL(s)
Extracted artifacts 2
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
stream_003_off00008228.bin |
decompressed-pdf-stream | PDF FlateDecoded stream at offset 0x8228 | 25004 bytes |
SHA-256: 4912685959807c99d630f132a0d64f24fe371dc4a5ed6708d4a728058e02fae9 |
|||
font_01_sfnt_off0000baac.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0xBAAC | 17912 bytes |
SHA-256: 279cd7ef25e64d897885bc00126132d588f5c2668ae0255763ee7c581767b526 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.