MALICIOUS
60
Risk Score
Malware Insights
MITRE ATT&CK
T1059.001 PowerShell
The PDF document contains a large number of embedded URLs pointing to external PDF files, a technique often used for SEO poisoning or to redirect users to malicious content. The heuristic 'PDF_SEO_LINK_FARM' indicates a mass of external links, with the first identified URL being http://loaminoo.linkpc.net/1091093096099091092/Dorothy-Thompson-and-Rose-Wilder-Lane-Forty-Years-of-Friendship-Letters-1921-1960-by-William-Holtz.pdf. While the document body is heavily obfuscated, the presence of numerous links suggests an attempt to drive traffic to a domain potentially hosting further malicious content or phishing pages.
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://loaminoo.linkpc.net/1091093096099091092/Dorothy-Thompson-and-Rose-Wilder-Lane-Forty-Years-of-Friendship-Letters-1921-1960-by-William-Holtz.pdf
- http://loaminoo.linkpc.net/4092095091095097/A-Wilder-Rose-Rose-Wilder-Lane-Laura-Ingalls-Wilder-and-Their-Little-Houses-by-Susan-Wittig-Albert.pdf
- http://loaminoo.linkpc.net/9092094091094090/The-Making-of-Herbert-Hoover-by-Rose-Wilder-Lane.pdf
- http://loaminoo.linkpc.net/1090096090099099091/The-Rediscovered-Writings-of-Rose-Wilder-Lane-Literary-Journalist-by-Amy-Mattson-Lauters.pdf
- http://loaminoo.linkpc.net/2092091096092090/Following-Atticus-Forty-Eight-High-Peaks-One-Little-Dog-and-an-Extraordinary-Friendship-by-Tom-Ryan.pdf
- http://loaminoo.linkpc.net/9092091094096098/A-Life-with-Karol-My-Forty-Year-Friendship-with-the-Man-Who-Became-Pope-by-Stanis-aw-Dziwisz.pdf
- http://loaminoo.linkpc.net/1096097099095098/The-Girls-from-Ames-A-Story-of-Women-and-a-Forty-Year-Friendship-by-Jeffrey-Zaslow.pdf
- http://loaminoo.linkpc.net/1093098091097099/West-from-Home-Letters-of-Laura-Ingalls-Wilder-San-Francisco-1915-Little-House-11-by-Laura-Ingalls-Wilder.pdf
- http://loaminoo.linkpc.net/1091096093092099099/Enlightening-Letters-1946-1960-by-Isaiah-Berlin.pdf
- http://loaminoo.linkpc.net/3095098097096097/NPR-The-First-Forty-Years-by-National-Public-Radio.pdf
- http://loaminoo.linkpc.net/8094095094092093/Twenty-Years-amp-Forty-Days-by-Jorge-Valls.pdf
- http://loaminoo.linkpc.net/1098097096098091/Marine-Rifleman-Forty-Three-Years-in-the-Corps-by-Wesley-L-Fox.pdf
- http://loaminoo.linkpc.net/8096097099094097/Gerhard-Richter-Forty-Years-of-Painting-by-Robert-Storr.pdf
- http://loaminoo.linkpc.net/1091097090094097099/The-Dignity-of-Chartism-by-Dorothy-Thompson.pdf
- http://loaminoo.linkpc.net/1095097090099096/Forty-Years-Master-A-Life-in-Sail-and-Steam-by-Daniel-O-Killman.pdf
- http://loaminoo.linkpc.net/1091096099091093090/Pinball-Memories-Forty-Years-of-Fun-1958-1998-by-Marco-Rossignoli.pdf
- http://loaminoo.linkpc.net/6094093091091090/Letters-for-Scarlet-Friendship-amp-Secrets-1-by-Julie-C-Gardner.pdf
- http://loaminoo.linkpc.net/5091093092094097/Memphis-Under-the-Ptolemies-Second-Edition-by-Dorothy-J-Thompson.pdf
- http://loaminoo.linkpc.net/4096098092093/The-First-Four-Years-Little-House-9-by-Laura-Ingalls-Wilder.pdf
- http://loaminoo.linkpc.net/1098099095099/Ain-t-Gonna-Let-Nobody-Turn-Me-Around-Forty-Years-of-Movement-Building-with-Barbara-Smith-by-Alethia-Jones.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.