MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
The PDF contains a large number of embedded URLs, identified by the PDF_SEO_LINK_FARM heuristic, pointing to various Star Wars-themed documents. While the URLs themselves are currently marked as benign, the sheer volume and the nature of the heuristic suggest a malicious intent, possibly for SEO manipulation or to serve as a landing page for further malicious activity. The ML classifier also strongly indicated maliciousness. No scripts were extracted from this sample.
Machine Learning
- Nyx PDF Classifier malicious score 0.9924
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://cefasfese.4pu.com/3730734732733734/A-New-Hope-Star-Wars-Episode-IV-by-George-Lucas.pdf
- http://cefasfese.4pu.com/8731733730732739/Star-Wars-Episode-1-Journal-Pack--Anakin-Skywalker-and-Queen-Amidala-Star-Wars-Episode-1-Journal-by-Todd-Strasser.pdf
- http://cefasfese.4pu.com/3733739737735736/The-Art-of-Star-Wars-Episode-VI-Return-of-the-Jedi-by-Carol-Titelman.pdf
- http://cefasfese.4pu.com/3734730731731735/Star-Wars-Episode-II-Attack-of-the-Clones-Volume-1-by-Henry-Gilroy.pdf
- http://cefasfese.4pu.com/3733739737734731/The-Art-of-Star-Wars-Episode-V-The-Empire-Strikes-Back-by-Deborah-Call.pdf
- http://cefasfese.4pu.com/3734730731731734/Star-Wars-Episode-II-Attack-of-the-Clones-Volume-4-by-Henry-Gilroy.pdf
- http://cefasfese.4pu.com/5738735736732734/The-Making-of-Star-Wars-Episode-I---The-Phantom-Menace-by-Laurent-Bouzereau.pdf
- http://cefasfese.4pu.com/3734730730733737/Star-Wars-Episode-I-The-Phantom-Menace-Volume-1-by-Henry-Gilroy.pdf
- http://cefasfese.4pu.com/3733739733735734/The-Visual-Dictionary-of-Star-Wars-Episode-I---The-Phantom-Menace-by-David-West-Reynolds.pdf
- http://cefasfese.4pu.com/3733739737732736/Star-Wars-Episode-II---Attack-of-the-Clones-The-Visual-Dictionary-by-David-West-Reynolds.pdf
- http://cefasfese.4pu.com/3733739737733735/Star-Wars-Infinities---A-New-Hope-by-Chris-Warner.pdf
- http://cefasfese.4pu.com/3734730733730735/Star-Wars-Heroes-for-a-New-Hope-by-Mark-Waid.pdf
- http://cefasfese.4pu.com/6736731736738736/Star-Wars-Chevaliers-de-l-ancienne-r-publique-T05-Sans-piti-Star-Wars-Knights-of-the-Old-Republic-6-by-John-Jackson-Miller.pdf
- http://cefasfese.4pu.com/3733739737733739/Star-Wars-Vol-3-Rebel-Jail-Star-Wars-3-by-Jason-Aaron.pdf
- http://cefasfese.4pu.com/8739738737732734/Star-Wars-Vor-dem-Erwachen-Die-offizielle-Vorgeschichte-zu-Star-Wars-Das-Erwachen-der-Macht-by-Greg-Rucka.pdf
- http://cefasfese.4pu.com/6735737739739/Star-by-Star-Star-Wars-The-New-Jedi-Order-9-by-Troy-Denning.pdf
- http://cefasfese.4pu.com/5730735734735736/William-Shakespeare-s-Jedi-the-Last-Star-Wars-Part-the-Eighth-William-Shakespeare-s-Star-Wars-8-by-Ian-Doescher.pdf
- http://cefasfese.4pu.com/1736733730736732/The-Mandalorian-Armor-Star-Wars-The-Bounty-Hunter-Wars-1-by-K-W-Jeter.pdf
- http://cefasfese.4pu.com/3733739733732731/Stealth-Star-Wars-Clone-Wars-Gambit-1-by-Karen-Miller.pdf
- http://cefasfese.4pu.com/3733739737732737/Darth-Maul-Shadow-Conspiracy-Star-Wars-The-Clone-Wars-Junior-Novel-5-by-Jason-Fry.pdf
- http://cefasfese.4pu.com/5738735736732734/The-Making-of-Star-Wars-Episode-I---The-Phantom-Me
Open this report in the interactive analyzer, or submit your own file for analysis.