MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
The PDF contains a large number of embedded links to external PDF files, a technique often used for SEO poisoning or to distribute malicious content. The ML classifier strongly indicated maliciousness. While the document body was unreadable, the heuristic firings and embedded URLs suggest a lure to a link farm hosted on a suspicious domain.
Machine Learning
- Nyx PDF Classifier malicious score 0.9920
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://muicuiu.dumb1.com/9a08a07a02a04a02/Kumar-amp-Clark-s-Medical-Management-and-Therapeutics-by-Parveen-Kumar.pdf
- http://muicuiu.dumb1.com/5a02a05a07a06a06/Harry-Potter-and-The-Half-Blood-Prince---Harry-Potter-dan-Pangeran-Berdarah-Campuran-Harry-Potter-6-by-J-K-Rowling.pdf
- http://muicuiu.dumb1.com/9a08a07a01a03a04/Shiv-Kumar-Samuchi-Kavita-by-Shiv-Kumar-Batalvi.pdf
- http://muicuiu.dumb1.com/2a01a02a07a05a07/Gang-Leader-for-a-Day-by-Sudhir-Venkatesh.pdf
- http://muicuiu.dumb1.com/1a00a00a03a09a06a09/American-Project-The-Rise-and-Fall-of-a-Modern-Ghetto-by-Sudhir-Venkatesh.pdf
- http://muicuiu.dumb1.com/4a02a04a04a09a09/Floating-City-A-Rogue-Sociologist-Lost-and-Found-in-New-York-s-Underground-Economy-by-Sudhir-Venkatesh.pdf
- http://muicuiu.dumb1.com/9a08a07a03a00a02/You-Are-Therefore-I-Am-A-Conversation-with-Satish-Kumar-by-Satish-Kumar.pdf
- http://muicuiu.dumb1.com/1a00a05a05a02a01a04/Drei-Bildergeschichten-von-Beatrix-Potter-Der-b-se-Hase-Miss-Moppet-und-die-zwei-frechen-M-use-by-Beatrix-Potter.pdf
- http://muicuiu.dumb1.com/5a02a05a08a04a08/Harry-Potter-and-the-Cursed-Child---Harry-Potter-dan-Si-Anak-Terkutuk-Bagian-Satu-dan-Dua-by-John-Tiffany.pdf
- http://muicuiu.dumb1.com/3a04a00a09a05a08/Neurotica-The-Darkest-Art-of-J-K-Potter-by-J-K-Potter.pdf
- http://muicuiu.dumb1.com/9a03a03a05a02a02/Die-Geschichte-von-Jemima-Puddle-Duck-illustriert-Eine-Bildergeschichte-f-r-Kinder-im-Alter-von-2-bis-6-Jahren---Beatrix-Potter-Serie-Band-9-by-Beatrix-Potter.pdf
- http://muicuiu.dumb1.com/5a03a05a02a03a04/Harry-Potter-et-le-Prisonnier-d-Azkaban-La-s-rie-de-livres-Harry-Potter-t-3-by-J-K-Rowling.pdf
- http://muicuiu.dumb1.com/8a03a01a03a09a01/Timeless-Tales-of-Beatrix-Potter-Peter-Rabbit-and-Friends-by-Beatrix-Potter.pdf
- http://muicuiu.dumb1.com/3a07a08a02a07a07/Harry-Potter-and-the-Half-Blood-Prince-Harry-Potter-6-by-J-K-Rowling.pdf
- http://muicuiu.dumb1.com/1a05a08a09a03a01/Harry-Potter-and-the-Cursed-Child-Harry-Potter-8-by-John-Tiffany.pdf
- http://muicuiu.dumb1.com/5a09a00a07/James-Potter-and-the-Crimson-Thread-James-Potter-5-by-G-Norman-Lippert.pdf
- http://muicuiu.dumb1.com/3a06a07a07a04/Harry-Potter-and-the-Order-of-the-Phoenix-Harry-Potter-5-Part-1-by-J-K-Rowling.pdf
- http://muicuiu.dumb1.com/8a05a07a08a07/James-Potter-and-the-Vault-of-Destinies-James-Potter-3-by-G-Norman-Lippert.pdf
- http://muicuiu.dumb1.com/2a02a01a03/Harry-Potter-and-the-Order-of-the-Phoenix-Harry-Potter-5-by-J-K-Rowling.pdf
- http://muicuiu.dumb1.com/4a00a07a02a04/Harry-Potter-and-the-Deathly-Hallows-Harry-Potter-7-by-J-K-Rowling.pdf
- http://muicuiu.dumb1.com/4a02a04a04a09a09/Floating-City-A-Rogu
Open this report in the interactive analyzer, or submit your own file for analysis.