MALICIOUS
120
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1204.002 Malicious Link
The PDF file contains numerous embedded links, with a critical heuristic identifying a malicious redirector. The document body, though heavily obfuscated, contains text related to 'basic electrical engineering mittal pdf free download' and a URL pointing to a redirector. This suggests a social engineering lure to trick users into downloading further malicious content. No scripts were extracted from this sample.
Heuristics 3
-
PDF links to known malicious redirector infrastructure critical PDF_MALICIOUS_REDIRECTOR_LINKPDF contains a clickable URI to redirector infrastructure used by a known malicious PDF SEO/adware delivery campaign. These documents typically rely on user interaction and redirect chains rather than a PDF parser vulnerability.
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://ttraff.ru/pify?keyword=basic+electrical+engineering+mittal+pdf+free+download
- http://rotiridij.ttsvoronos.com/uploads/1/3/0/8/130814229/fizovosadozen-durugepi.pdf
- http://files.mtmv.net/uploads/1/3/1/4/131453464/4537007.pdf
- http://files.efccc.net/uploads/1/3/1/0/131070313/luxawapofomu.pdf
- http://files.hisaxfnd.org/uploads/1/3/1/4/131453494/zupavivulitinuxavi.pdf
- https://cdn.shopify.com/s/files/1/0437/8640/4000/files/el_neoliberalismo_definicion.pdf
- https://cdn.shopify.com/s/files/1/0428/8492/3555/files/nevobirosazo.pdf
- https://cdn.shopify.com/s/files/1/0435/8628/9832/files/tuwujuzetutoxa.pdf
- https://cdn.shopify.com/s/files/1/0433/0687/7080/files/19836568605.pdf
- https://cdn.shopify.com/s/files/1/0429/6956/3290/files/tewasusudexobeze.pdf
- https://cdn.shopify.com/s/files/1/0430/5040/1943/files/96859420194.pdf
- https://cdn.shopify.com/s/files/1/0434/1583/0695/files/beethoven_piano_sonata_14.pdf
- https://cdn.shopify.com/s/files/1/0434/1514/2567/files/moonlighter_golem_volume.pdf
- https://cdn.shopify.com/s/files/1/0430/7176/6677/files/82979995429.pdf
- https://cdn.shopify.com/s/files/1/0438/0193/6033/files/99990425709.pdf
- https://cdn.shopify.com/s/files/1/0437/6412/1752/files/tuxazido.pdf
- http://www.w3.org/1999/02/22-rdf-syntax-ns#
- http://purl.org/dc/elements/1.1/
- http://ns.adobe.com/pdf/1.3/
- http://ns.adobe.com/xap/1.0/
- http://ns.adobe.com/xap/1.0/mm/
- http://ns.adobe.com/xap/1.0/rights/
Extracted artifacts 6
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
font_00_sfnt_off00006600.bin7b8c2da2a1350c73595ec6cf2d81bbe4233ceadfddd109198d8fd1bcea305ce4 |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x6600 | 5404 bytes |
font_01_sfnt_off00007844.bind97e055e11de589539a249dfdf9c15aca1e9caf4700104d1763a3a5d87d8f7f2 |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x7844 | 2320 bytes |
font_02_sfnt_off00008296.bin0e83792c2a58342406eb419027950c70d9cb5a71e33fa268bd99e468e2c53f6c |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x8296 | 10012 bytes |
font_03_sfnt_off0000a52b.bin207faf14306426b668b87aba0c9d447b8ba40b67f0f7b18660ffa0d3c8132265 |
pdf-font-stream | PDF embedded font (sfnt) at offset 0xA52B | 16224 bytes |
font_04_sfnt_off0000ba77.bind1f4a20f0e35a0564be54678b929bb8c711862c507f070c2b9a6abea8daf4378 |
pdf-font-stream | PDF embedded font (sfnt) at offset 0xBA77 | 4324 bytes |
font_05_sfnt_off0000c877.bin29b55256169f4d55cc27294b8f42ab3d3b8acbe626f54fa3e4ac8b96927187bc |
pdf-font-stream | PDF embedded font (sfnt) at offset 0xC877 | 5184 bytes |
Open this report in the interactive analyzer, or submit your own file for analysis.