MALICIOUS
64
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
T1059.001 PowerShell
T1204.002 Malicious Link
The PDF document contains a large number of external links, a technique often used for SEO poisoning or to distribute further malicious content. One prominent URL, http://godsearchs.com/UGFyY2hlZCBmdWxsIG1vdmllIGRvd25sb2FkIGhpbmRpUGF.creamers.cornerback/elrich.ZG93bmxvYWR8MXRHWkdSNE1YeDhNVFkxTnpBMk56RTFOSHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA/hurtwood/huts/muttering, appears to be a direct download link. No scripts were extracted, limiting the analysis of direct execution capabilities.
Machine Learning
- Nyx PDF Classifier clean score 0.0086
Heuristics 3
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://godsearchs.com/UGFyY2hlZCBmdWxsIG1vdmllIGRvd25sb2FkIGhpbmRpUGF.creamers.cornerback/elrich.ZG93bmxvYWR8MXRHWkdSNE1YeDhNVFkxTnpBMk56RTFOSHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA/hurtwood/huts/muttering
- https://mashxingon.com/klub-17-7-5-torrent-added/
- https://www.nooganightlife.com/wp-content/uploads/2022/07/IDMUltraEditv190001022InclKeymakerCORE_full_version.pdf
- http://adhicitysentulbogor.com/?p=32353
- https://www.golfmotion.com.au/sites/default/files/webform/vissim-8-keygen.pdf
- https://subsidiosdelgobierno.site/racha-telugu-movie-english-subtitles-download-work-language/
- https://www.reperiohumancapital.com/system/files/webform/pekelay166.pdf
- https://24estatehouse.com/dark-tales-edgar-allan-poes-the-black-cat-free-download-top/
- https://writeforus.website/wp-content/uploads/2022/07/obeyar.pdf
- https://pianoetrade.com/wp-content/uploads/2022/07/Mr_Bechara_Hindi_Movie_1080p_Download_NEW.pdf
- https://www.chemfreecarpetcleaning.com/2011freedownloadpdf2datforxperthighscorepdf-verified/
- http://yotop.ru/2022/07/06/license-standalone-dat-matlab/
- https://midiario.com.mx/upload/files/2022/07/gKLbMa9ltrbfC3g68Asd_06_3202c8c53ee377b1f1e5ec22859ecf33_file.pdf
- https://kunamya.com/hd-online-player-sniper-elite-4-activation-code-and-s-repack/
- https://www.raven-guard.info/rtsp-mpeg4-sp-control-plugin-45-exclusive/
- https://ofsnl.nl/wp-content/uploads/2022/07/maegcor.pdf
- http://www.trabajosfacilespr.com/eltima-serial-to-ethernet-connector-6-keygen-exclusive-crack/
- https://superstitionsar.org/mitsubishi-gx-developer-8-9-download-rar-cracked/
- https://blog-gegen-rechts.de/wp-content/uploads/2022/07/clolan.pdf
- https://loyolaschoolharnaut.com/wp-content/uploads/2022/07/kalfrid.pdf
- https://www.nooganightlife.com/wp-
- https://pianoetrade.com/wp-
- https://midiario.com.mx/upload/files/2022/07/gKLbMa9ltrbfC3g68Asd_06_3202c8c53ee377b1f1e5ec2
- https://trello.com/c/S5hiy0bu/57-mad-max-fury-road-movie-better-download-in-hindi-dubbed-mp4
- http://www.tcpdf.org
- http://www.w3.org/1999/02/22-rdf-syntax-ns#
- http://purl.org/dc/elements/1.1/
- http://ns.adobe.com/xap/1.0/
- http://ns.adobe.com/pdf/1.3/
- http://ns.adobe.com/xap/1.0/mm/
- http://www.aiim.org/pdfa/ns/extension/
- http://www.aiim.org/pdfa/ns/schema#
- http://www.aiim.org/pdfa/ns/property#
- http://www.aiim.org/pdfa/ns/id/
Open this report in the interactive analyzer, or submit your own file for analysis.