Malicious PDF — malware analysis report

Heuristics 4

• Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
  Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
• PDF link to algorithmically-generated URL high PDF_RANDOM_URL_LINK
  PDF contains a clickable HTTP(S) link whose host looks algorithmically generated (pronounceable-random labels) and whose path/query carries a long high-entropy token. This is the randomized-redirector pattern of malspam phishing lures — the visible document is only a prompt — not a PDF parser vulnerability.
• External URI info PDF_URI
  PDF contains an external URL action
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL http://bestsmartfind.com/sucked/birdcage/dynamism.immunoglobins/ZG93bmxvYWR8ZFMxY3pCbWZId3hOalUyTnpFeU16QTFmSHd5TlRjMGZId29UU2tnY21WaFpDMWliRzluSUZ0R1lYTjBJRWRGVGww&bWlyY2hpIHRlbHVndSBtb3ZpZSBmcmVlIGRvd25sb2FkIGluIHV0b3JyZW50bWl.priceline

  • https://www.mil-spec-industries.com/system/files/webform/zyrewen441.pdf
  • https://tuinfonavit.xyz/hoodie-allen-all-american-album-download-zip-_top_/
  • http://facebook.jkard.com/upload/files/2022/07/B1T9ujN1JrDGTS3J8CHi_01_7cf685e1ea5756feb6fa55fa0a94c345_file.pdf
  • https://eveningandmorningchildcareservices.com/wp-content/uploads/2022/07/Maya2012crack_LINK32bittorrentTorrent.pdf
  • https://www.tresors-perse.com/wp-content/uploads/2022/07/principles_of_marketing_global_and_southern_african_perspect.pdf
  • https://www.doverny.us/sites/g/files/vyhlif4341/f/pages/2022_final_assessment_tax_roll.pdf
  • https://homeimproveinc.com/demolition-company-gold-edition-crack-patch-download-exclusive/
  • https://9escorts.com/advert/termodinamica-de-merle-potter-pdfgolkes-top/
  • http://valentinesdaygiftguide.net/?p=29342
  • http://marrakechtourdrivers.com/advert/film-india-kuch-kuch-hota-hai-bahasa-indonesia/
  • https://everyonezone.com/upload/files/2022/07/behMZeEmULK1Eszm1ors_01_7cf685e1ea5756feb6fa55fa0a94c345_file.pdf
  • https://www.elfetica.it/wp-content/uploads/2022/07/Download_Ewql_Ra_Keygen_Exe_2021.pdf
  • https://inobee.com/upload/files/2022/07/h4JCH5oEMkJiXgIb2sgE_01_b57faea6a8c7b921f8c4191cd17deea7_file.pdf
  • https://www.ctvsh.com/system/files/webform/Internet-Download-Manager-Crackli-Indir-Gezginler.pdf
  • https://workschool.ru/upload/files/2022/07/xJyPiVCnWeqAR7N59tx9_01_7cf685e1ea5756feb6fa55fa0a94c345_file.pdf
  • https://jayaabadiexpress.com/_verified_-download-ebook-novel-the-chronicles-of-narnia-bahasa-indonesia/
  • https://conselhodobrasil.org/2022/07/01/clash-royale-hacks-mods-for-android-and-ios-no-human-verification-2019/
  • https://mindfullymending.com/penelopemenchacaenrevistahextremo111/
  • https://gamersmotion.com/foxit-advanced-pdf-editor-3-05-keygen-__full__/
  • https://busbymetals.com/citrix-xenapp-65-license-file-crack-exclusive/?p=5316
  • http://www.tcpdf.org
  • http://www.w3.org/1999/02/22-rdf-syntax-ns#
  • http://purl.org/dc/elements/1.1/
  • http://ns.adobe.com/xap/1.0/
  • http://ns.adobe.com/pdf/1.3/
  • http://ns.adobe.com/xap/1.0/mm/
  • http://www.aiim.org/pdfa/ns/extension/
  • http://www.aiim.org/pdfa/ns/schema#
  • http://www.aiim.org/pdfa/ns/property#
  • http://www.aiim.org/pdfa/ns/id/

Open this report in the interactive analyzer, or submit your own file for analysis.