MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF file was flagged by a machine learning classifier as malicious. Static analysis revealed a large number of embedded external links, many of which appear to be SEO-optimized PDF links. The primary heuristic indicates a 'PDF_SEO_LINK_FARM' with numerous numeric slug SEO PDF links, suggesting a tactic to distribute malicious content or manipulate search engine results. While the document body is heavily obfuscated, the presence of numerous links points towards a content-driven attack, possibly a phishing or malware distribution lure.
Machine Learning
- Nyx PDF Classifier malicious score 0.9922
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://cefasfese.4pu.com/1731734738736732737/The-Journal-Writer-s-Guide-to-Staying-Started-A-Companion-Workbook-to-the-Getting-Started-Staying-Started-Journaling-Workshop-by-Nathan-Ohren.pdf
- http://cefasfese.4pu.com/5732736730730737/Value-Based-Fees-How-to-Charge---and-Get---What-You-re-Worth-The-Ultimate-Consultant-Series-by-Alan-Weiss.pdf
- http://cefasfese.4pu.com/9739739731738737/Murder-in-Gotham-Weiss-amp-Weiss-2-by-Isidore-Haiblum.pdf
- http://cefasfese.4pu.com/9734739737735735/Consulting-with-the-Enneagram-by-Ginger-Lapid-Bogda.pdf
- http://cefasfese.4pu.com/1731733737737731/Business-Doctors-Management-Consulting-Gone-Wild-by-Sameer-Kamat.pdf
- http://cefasfese.4pu.com/6732739735738734/Vault-com-Career-Guide-to-Consulting-3rd-Edition-by-Doree-Shafrir.pdf
- http://cefasfese.4pu.com/8736732738732738/Modell-Deutschland-21-Wege-in-das-n-chste-Jahrhundert-by-Andersen-Consulting.pdf
- http://cefasfese.4pu.com/1730738731735734736/Institutional-Development-Promoted-by-Norwegian-Private-Companies-and-Consulting-Firms-by-Kim-Forss.pdf
- http://cefasfese.4pu.com/1731731733739730/Sherlock-Holmes-of-Baker-Street-A-Life-of-the-World-s-First-Consulting-Detective-by-William-S-Baring-Gould.pdf
- http://cefasfese.4pu.com/4738739739732732/The-Art-of-Getting-Started-by-Lee-Crutchley.pdf
- http://cefasfese.4pu.com/1735735735734731/It-All-Started-Zournal-1-by-R-S-Merritt.pdf
- http://cefasfese.4pu.com/2732738739734736/It-Started-with-Brian-by-Dan-Kincaid.pdf
- http://cefasfese.4pu.com/1730731734732737736/Wie-schreibe-ich-eine-originelle-Gratulation-zum-Geburtstag-So-Humorvolle-fr-hliche-und-nachdenkliche-S-tze-f-r-Ihre-Geburtstagspost-Lernschritte-4-by-Language-Teaching-and-Consulting.pdf
- http://cefasfese.4pu.com/6730738733731732/It-Started-With-Paris-by-Cathy-Kelly.pdf
- http://cefasfese.4pu.com/3733738737730738/It-Started-With-The-Garden-by-Brandon-Carlisle.pdf
- http://cefasfese.4pu.com/1730737730732737734/Started-Early-Took-My-Dog-by-Kate-Atkinson.pdf
- http://cefasfese.4pu.com/3736739732735735/It-All-Started-With-Europa-by-Richard-Armour.pdf
- http://cefasfese.4pu.com/4737732735733737/It-Started-With-A-Phone-Call-by-Amy-Sousa.pdf
- http://cefasfese.4pu.com/3735739739737731/How-I-Started-the-Apocalypse-by-Brian-Pinkerton.pdf
- http://cefasfese.4pu.com/2733732735735736/Have-You-Started-Yet-You-and-Your-Period-by-Ruth-Thomson.pdf
- http://cefasfese.4pu.com/8736732738732738/Modell-Deutschland-21-Wege-in-das-n-chste-Jahrh
Open this report in the interactive analyzer, or submit your own file for analysis.