PDF static analysis report

Static analysis result for SHA-256 d430f24073ea1c7b…

SUSPICIOUS

PDF

25.7 KB Created: 2021-04-07 20:50:53 +07:00 Authoring application: wkhtmltopdf 0.12.6 (via Qt 4.8.7) First seen: 2021-09-27
MD5: 3600488ff8144603568d280a19ec6c41 SHA-1: cd7bd0684f21ab6d6546bb6fef0a25c4bc3a4d29 SHA-256: d430f24073ea1c7ba325cb811a346a901f7f9e5bfc9e27308720946b57cd4805
34 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The PDF document contains numerous links disguised as 'Roblox mod menu hacks' and 'free Robux', with a primary link pointing to 'gaminggenerator.org'. The ML classifier strongly flagged this PDF as malicious. The document body and embedded URLs suggest a lure to a site that likely hosts further malicious content or phishing attempts.

Machine Learning

  • Nyx PDF Classifier malicious score 0.9948

Heuristics 2

  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL https://gaminggenerator.org/app/431946152/mod-menu-hack-roblox-game-hack PDF link annotation
    • http://ilccanada.org/images/free-robux-no-human-verification-no-lie.pdfIn PDF document text
    • http://keepcasscountybeautiful.com/images/how-to-hack-slx-roblox.pdfIn PDF document text
    • https://www.apollowebdesign.in/images/1-million-free-robux-landon.pdfIn PDF document text
    • http://www.visiblefilm.com/images/http-roblox-mobile-hacks-4-free-com.pdfIn PDF document text
    • http://ilijakom.com/images/10-tips-to-get-free-robux.pdfIn PDF document text
    • http://steklofara.com.ua/images/roblox-hack-scripts-to-fly-copy-and-paste.pdfIn PDF document text
    • https://kimolos-link.gr/images/how-to-create-t-shirts-in-roblox-for-free.pdfIn PDF document text
    • https://www.coriglianocalabro.it/images/best-free-horror-game-roblox.pdfIn PDF document text
    • https://www.gymun.cz/images/download-roblox-free-pc-windows-7.pdfIn PDF document text
    • http://pietroubaldi.org.br/images/roblox-hackeado-pc-gratis.pdfIn PDF document text
    • http://kermas.eu/images/roblox-lag-cheat.pdfIn PDF document text
    • http://smssahin.com/images/free-roblox-cards-2021.pdfIn PDF document text
    • https://www.manmed.info:443/images/free-robux-give-away-live.pdfIn PDF document text
    • http://eurosystemssrl.it/images/roblox-earn-robux-free.pdfIn PDF document text
    • http://www.ntc.edu.za/images/robux-hack-app-download.pdfIn PDF document text
    • http://energotestcontrol.ru/images/free-roblox-card-codes-no-survey.pdfIn PDF document text
    • http://dejipkesbelt.nl/images/rich-free-roblox-accounts.pdfIn PDF document text
    • http://businessfit.com/images/how-to-make-hack-models-in-roblox.pdfIn PDF document text
    • http://www.art-concept.gr/images/hacks-for-roblox-legit-free-robux.pdfIn PDF document text
    • https://roberto-gac.com/images/hack-robux-into-roblox-account.pdfIn PDF document text