SUSPICIOUS
44
Risk Score
Machine Learning
- Nyx PDF Classifier clean score 0.0002
Heuristics 3
-
PDF link to algorithmically-generated URL high PDF_RANDOM_URL_LINKPDF contains a clickable HTTP(S) link whose host looks algorithmically generated (pronounceable-random labels) and whose path/query carries a long high-entropy token. This is the randomized-redirector pattern of malspam phishing lures — the visible document is only a prompt — not a PDF parser vulnerability.
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://www.dubetradeport.co.za/News/7/Press%20Releases%20and%20Statements/70254/Kw In PDF document text
- https://www.dubetradeport.co.za/News/7/Press%20Releases%20and%20Statements/70254/KIn PDF document text
- https://pmi-oc.org/document-repository/past-event-presentations/38-paper-five-In PDF document text
- https://www.nra.co.za/live/content.php?Item_ID=4884In PDF document text
- https://www.edu.gov.mb.ca/k12/cur/physhlth/frame_found_gr12/rm/module_d_lesson_1.pdfIn PDF document text
- https://fsu.digital.flvc.org/islandora/object/fsu:180256/datastream/PDF/viewIn PDF document text
- http://www.brighthub.com/office/project-In PDF document text
- http://www.brighthub.com/office/project-management/articles/21359.aspxIn PDF document text
- http://www.brighthub.com/office/project-management/articles/63004.aspx?p=2In PDF document text
- http://www.brighthub.com/office/project-management/articles/14644.aspxIn PDF document text
- http://www.pmtoolbox.com/project-management-news/back-to-basic-understanding-resource-In PDF document text
- http://www.projectauditors.com/Dictionary/R.htmlIn PDF document text
- http://www.brighthub.com/office/project-management/articles/51791.aspxIn PDF document text
- https://www.dubetradeport.co.za/News/7/Press%20Releases%20and%20Statements/70254/KwaZulu-NatalunveilsDurbanAerotropolisIn PDF document text
- https://www.youtube.com/watch?v=9_tgOd5C3esIn PDF document text
- https://pdfs.semanticscholar.org/9db5/7b06ef7cf96b96100e6c6b79c9b8cfab4fd8.pdfIn PDF document text
- https://www.youtube.com/watch?v=xis13F-In PDF document text
- https://www.youtube.com/watch?v=xqTHojeJWnwIn PDF document text
- https://www.youtube.com/watch?v=CxapGqlh3FgIn PDF document text
- https://www.youtube.com/watch?v=k1m8o3PleHkIn PDF document text
- https://www.youtube.com/watch?v=tovuwco2WSAIn PDF document text
- https://www.youtube.com/watch?v=akO2Lf1fHmMIn PDF document text
- https://www.youtube.com/watch?v=wEWhnodF6igIn PDF document text
- https://pdfs.semanticscholar.org/bb75/4ae05f0a688c884678e75cb63adc1f92aa33.pdfIn PDF document text
- https://www.youtube.com/watch?v=FBtOuSud1sAIn PDF document text
- https://www.pmi.org/learning/library/make-earned-value-work-In PDF document text
- https://www.youtube.com/watch?v=oXhgwn-girIIn PDF document text
- https://www.youtube.com/watch?v=CTHHiBNXJ6wIn PDF document text
- http://okeanis.lib2.uniwa.gr/xmlui/bitstream/handle/123456789/606/prm_00067.pdf?sequence=In PDF document text
- https://www.youtube.com/watch?v=BXtVcyRsQXs&t=37sIn PDF document text
- https://www.youtube.com/watch?v=MWu8B8rcS2gIn PDF document text
- https://www.youtube.com/watch?v=bBxchIdXFBUIn PDF document text
- https://www.youtube.com/watch?v=ChsGf9SvUhcIn PDF document text
- https://www.youtube.com/watch?v=iKEpyGhTRmkIn PDF document text
- https://www.pmi.org/learning/library/project-team-performance-expected-In PDF document text
- https://www.youtube.com/watch?v=hhuoBChCTDUIn PDF document text
- https://www.cs.unc.edu/~welch/class/comp145/media/docs/Boehm_Term_NE_Fail.pdfIn PDF document text
- https://creativecommons.org/licenses/by/4.0/legalcodeIn PDF document text
- http://www.iec.chIn PDF document text
- http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
- http://ns.adobe.com/pdf/1.3/In PDF document text
- http://purl.org/dc/elements/1.1/In PDF document text
- http://ns.adobe.com/xap/1.0/In PDF document text
- http://ns.adobe.com/xap/1.0/mm/In PDF document text
- https://www.wrike.com/project-management/PDF link annotation
- http://crl.microsoft.com/pki/crl/products/CSPCA.crl0HIn extracted file (font_00_sfnt_off003018ff.bin)
- http://www.microsoft.com/pki/certs/CSPCA.crt0In extracted file (font_00_sfnt_off003018ff.bin)
- http://crl.microsoft.com/pki/crl/products/tspca.crl0HIn extracted file (font_00_sfnt_off003018ff.bin)
- http://www.microsoft.com/pki/certs/tspca.crt0In extracted file (font_00_sfnt_off003018ff.bin)
- http://www.microsoft.com/typographyIn extracted file (font_00_sfnt_off003018ff.bin)
+15 more URL(s)
Extracted artifacts 8
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
font_00_sfnt_off003018ff.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x3018FF | 84284 bytes |
SHA-256: c3c6281cdae6b32da6862dd7eeb922840e3aeed717d1a543ac5c88a09e433e87 |
|||
font_01_sfnt_off0030a301.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x30A301 | 81532 bytes |
SHA-256: a8e2b1fad7deac77277dfb2f7c4fd8c716bafb8a36095db2e5cdfb8618c487d5 |
|||
font_02_sfnt_off00312276.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x312276 | 78740 bytes |
SHA-256: f3ed1e6462f53d0571964759c8efb53bf34a81b43ad41f9d5416f6d332df3a72 |
|||
font_03_sfnt_off0031969c.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x31969C | 11088 bytes |
SHA-256: 086b4c456dbe6f09f8c99517bcda6cd0f82646bc0cf77bf0a1e64dd9a7c38fd3 |
|||
font_04_sfnt_off0031b035.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x31B035 | 80400 bytes |
SHA-256: 10b0d26fcc9a0d703953afc2a24abcd133a6c131444dffb9f4bfc57db7b44d0c |
|||
font_05_sfnt_off00322c1a.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x322C1A | 81936 bytes |
SHA-256: 04e990433836ddc35b43a5d17550bc698292a11f2ada471eeb421e46393214ab |
|||
font_06_sfnt_off0032790f.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x32790F | 44088 bytes |
SHA-256: c331bd4123b9731d19e2978d8b93ff589ef2984e15c99dd38f40d2b7994954df |
|||
font_07_sfnt_off0032c452.bin |
pdf-font-stream | PDF embedded font (sfnt) at offset 0x32C452 | 14576 bytes |
SHA-256: c5c4491190d7ac16eac58768233c69f92ae1cfae808113647ac0d3099472b078 |
|||
Open this report in the interactive analyzer, or submit your own file for analysis.