MALICIOUS
154
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The PDF contains numerous external links, with one prominent link pointing to a suspicious domain 'midufefew.ru'. The heuristic 'PDF_SEO_LINK_FARM' indicates a large number of external links, suggesting an attempt to create a link farm or distribute malicious content. The ML classifier and ClamAV detection further support the malicious nature of the file, classifying it as a phishing trojan.
Machine Learning
- Nyx PDF Classifier malicious score 0.8425
Heuristics 4
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
ClamAV: Pdf.Phishing.Trojan-d2568dad23a94d95-d2568dad23a94d95-10044375-0 critical CLAMAV_DETECTIONClamAV detected this file as malware: Pdf.Phishing.Trojan-d2568dad23a94d95-d2568dad23a94d95-10044375-0
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://midufefew.ru/strik?utm_term=gregory+mankiw+principles+of+economics+8th+edition
- https://cdn-cms.f-static.net/uploads/4367289/normal_600ad7589da1f.pdf
- http://detixaluziweki.22web.org/missin_you_crazy_acoustic.pdf
- https://cdn-cms.f-static.net/uploads/4464314/normal_601be903e2e3a.pdf
- https://static.s123-cdn-static.com/uploads/4420776/normal_5fecfff75660d.pdf
- https://static.s123-cdn-static.com/uploads/4449406/normal_60063fb9dba2e.pdf
- https://lerasakob.weebly.com/uploads/1/3/2/6/132682990/semegirejodolote.pdf
- https://sovezoku.weebly.com/uploads/1/3/4/7/134731827/zetirijufugus-tusutor-gusatuleb-wavavelad.pdf
- https://cdn-cms.f-static.net/uploads/4489061/normal_605cc79e93e6b.pdf
- https://uploads.strikinglycdn.com/files/313cf4c2-a069-47bf-b84d-9dba64f28cd5/the_crucible_act_4_study_questions_answers.pdf
- https://uploads.strikinglycdn.com/files/514ff62c-36fd-424a-a820-4409269c7dae/medigiwigamoma.pdf
- https://uploads.strikinglycdn.com/files/13bf1ef0-0e9e-4a27-bec2-46827eec4a88/rupuwifid.pdf
- http://mesesoriran.epizy.com/definition_of_psychology_by_william_james.pdf
- https://uploads.strikinglycdn.com/files/f86fe4ef-f66d-4e3e-a3d0-539bf93aa53f/excel_2013_odbc_driver_download_32_bit.pdf
- https://s3.amazonaws.com/ligole/53054064651.pdf
- https://s3.amazonaws.com/kaxukok/gebolubuninamogap.pdf
- https://uploads.strikinglycdn.com/files/a69130e2-5c75-44ec-a166-74870eacf2b1/easy_acoustic_guitar_chords_for_beginners.pdf
- https://s3.amazonaws.com/jefobexapulow/adjectival_form_of_courage.pdf
- https://uploads.strikinglycdn.com/files/119ca692-6bf3-455b-9024-5d8bcec84253/37490476457.pdf
- https://uploads.strikinglycdn.com/files/648a3efd-4808-403b-b2fe-3aaa6750ef8f/82083438876.pdf
- https://uploads.strikinglycdn.com/files/ad918b63-82d6-44a2-916e-ae078946beeb/55506789260.pdf
- https://s3.amazonaws.com/rewepalazamiso/braun_thermoscan_7_ear_thermometer_for_adults.pdf
- https://uploads.strikinglycdn.com/files/b096bbbb-03dc-4f68-a1e3-f954192e250a/how_can_i_study_for_the_teas_test.pdf
- https://s3.amazonaws.com/gopifu/98551224126.pdf
- https://uploads.strikinglycdn.com/files/75db37c3-4205-4d8c-b9a6-febc5be26d90/what_is_the_role_of_discipline_captain_in_school.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.