PDF static analysis report

Static analysis result for SHA-256 dc8e059b061d955e…

SUSPICIOUS

PDF

116.9 KB First seen: 2020-07-24
MD5: e48aa0a42bcc13cd7b64d9add96dbe79 SHA-1: 4bc6137482086796e5045fa1a1103391411adba6 SHA-256: dc8e059b061d955e2fee0c1c227addf7012e866e74dc53831f17cb20709dc029
44 Risk Score

Machine Learning

  • Nyx PDF Classifier clean score 0.1053

Heuristics 3

  • Fake CAPTCHA / human verification prompt high SE_FAKE_CAPTCHA
    Document displays a fake CAPTCHA or human-verification prompt — used to trick users into running commands or pressing keyboard shortcuts
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL https://t.umblr.com/redirect?z=https%3A%2F%2Fykm.de%2F2082386d792369d6&t=NzZkOTk5YTJiMGEzYjIyYjk2Y2YzYjc1OGNkNzczNTA1OTEzYWFjYyw3Y2U0ZWY2NzAzODViMDBjMTc3ZTM5YjhlZDc3NTQ2NTJhNjU0ZWM3 PDF link annotation