MALICIOUS
60
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
The PDF file contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic. These links all point to the same domain, xiixmcuin.linkpc.net, with varying numeric slugs and book titles, suggesting a link farm designed to redirect users. The document body was unreadable, but the presence of numerous links strongly indicates a phishing or redirection attempt. No scripts were extracted from this sample.
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://xiixmcuin.linkpc.net/4205209207200204/The-Girl-Who-Played-with-Fire-Millennium-2-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/4207203201206206/The-Girl-Who-Played-with-Fire-Millennium-2-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/3204202202206204/The-Girl-Who-Played-with-Fire-Millennium-2-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/9206206201/The-Girl-Who-Played-with-Fire-Millennium-2-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/1200202206200208202/The-Girl-Who-Played-with-Fire-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/1200202206200208201/The-Girl-with-the-Dragon-Tattoo-Millennium-1-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/2206208204201/The-Girl-with-the-Dragon-Tattoo-Millennium-1-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/6205203205204208/The-Girl-Who-Kicked-the-Hornet-s-Nest-Millennium-3-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/3200201209204204/The-Girl-Who-Kicked-the-Hornet-s-Nest-Millennium-3-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/5203209205203206/The-Girl-in-the-Spider-s-Web-A-Lisbeth-Salander-novel-continuing-Stieg-Larsson-s-Millennium-Series-by-David-Lagercrantz-Unofficial-amp-Independent-Summary-amp-Analysis-by-Leopard-Books.pdf
- http://xiixmcuin.linkpc.net/6206208208207201/C-G-i-Ch-c-T-Ong-B-u-Millennium-3-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/1201201206202200203/A-rainha-do-castelo-de-ar-Millennium-3-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/7209205202202203/A-Rainha-no-Pal-cio-das-Correntes-de-Ar-Millennium-3-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/1200203209209205200/Els-homes-que-no-estimaven-les-dones-Millennium-1-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/5203209205203202/Stieg-Larsson-s-Millennium-Trilogy-Interdisciplinary-Approaches-to-Nordic-Noir-on-Page-and-Screen-by-Steven-Peacock.pdf
- http://xiixmcuin.linkpc.net/3202207202201/The-Millennium-Trilogy-Millennium-Trilogy-1-3-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/1201207207207201209/The-Girl-with-the-Dragon-Tattoo-in-Vietnamese-by-Stieg-Larsson.pdf
- http://xiixmcuin.linkpc.net/5203209204208204/Stieg-Larsson-The-Man-Behind-The-Girl-with-the-Dragon-Tattoo-by-Kurdo-Baksi.pdf
- http://xiixmcuin.linkpc.net/5203209205209208/The-Girl-with-the-Dragon-Tattoo-by-Stieg-Larsson-l-Summary-amp-Study-Guide-by-BookRags.pdf
- http://xiixmcuin.linkpc.net/5203209206200208/Quicklet-on-Stieg-Larsson-s-The-Girl-with-the-Dragon-Tattoo-Book-Summary-by-Estelle-Wagner.pdf
- http://xiixmcuin.linkpc.net/5203209205203206/The-Girl-in-the-Spider-s-Web-A-Lisbeth-Salan
Open this report in the interactive analyzer, or submit your own file for analysis.