Malicious PDF — malware analysis report

Heuristics 4

• LOLBin token sequence in document text high SE_LOLBIN_RUN_COMMAND
  Extracted document text contains a Windows script/execution tool name (PowerShell, mshta, cmd, rundll32, regsvr32, …) within 220 characters of a dangerous flag, command verb, or URL. This is a visible 'run this' instruction in HTML/PDF/RTF lure bodies, or — in macro-laden Office files — the macro's own string-pool entries appearing adjacent in extracted text.
• Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
  Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
• External URI info PDF_URI
  PDF contains an external URL action
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL http://gaminggenerator.org/app/431946152/http-roblox-hack PDF link annotation

  • http://safeandsecurelocksmith.ca/images/best-roblox-free-hacks-exploits.pdfIn PDF document text
  • https://inscastellar.cat/images/hack-para-mad-city-roblox-2021.pdfIn PDF document text
  • https://wandersuechtig.de/images/hack-roblox-cb-ro.pdfIn PDF document text
  • http://alarmed.pl/images/hacked-by-roblox-transpernt-backround.pdfIn PDF document text
  • https://gryps.de/images/roblox-card-codes-free-2021.pdfIn PDF document text
  • http://fsgtoday.com/images/123-free-robux-is-this-a-hack.pdfIn PDF document text
  • http://evro-okna.net/images/hack-executor-for-roblox.pdfIn PDF document text
  • https://www.albisser.ch/images/infinite-jump-wearedevs-roblox-hack.pdfIn PDF document text
  • http://escolaarboc.cat/images/free-roblox-to-play-without-downloading.pdfIn PDF document text
  • http://energotestcontrol.ru/images/proxy-roblox-hack-download.pdfIn PDF document text
  • http://www.lovecraftiana.com.ar/images/how-to-get-free-tokens-in-car-crushers-2-roblox.pdfIn PDF document text
  • https://www.milewood.co.uk/images/do-u-get-free-robux-in-roblox.pdfIn PDF document text
  • http://www.kalaaliaraq.dk/images/roblox-gift-card-codes-free-2021.pdfIn PDF document text
  • https://www.beaufortcollege.ie/images/roblox-windows-10-edition-unpatched-cheat-engine.pdfIn PDF document text
  • http://piadaandco.it/images/roblox-prison-life-cheat-engine-hack.pdfIn PDF document text
  • http://gamixpaliwa.pl/images/free-cod-style-games-roblox.pdfIn PDF document text
  • http://zibai.eu/images/free-gfx-roblox-2021.pdfIn PDF document text
  • http://bb-im2.com/images/roblox-synapse-free.pdfIn PDF document text
  • http://fa-deco.com/images/roblox-prizes-free-robux.pdfIn PDF document text
  • http://www.mjclautrec.fr/images/roblox-elemental-battlegrounds-hack-script.pdfIn PDF document text
  • http://pdapanache.com/images/hacks-for-roblox-bee-swarm-simulator.pdfIn PDF document text
  • http://abqwinair.com/images/asshurtv2-roblox-hack.pdfIn PDF document text
  • https://www.tsdb.com.au/images/free-stuff-on-roblox-2021.pdfIn PDF document text
  • http://pacatuamigo.com/images/best-game-to-hack-in-roblox.pdfIn PDF document text
  • http://sandra-masemann.de/images/roblox-free-white-hair.pdfIn PDF document text
  • http://uctovnictvosnv.sk/images/roblox-free-shirt-not-model.pdfIn PDF document text
  • http://interokna-kuban.ru/images/roblox-freebies-com-hack.pdfIn PDF document text
  • http://www.kalaaliaraq.dk/images/free-shirt-promo-code-for-roblox.pdfIn PDF document text
  • http://www.brtes.com/images/how-to-get-free-robux-on-iphone-6s.pdfIn PDF document text
  • http://piadaandco.it/images/roblox-free-draw-2-anime.pdfIn PDF document text
  • http://ns1.radiofacil.net/images/roblox-online-free-no-download.pdfIn PDF document text
  • http://acktivities.com/images/barren-cheats-roblox.pdfIn PDF document text
  • https://www.osoc.com/images/free-roblox-generator-2021-no-human-verification.pdfIn PDF document text
  • http://cdescolapios.org/images/speed-script-roblox-hack-pastebin.pdfIn PDF document text
  • http://cmfd.nl/images/roblox-phantom-forces-hack-client.pdfIn PDF document text
  • http://www.lascalamilanowallcovering.it/images/synapse-roblox-free-2021.pdfIn PDF document text
  • https://meltonschool.org/images/can-you-use-cheat-engine-with-roblox.pdfIn PDF document text
  • http://wcasrock.org/images/ninja-animation-package-free-roblox.pdfIn PDF document text
  • http://bilhetim.com.br/images/how-to-get-free-robux-on-roblox-xbox-one-2021.pdfIn PDF document text
  • http://zarinnameh.ir/images/roblox-its-not-free.pdfIn PDF document text
  • https://technospektr.com.ua/images/roblox-hack-tool-download-2021-pc.pdfIn PDF document text
  • http://cmme.it/images/roblox-player-radar-script-hack.pdfIn PDF document text
  • http://diatecgroup.com/images/800-free-robux-gamekit.pdfIn PDF document text
  • http://algierimasonry.com/images/exploit-hack-roblox-synpase-free-download.pdfIn PDF document text
  • http://www.controverseinterapie.it/images/free-shirt-maker-roblox.pdfIn PDF document text
  • https://billiekawende.com/images/comment-avoir-des-pices-dans-roblox-avec-cheat-engine.pdfIn PDF document text
  • http://www.occquimica.com.br/images/how-to-get-free-bc-in-roblox-pastebin.pdfIn PDF document text
  • https://piscinasmundoacuatico.com/images/free-roblox-gea.pdfIn PDF document text
  • http://hardbit.cn/images/roblox-kohl-admin-house-hack-2021.pdfIn PDF document text

  +14 more URL(s)

Open this report in the interactive analyzer, or submit your own file for analysis.