MALICIOUS
60
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
T1059.001 PowerShell
The PDF file contains a large number of embedded links pointing to external PDF documents, a technique often used for SEO manipulation or to distribute further malicious content. The heuristic 'PDF_SEO_LINK_FARM' indicates a mass external link farm. While the document body is heavily corrupted, the presence of these links suggests a lure to external resources. No scripts were extracted from this sample. The primary IOCs are the URLs associated with the link farm.
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://cefasfese.4pu.com/6736732736736734/Error-amp-Deception-In-Science-by-Claude-Rostand.pdf
- http://cefasfese.4pu.com/8732738733733737/Cyrano-de-Bergerac-A-Heroic-Comedy-from-the-French-of-Edmond-Rostand-Done-Into-English-Verse-by-Edmond-Rostand.pdf
- http://cefasfese.4pu.com/6736732734736734/Darius-Milhaud-Interviews-With-Claude-Rostand-by-Darius-Milhaud.pdf
- http://cefasfese.4pu.com/7730733738739731/A-New-Look-at-Chiropractic-s-Basic-Science-by-Lessard-Claude.pdf
- http://cefasfese.4pu.com/1736735732738734/From-Honey-to-Ashes-Introduction-to-a-Science-of-Mythology-by-Claude-L-vi-Strauss.pdf
- http://cefasfese.4pu.com/6736732734737736/Plays-of-Edmond-Rostand-Volume-1-by-Edmond-Rostand.pdf
- http://cefasfese.4pu.com/1730731732735730732/The-Political-Economy-Of-Crisis-And-Underdevelopment-In-Africa-Selected-Works-Of-Claude-Ake-by-Claude-Ake.pdf
- http://cefasfese.4pu.com/1730739737732/Deception-So-Deadly-Deception-So-1-by-Clara-Kensie.pdf
- http://cefasfese.4pu.com/1730731734733733731/United-States-Circuit-Court-of-Appeals-for-the-Ninth-Circuit-1912-Vol-5-of-6-Transcript-of-Record-William-F-Kettenbach-and-George-H-Kester-Plaintiffs-in-Error-Vs-The-United-States-of-America-Defendant-in-Error-Pages-1521-to-1916-Inclusive-by-United-States-Court-of-Appeals.pdf
- http://cefasfese.4pu.com/6732735739735737/Monetary-Policy-Being-the-Report-of-a-Sub-Committee-on-Currency-and-the-Gold-Standard-Appointed-by-the-Research-Committee-of-the-British-Association-for-the-Advancement-of-Science-on-the-Effects-of-the-War-on-Credit-Currency-Finance-and-The-by-Claude-William-Guillebaud.pdf
- http://cefasfese.4pu.com/7731738737730738/Sinful-Deception-Deception-2-by-M-A-Comley.pdf
- http://cefasfese.4pu.com/3735734731739733/The-Lost-Ways-2-by-Claude-Davis-Best-Survival-Guide-Book-by-Claude-Davis.pdf
- http://cefasfese.4pu.com/6736732735735731/The-Substance-Of-Man-by-Jean-Rostand.pdf
- http://cefasfese.4pu.com/6736732736736735/LA-VIE-DES-CRAPAUDS-by-Jean-Rostand.pdf
- http://cefasfese.4pu.com/6736732734738730/La-Samaritaine-by-Edmond-Rostand.pdf
- http://cefasfese.4pu.com/5736735732736737/The-Romancers-by-Edmond-Rostand.pdf
- http://cefasfese.4pu.com/6737737735739737/Cyrano-de-Bergerac-by-Edmond-Rostand.pdf
- http://cefasfese.4pu.com/4730733736735732/The-Killer-Elite-by-Robert-Rostand.pdf
- http://cefasfese.4pu.com/4731731730733736/Viper-s-Game-by-Robert-Rostand.pdf
- http://cefasfese.4pu.com/6736732736731738/Cyrano-de-Bergerac-One-Act-Adaptation-by-Edmond-Rostand.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.