Malicious PDF — malware analysis report

Heuristics 2

• PDF links to known malicious redirector infrastructure critical PDF_MALICIOUS_REDIRECTOR_LINK
  PDF contains a clickable URI to redirector infrastructure used by a known malicious PDF SEO/adware delivery campaign. These documents typically rely on user interaction and redirect chains rather than a PDF parser vulnerability.
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL https://gettraff.ru/aws?keyword=breville+pie+maker+manual

  • https://pixuvanibodaw.weebly.com/uploads/1/3/4/3/134374857/9871873.pdf
  • https://cdn-cms.f-static.net/uploads/4369161/normal_5f8ec3cfdb2f1.pdf
  • https://cdn-cms.f-static.net/uploads/4365549/normal_5f871cf1be6ac.pdf
  • https://kojaresojew.weebly.com/uploads/1/3/4/3/134312518/7909282.pdf
  • https://cdn-cms.f-static.net/uploads/4375886/normal_5f8a8d2b36bb9.pdf
  • https://cdn-cms.f-static.net/uploads/4371807/normal_5f91508e3d23b.pdf
  • https://zoxuzuxebexot.weebly.com/uploads/1/3/0/9/130969059/mukobuf.pdf
  • https://cdn-cms.f-static.net/uploads/4367952/normal_5f951cbfd1a53.pdf
  • https://cdn-cms.f-static.net/uploads/4414689/normal_5f975ecd1068e.pdf
  • https://jukafubu.weebly.com/uploads/1/3/0/8/130874261/a65ee92.pdf
  • https://dubanivexog.weebly.com/uploads/1/3/4/3/134331992/554db.pdf
  • https://nowusunomotir.weebly.com/uploads/1/3/4/3/134314498/kesixesubazubuz_detubupofi.pdf
  • https://cdn-cms.f-static.net/uploads/4367674/normal_5f92602f46770.pdf
  • http://www.ascendercorp.com/
  • http://www.ascendercorp.com/typedesigners.html
  • https://s3.amazonaws.com/felasorarabipis/art_and_answerability_bakhtin.pdf
  • https://s3.amazonaws.com/dedinavesute/xasumugifaj.pdf
  • http://scripts.sil.org/OFL

Open this report in the interactive analyzer, or submit your own file for analysis.