Malicious PDF — malware analysis report

Heuristics 5

• PDF links to a 'free generator / game hack' redirector high PDF_GAME_HACK_REDIRECT_LURE
  PDF's clickable action targets a redirector of the form /app/<id>/<slug>-game-hack — the landing-page shape of a large SEO 'free spins / generator / game hack' lure family that funnels victims through rotating disposable hosts to a malware/scam payload. The multi-link variants also trip ML/link-farm rules; this catches the single-link variants that otherwise score clean.
• Invisible PDF links to CAPTCHA-themed web lure high PDF_CAPTCHA_LINK_LURE
  PDF contains invisible clickable link annotations that point to a CAPTCHA/capcha-themed web path. This is a common phishing and ClickFix-style routing pattern: the PDF itself is inert, while the linked page performs the credential prompt or fake verification.
• Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
  Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
• External URI info PDF_URI
  PDF contains an external URL action
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL https://enigmagenerator.com/app/431946152/roblox-game-hack PDF link annotation

  • http://nod74.ru/images/free-robux-coupons.pdfIn PDF document text
  • http://apcupschennai.com/images/how-to-get-free-robux-promo-codes-2021-june.pdfIn PDF document text
  • http://hondenspecialist-engelien.nl/images/pastbin-robux-hack.pdfIn PDF document text
  • http://sscclc.edu.ec/images/roblox-follow-flamingo-hack.pdfIn PDF document text
  • http://bagliomangiapane.com/images/free-bikini-roblox.pdfIn PDF document text
  • https://www.vacationrentalsincroatia.com/images/free-cool-clothes-on-roblox.pdfIn PDF document text
  • http://www.fluidtech.hu/images/free-roblox-card-generater.pdfIn PDF document text
  • http://ff-obertraun.at/images/roblox-money-generator-free-download.pdfIn PDF document text
  • http://ralf-gryga.de/images/hack-give-robux.pdfIn PDF document text
  • http://www.marambio.com.ar/images/how-to-hack-roblox-dungeon-quest-of-items.pdfIn PDF document text
  • https://www.hobbypcb.com/images/how-to-get-cool-shirts-for-free-in-roblox.pdfIn PDF document text
  • http://uctovnictvosnv.sk/images/how-to-get-free-robux-no-verification-2021.pdfIn PDF document text
  • https://www.acoustiguard.com/images/fightforglorton-free-l-robux.pdfIn PDF document text
  • http://www.sapaengineering.kz/images/roblox-hack-download-pc-dungeon.pdfIn PDF document text
  • http://beer-holzhaus.ch/images/roblox-gravity-cheat-engine.pdfIn PDF document text
  • http://kermas.eu/images/free-robux-generator-no-survey-2021.pdfIn PDF document text
  • http://progressgel.ru/images/nocliap-hack-for-roblox.pdfIn PDF document text
  • http://tehergumi.hu/images/how-to-look-like-a-roblox-hacker.pdfIn PDF document text
  • https://corbo.ru/images/cheat-roblox-granny.pdfIn PDF document text
  • https://yarburservices.ru/images/hacks-abd-tricks-for-roblox.pdfIn PDF document text
  • http://www.lionel-seppoloni.fr/images/alphalife-roblox-cheats.pdfIn PDF document text
  • http://cmme.it/images/roblox-bleu-hack.pdfIn PDF document text
  • http://fotoclub3b.it/images/free-robux-with-recapcha.pdfIn PDF document text
  • https://verdensbarn.no/images/roblox-sword-fighting-hack.pdfIn PDF document text
  • http://firstaidacademy.be/images/hack-jump-roblox.pdfIn PDF document text
  • http://beer-holzhaus.ch/images/how-to-add-script-on-roblox-hack.pdfIn PDF document text
  • http://news123.it/images/fulflex-roblox-hack.pdfIn PDF document text
  • http://vagency.us/images/roblox-cheats-for-robux-and-tix-2021.pdfIn PDF document text
  • http://cristalysoptic.com/images/free-bombox-on-roblox.pdfIn PDF document text
  • http://wcasrock.org/images/can-someone-hack-your-personal-information-from-roblox.pdfIn PDF document text
  • http://www.colledellaselva.it/images/hack-roblox-info.pdfIn PDF document text
  • http://pastelli.gr/images/free-robux-no-verification-2021-mobile.pdfIn PDF document text
  • http://beer-holzhaus.ch/images/roblox-robux-hack-page.pdfIn PDF document text
  • http://www.eurosan1.ba/images/comment-hacker-sur-roblox-pc.pdfIn PDF document text
  • https://amatq.ca/images/new-cheat-in-roblox-2021.pdfIn PDF document text
  • http://bibliotheque-perrigny-les-dijon.fr/images/do-roblox-hacks-work.pdfIn PDF document text
  • http://evp-sanorlenok.ru/images/free-roblox-pin-t-shirt.pdfIn PDF document text
  • http://axia-verlag.at/images/hack-roblox-money-2021.pdfIn PDF document text
  • http://www.art-concept.gr/images/how-to-hack-money-in-gas-station-simulator-roblox.pdfIn PDF document text
  • http://pia2000.net/images/can-u-make-clothes-for-free-on-roblox.pdfIn PDF document text
  • http://artenossa.net.br/images/how-to-cheat-in-money-in-roblox.pdfIn PDF document text
  • https://www.ncscolour.no/images/how-to-get-free-item-on-roblox-2021.pdfIn PDF document text
  • http://firstaidacademy.be/images/beta-this-obby-to-get-free-robux.pdfIn PDF document text
  • https://wandersuechtig.de/images/i-got-my-account-hacked-on-roblox.pdfIn PDF document text
  • http://www.cosver.nl/images/free-roblox-accounts-dump.pdfIn PDF document text
  • http://jobsy.com.sg/images/cheat-codes-for-phantom-forces-roblox.pdfIn PDF document text
  • http://e-onlinearchiv.de/images/how-to-hack-on-vehicle-sim-roblox.pdfIn PDF document text
  • http://dcmetroapp.com/images/free-tix-generator-roblox.pdfIn PDF document text
  • http://bodyguardsecurityservices.com.au/images/how-to-hack-free-robux-no-human-verification.pdfIn PDF document text

  +17 more URL(s)

Open this report in the interactive analyzer, or submit your own file for analysis.