MALICIOUS
154
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
This PDF file was flagged by multiple heuristics, including a critical detection for being a link farm and a machine learning model indicating maliciousness. It contains numerous external URLs, with one prominent URL pointing to a potentially malicious domain. The presence of embedded URLs and the PDF's structure suggest it's designed to redirect users to external content, likely for phishing or malware distribution.
Machine Learning
- Nyx PDF Classifier malicious score 0.9264
Heuristics 4
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
ClamAV: Pdf.Phishing.Trojan-d2568dad23a94d95-d2568dad23a94d95-10044375-0 critical CLAMAV_DETECTIONClamAV detected this file as malware: Pdf.Phishing.Trojan-d2568dad23a94d95-d2568dad23a94d95-10044375-0
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL https://druttle.ru/strik?utm_term=snow+white+princess+story+in+telugu
- https://cdn.sqhk.co/xoxujakosepa/I0iegj3/24764613287.pdf
- http://tublitalia.space/el_diario_de_greg_pelicula_completa_subtituladascp8s.pdf
- https://cdn.sqhk.co/jojikoxazew/jiUhchg/dogfight_1942_xbox_360_freeboot.pdf
- http://4kuhd.me/burger_king_grilled_chicken_sandwich_nutrition_factsuu5wd.pdf
- https://cdn.sqhk.co/bujasugawo/ea3hiKV/girl_next_door_netflix.pdf
- https://cdn.sqhk.co/benibavagoge/Ygfgh7d/35787982056.pdf
- http://voirly.xyz/dyson_ball_vacuum_toy_vacuum_with_working_suctionc6abq.pdf
- https://cdn.sqhk.co/busunava/hh3hfgj/dosorikapoxolibexatab.pdf
- https://uploads.strikinglycdn.com/files/591034e4-7d8f-4bbe-ab35-d62c34175630/14978219730.pdf
- https://s3.amazonaws.com/tutapaxi/red_cross_emr_test_answers.pdf
- https://uploads.strikinglycdn.com/files/b85938f9-fd00-4a3a-bf80-dd9a1a229fb3/la_biblia_hablada_en_espaol_completa_pelicula.pdf
- https://6478d21b-237c-41b5-add8-96d7b9819624.filesusr.com/ugd/c7ef1a_922ef10b14b04716b31a70df1559bfe3.pdf?index=true
- https://s3.amazonaws.com/nezanurugega/82943446520.pdf
- https://s3.amazonaws.com/xotomisen/68745418012.pdf
- https://uploads.strikinglycdn.com/files/7d94bb95-baf8-445b-82e9-cf96a2ab8820/gegutor.pdf
- https://973697ad-ffa4-4f9d-85cd-0c9d1ea039ee.filesusr.com/ugd/5f5755_555a57e5f9d347078ba99192aea634d4.pdf?index=true
- https://uploads.strikinglycdn.com/files/49429fc3-66f4-4712-8b57-6ecf56391243/52507245638.pdf
- https://s3.amazonaws.com/rodigapigeta/37434978088.pdf
- https://05e27880-d5e1-4d3d-8428-ba943e9300bc.filesusr.com/ugd/b56239_d851bdfb71b04f5ba8a6d9fecbb4cecf.pdf?index=true
- https://s3.amazonaws.com/mujesogi/34935157583.pdf
- https://uploads.strikinglycdn.com/files/35680455-c0e3-4761-81ee-7b667ad40e60/daputowupipakefoxezonesum.pdf
- https://uploads.strikinglycdn.com/files/7d6a86f7-d76d-4cce-98b0-42397d68c925/a_random_walk_down_wall_street_12th_edition_the_time_tested_strategy_for_successful_investing.pdf
Open this report in the interactive analyzer, or submit your own file for analysis.