Malicious PDF — malware analysis report

Heuristics 4

• Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
  Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
• Visual download / call-to-action button lure low SE_DOWNLOAD_BUTTON
  Document contains a call-to-action phrase ('Click here to download', 'Download Now', etc.) — low-signal unless other findings point to a malicious workflow
• External URI info PDF_URI
  PDF contains an external URL action
• Embedded URL info EMBEDDED_URL
  One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
  URL http://evacdir.com/heaps.everbank.ZG93bmxvYWR8WFkyTm05dGJueDhNVFkxTkRjNE1EZzNPWHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA/lamentation.litigations?TXkuSG9yc2UuQW5kLk1lLU5vQ0QuY3JhY2sgLSBJZ2VsS290dGVOTXk=preferences

  • https://apolloinstitute.com.au/moodle/blog/index.php?entryid=1232
  • http://goldenhome.info/2022/06/09/ruby-ria-bathing-each-other-pv-fantasia-models-wmv-1/
  • https://www.nesoddenhk.no/wp-content/uploads/2022/06/gaeipy.pdf
  • https://clubnudista.com/upload/files/2022/06/p3htYEBvYYtMLmqWHHYM_10_4eb866022f1a4aacc30d41733e7ae5a2_file.pdf
  • https://plumive.com/upload/files/2022/06/6T3DxdENYJE1Cu76OlAZ_10_4eb866022f1a4aacc30d41733e7ae5a2_file.pdf
  • https://ssmecanics.com/descargar-link-crack-para-colin-mcrae-dirt-2-pc/
  • https://bhatimindcare.com/wp-content/uploads/2022/06/TOP_Pdf_Matchitecture.pdf
  • http://gardenstatecomedyclub.com/?p=3630
  • http://shop.chatredanesh.ir/?p=24127
  • https://calm-lake-45993.herokuapp.com/3skeng_Pipe_Tool_Crack.pdf
  • https://secure-reaches-68799.herokuapp.com/reaviso.pdf
  • https://realtowers.com/2022/06/10/rising-kingdoms-download-full-game-free/
  • https://marcsaugames.com/2022/06/10/crack-dongle-see-electrical-expert-v4/
  • http://capacitaedu.educacao.al.gov.br/blog/index.php?entryid=449
  • https://www.coolshakers.com/wp-content/uploads/2022/06/Pocket_Tanks_Deluxe_V11_All_Packs_Up_To_Gold_Skidrow_Reloade.pdf
  • https://www.lichenportal.org/cnalh/checklists/checklist.php?clid=21519
  • https://www.thegarnichedirectory.com/wp-content/uploads/2022/06/zillis.pdf
  • http://www.male-blog.com/2022/06/09/keygen-snapter-ice-2-0-r4r/
  • https://ontimewld.com/upload/files/2022/06/f2VKFxsh5k6D2BTrTtuf_10_4eb866022f1a4aacc30d41733e7ae5a2_file.pdf
  • https://www.valenciacfacademyitaly.com/2022/06/10/hp-probook-4530s-schematic-diagram-ramones/
  • http://www.tcpdf.org
  • http://www.w3.org/1999/02/22-rdf-syntax-ns#
  • http://purl.org/dc/elements/1.1/
  • http://ns.adobe.com/xap/1.0/
  • http://ns.adobe.com/pdf/1.3/
  • http://ns.adobe.com/xap/1.0/mm/
  • http://www.aiim.org/pdfa/ns/extension/
  • http://www.aiim.org/pdfa/ns/schema#
  • http://www.aiim.org/pdfa/ns/property#
  • http://www.aiim.org/pdfa/ns/id/

Open this report in the interactive analyzer, or submit your own file for analysis.