MALICIOUS
64
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
T1204.002 Malicious File
The PDF document contains a large number of external links, many of which appear to be SEO-optimized for software downloads, indicating a link farm designed to redirect users to potentially malicious content. The heuristic 'PDF_SEO_LINK_FARM' specifically flags this behavior. The presence of URLs like 'lehmanbrotherbankruptcy.com' further suggests a malicious intent, possibly related to phishing or malware distribution.
Machine Learning
- Nyx PDF Classifier clean score 0.0146
Heuristics 3
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
External URI info PDF_URIPDF contains an external URL action
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://lehmanbrotherbankruptcy.com/fluently/redundancy.ZG93bmxvYWR8M1dqWWpJNWEzeDhNVFkxTnpBMk56RTFOSHg4TWpVM05IeDhLRTBwSUhKbFlXUXRZbXh2WnlCYlJtRnpkQ0JIUlU1ZA.QWRvYmUgSW5EZXNpZ24gQ0MgMjAxNSAxMS4zLjAgUG9ydGFibGUgKHg4Nng2NCkgW1NhZGVlbVBDXSBzZXR1cCBmcmVlQWR?turkey=weeded&
- https://baseheadinc.com/wp-content/uploads/2022/07/Adobe_After_Effects_CC_2018_V1500180_TOP_Crack_TOP_CracksNow_Download.pdf
- https://dry-sea-50634.herokuapp.com/kalahil.pdf
- http://wellnessfoodnet.com/hackear-facebook-de-otra-persona-high-quality/
- http://www.italiankart.it/advert/mastercam-x9-v18-0-11-only-only-medicine-solidsquad-rar-install/
- https://enigmatic-oasis-24456.herokuapp.com/Saints_RowThe_Thirdv_1001u4_19_DLC_Repack_By_Fenixx_Game_Dow.pdf
- https://thelacypost.com/identix-biotouch-usb-200-driver-free-hot-download/
- https://www.reperiohumancapital.com/system/files/webform/Introduccion-Al-Hebreo-Biblico-Pdf.pdf
- https://www.londonderrynh.org/sites/g/files/vyhlif4616/f/agendas/rfq_newpaper_notice.pdf
- https://sunuline.com/upload/files/2022/07/V8zoPXQNb7nVTdGcukXn_06_4f0fd2db481f4723981b1060a6dea9e4_file.pdf
- https://mamawong.de/suzuki-worldwide-automotive-epc-free-download-top-torrent/
- http://fritec-doettingen.ch/wp-content/uploads/2022/07/lilisant.pdf
- https://harneys.blog/2022/07/06/gry-z-pegazusa-na-pc-download-chomikuj-full/
- https://www.ladiesbusinessdirectory.com/wp-content/uploads/2022/07/LINK_Crack_Game_The_Settlers_7l.pdf
- https://expertosbotox.com/wp-content/uploads/2022/07/sniperghostwarrior3downloadfreefullversionpc.pdf
- http://www.4aquan.com/wp-content/uploads/2022/07/Todas_As_Cartas_Inwo_24.pdf
- https://globaltechla.com/batman-arkham-city-goty-product-key/
- https://homedust.com/teamviewer-14-7-1965-0-verified-crack-license-key-torrent-portable/
- https://www.cameraitacina.com/en/system/files/webform/feedback/call-of-duty-advanced-warfare-v100-trainer-8.pdf
- https://maturesensual.sexy/wp-content/uploads/2022/07/vertex_tools_sketchup_crack_serial.pdf
- https://slitetitle.com/wp-content/uploads/2022/07/latzesi.pdf
- https://baseheadinc.com/wp-
- https://enigmatic-
- https://sunuline.com/upload/files/2022/07/V8zoPXQNb7nVTdGcukXn_06_4f0fd2db481f4723981b1060a6dea9e4
- https://www.cameraitacina.com/en/system/files/webform/feedback/call-of-duty-advanced-warfare-
- http://www.tcpdf.org
- http://www.w3.org/1999/02/22-rdf-syntax-ns#
- http://purl.org/dc/elements/1.1/
- http://ns.adobe.com/xap/1.0/
- http://ns.adobe.com/pdf/1.3/
- http://ns.adobe.com/xap/1.0/mm/
- http://www.aiim.org/pdfa/ns/extension/
- http://www.aiim.org/pdfa/ns/schema#
- http://www.aiim.org/pdfa/ns/property#
- http://www.aiim.org/pdfa/ns/id/
Open this report in the interactive analyzer, or submit your own file for analysis.