MALICIOUS
90
Risk Score
Malware Insights
MITRE ATT&CK
T1566.002 Spearphishing Attachment
T1059.001 PowerShell
The PDF document contains a large number of embedded links, identified by the PDF_SEO_LINK_FARM heuristic, which are likely intended to redirect users to malicious websites. The ML_NYX_PDF_MALICIOUS classifier also flagged this document with high confidence. The embedded URLs, such as http://tikytsesapdf.myhome.cx/778c578c478c678c878c4/Founding-Father-Rediscovering-George-Washington-by-Richard-Brookhiser.pdf, are the primary indicators of this malicious activity.
Machine Learning
- Nyx PDF Classifier malicious score 0.9780
Heuristics 2
-
Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARMSmall PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
-
Embedded URL info EMBEDDED_URLOne or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.URL http://tikytsesapdf.myhome.cx/778c578c478c678c878c4/Founding-Father-Rediscovering-George-Washington-by-Richard-Brookhiser.pdf
- http://tikytsesapdf.myhome.cx/278c278c978c778c878c3/George-Washington-on-Leadership-by-Richard-Brookhiser.pdf
- http://tikytsesapdf.myhome.cx/778c578c478c678c878c2/George-Washington-s-Rules-of-Civility-amp-Decent-Behavior-in-Company-and-Conversation-Little-Books-of-Wisdom-by-George-Washington.pdf
- http://tikytsesapdf.myhome.cx/378c778c178c678c578c7/What-Would-the-Founders-Do-Our-Questions-Their-Answers-by-Richard-Brookhiser.pdf
- http://tikytsesapdf.myhome.cx/378c678c878c778c978c7/Alexander-Hamilton-American-by-Richard-Brookhiser.pdf
- http://tikytsesapdf.myhome.cx/578c278c378c178c778c2/George-Washington-Selected-Writings-by-George-Washington.pdf
- http://tikytsesapdf.myhome.cx/278c378c178c978c8/George-Washington-Vol-2-Young-Washington-by-Douglas-Southall-Freeman.pdf
- http://tikytsesapdf.myhome.cx/278c878c378c578c4/James-Wilson-Founding-Father-1742-98-by-Page-Smith.pdf
- http://tikytsesapdf.myhome.cx/578c178c478c178c078c6/John-Winthrop-America-s-Forgotten-Founding-Father-by-Francis-J-Bremer.pdf
- http://tikytsesapdf.myhome.cx/178c178c278c978c878c478c4/Rush-Revolution-Madness-and-the-Visionary-Doctor-Who-Became-a-Founding-Father-by-Stephen-Fried.pdf
- http://tikytsesapdf.myhome.cx/278c078c078c478c078c7/Patterns-of-Behavior-Konrad-Lorenz-Niko-Tinbergen-and-the-Founding-of-Ethology-by-Richard-W-Burkhardt.pdf
- http://tikytsesapdf.myhome.cx/578c778c778c178c478c3/Madame-Delphine-by-George-Washington-Cable.pdf
- http://tikytsesapdf.myhome.cx/378c778c078c278c978c1/The-Making-of-George-Washington-by-William-H-Wilbur.pdf
- http://tikytsesapdf.myhome.cx/578c978c678c578c678c4/George-Washington-Frontier-Colonel-by-Sterling-North.pdf
- http://tikytsesapdf.myhome.cx/578c278c078c678c778c0/George-Washington-Gentleman-Warrior-by-Stephen-Brumwell.pdf
- http://tikytsesapdf.myhome.cx/178c078c578c478c778c278c9/George-Washington-Leader-of-a-New-Nation-by-Daniel-C-Gedacht.pdf
- http://tikytsesapdf.myhome.cx/878c278c678c878c978c4/A-Weed-Is-a-Flower-The-Life-of-George-Washington-Carver-by-Aliki.pdf
- http://tikytsesapdf.myhome.cx/778c178c678c178c278c5/From-Colonies-to-Country-with-George-Washington-by-Deborah-Hedstrom-Page.pdf
- http://tikytsesapdf.myhome.cx/478c278c678c278c378c6/George-Washington-Williams-A-Biography-by-John-Hope-Franklin.pdf
- http://tikytsesapdf.myhome.cx/378c578c178c878c078c4/The-Trial-and-Execution-of-the-Traitor-George-Washington-by-Charles-Rosenberg.pdf
- http://tikytsesapdf.myhome.cx/278c378c178c978c
Open this report in the interactive analyzer, or submit your own file for analysis.