Windows Analysis Report
FW EXTERNAL Check Approval.msg

• EGA enabled

• Found application associated with file extension: .msg

{
"riskscore": 1,
"reasons": "The text extracted from the web page indicates a 404 error, which is a standard HTTP error message and is not malicious in nature. The URL 'about:blank' is also a blank page and is not associated with any known phishing sites. The risk score is therefore set to 1, indicating a low risk."
}"

Not Found The requested URL was not found on this server. Additionally: a 404 Not Found error was encountered while trying to use an ErrorDument to handle the request. 

{
"riskscore": 5,
"reasons": "The URL 'https://pdf-image.org/' has a moderate risk of typosquatting. The domain name contains a common misspelling of 'pdf' as 'pdg', and adds the word 'image' which could be confusing to users looking for a legitimate PDF conversion or viewing service. Additionally, the domain extension is a generic top-level domain (gTLD) which is more susceptible to typosquatting than country code top-level domains (ccTLDs). However, there is no evidence of malicious intent on this particular site, such as phishing or malware distribution."
}"

https://pdf-image.org/

{
"riskscore": 8,
"reasons": "The URL provided exhibits characteristics commonly associated with typosquatting, which is a type of cyber attack where a malicious domain is created to resemble a legitimate one, often by misspelling or using a similar domain name. The reasons for this risk assessment are as follows:\
1. Length of the URL: The URL is excessively long, which can be an attempt to obfuscate the true domain name.\
2. Lack of human-readable components: The URL does not contain any easily recognizable words or phrases, making it difficult for users to identify the actual domain.\
3. Use of special characters: The URL contains a large number of special characters, which can be used to create a domain that resembles a legitimate one.\
4. Hyphens in the domain name: The URL contains multiple hyphens in the domain name, which is a common tactic used in typosquatting attacks.\
5. Lack of a clear brand name: The URL does not contain any clear brand name, making it difficult to determine the true owner of the domain.\
Given these factors, it is recommended to exercise caution when accessing this URL. It is possible that it is a typosquatted domain, which could be used for phishing, malware distribution, or other malicious activities."
}"