× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 06c747e72a849c4639f11a782445c752edad9d319936fd739622f0accd81f404
File name: ASQ02918.xlsx
Detection ratio: 18 / 61
Analysis date: 2018-09-24 03:10:33 UTC ( 6 months ago ) View latest
Antivirus Result Update
Avast Win32:ShellCode [Expl] 20180924
AVG Win32:ShellCode [Expl] 20180924
Avira (no cloud) EXP/CVE-2017-11882.Gen 20180923
Cyren CVE-2017-11882.C.gen!Camelot 20180924
DrWeb W97M.DownLoader.2938 20180924
ESET-NOD32 probably a variant of Win32/Exploit.CVE-2017-11882.A 20180923
Fortinet MSOffice/CVE_2017_11882.A!exploit 20180924
Ikarus Exploit.CVE-2017-11882 20180923
Kaspersky HEUR:Exploit.MSOffice.Generic 20180924
McAfee CVE2017-11882.aw!3B99BE1EF4A0 20180924
McAfee-GW-Edition CVE2017-11882.aw!3B99BE1EF4A0 20180924
Rising Exploit.CVE-2017-11882!1.B40D (CLASSIC) 20180924
SentinelOne (Static ML) static engine - malicious 20180830
Sophos AV Exp/20180802-B 20180924
Symantec Exp.CVE-2017-11882!g2 20180923
TrendMicro TROJ_CV.8E6945C6 20180924
TrendMicro-HouseCall TROJ_CV.8E6945C6 20180924
ZoneAlarm by Check Point HEUR:Exploit.MSOffice.Generic 20180924
Ad-Aware 20180924
AegisLab 20180924
AhnLab-V3 20180923
Alibaba 20180921
ALYac 20180924
Antiy-AVL 20180924
Arcabit 20180924
Avast-Mobile 20180923
AVware 20180924
Babable 20180918
Baidu 20180914
BitDefender 20180924
Bkav 20180924
CAT-QuickHeal 20180923
ClamAV 20180923
CMC 20180923
Comodo 20180924
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20180924
eGambit 20180924
Emsisoft 20180923
Endgame 20180730
F-Prot 20180924
F-Secure 20180924
GData 20180924
Sophos ML 20180717
Jiangmin 20180924
K7AntiVirus 20180923
K7GW 20180923
Kingsoft 20180924
Malwarebytes 20180924
MAX 20180924
Microsoft 20180924
eScan 20180924
NANO-Antivirus 20180924
Palo Alto Networks (Known Signatures) 20180924
Panda 20180923
Qihoo-360 20180924
SUPERAntiSpyware 20180907
Symantec Mobile Insight 20180918
TACHYON 20180924
Tencent 20180924
TheHacker 20180920
TotalDefense 20180923
Trustlook 20180924
VBA32 20180921
VIPRE 20180924
ViRobot 20180923
Webroot 20180924
Yandex 20180922
Zillya 20180922
Zoner 20180923
The file being studied follows the Open XML file format! More specifically, it is a Office Open XML Spreadsheet file.
Content types
rels
xml
vml
bin
Package relationships
docProps/app.xml
docProps/core.xml
xl/workbook.xml
Core document properties
dcterms:created
2006-09-16T00:00:00Z
dcterms:modified
2018-09-23T19:09:19Z
Application document properties
Application
Microsoft Excel
DocSecurity
0
ScaleCrop
false
vt:lpstr
Worksheets
vt:i4
3
vt:lpstr
Sheet1
vt:lpstr
Sheet2
vt:lpstr
Sheet3
LinksUpToDate
false
SharedDoc
false
HyperlinksChanged
false
AppVersion
12.0000
Workbook properties
lowestEdited
4
calcPr
124519
rupBuild
4505
lastEdited
4
sheets
3
Character codifications
Codification
Prevalence
Basic Latin
22
ExifTool file metadata
SharedDoc
No

HyperlinksChanged
No

TitlesOfParts
Sheet1, Sheet2, Sheet3

LinksUpToDate
No

HeadingPairs
Worksheets, 3

ZipFileName
[Content_Types].xml

CreateDate
2006:09:16 00:00:00Z

ZipRequiredVersion
20

ModifyDate
2018:09:23 19:09:19Z

ZipCRC
0xdfdbf455

ZipBitFlag
0x0002

ScaleCrop
No

MIMEType
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet

FileType
XLSX

AppVersion
12.0

ZipUncompressedSize
1777

ZipCompressedSize
395

DocSecurity
None

ZipModifyDate
2018:09:24 04:05:16

Application
Microsoft Excel

ZipCompression
Deflated

FileTypeExtension
xlsx

The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
15
Uncompressed size
20677
Highest datetime
2018-09-24 04:05:16
Lowest datetime
2018-09-24 04:05:16
Contained files by extension
xml
10
bin
1
vml
1
Contained files by type
XML
13
unknown
1
Microsoft Office
1
File identification
MD5 0f5245e06501115d8e7426ab6a71ac8c
SHA1 681fffd6ed091cab178fd0467930e5bb8e33faa4
SHA256 06c747e72a849c4639f11a782445c752edad9d319936fd739622f0accd81f404
ssdeep
192:TA1hpYEhCpOV8vdQjmi8i/uqq+pzyFDuwUJfRjGA:TA1hmED8qmi8i/i+pz8nUXjGA

File size 9.4 KB ( 9648 bytes )
File type Office Open XML Spreadsheet
Magic literal
Zip archive data, at least v2.0 to extract

TrID Excel Microsoft Office Open XML Format document (60.1%)
Open Packaging Conventions container (30.9%)
ZIP compressed archive (7.0%)
PrintFox/Pagefox bitmap (var. P) (1.7%)
Tags
xlsx exploit cve-2017-11882 cve-2017-1182

VirusTotal metadata
First submission 2018-09-24 03:10:33 UTC ( 6 months ago )
Last submission 2018-10-04 10:38:29 UTC ( 5 months, 3 weeks ago )
File names ASQ02918.xlsx
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!