× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0744ba67c5f8210fcdcf4acb328df68780e96d10f2c68b8eddbb9a355bca213e
File name: %3f9643522803
Detection ratio: 37 / 59
Analysis date: 2017-09-28 14:38:14 UTC ( 2 weeks, 5 days ago )
Antivirus Result Update
Ad-Aware Trojan.GenericKD.4163563 20170928
AegisLab Exp.Flash.Pubenush.Aa!c 20170928
AhnLab-V3 SWF/Exploitkit3 20170928
ALYac Exploit.SWF.Downloader 20170928
Antiy-AVL HackTool[VirTool]/SWF.Injector 20170928
Arcabit Trojan.Generic.D3F87EB 20170928
Avast SWF:GirDrop [Drp] 20170928
AVG SWF:GirDrop [Drp] 20170928
Avira (no cloud) EXP/FLASH.Pubenush.AA.Gen 20170928
AVware Trojan.SWF.Generic.b (v) 20170928
BitDefender Trojan.GenericKD.4163563 20170928
CAT-QuickHeal Exp.SWF.Rig.EK 20170928
Comodo UnclassifiedMalware 20170928
Cyren SWF/Exploit 20170928
DrWeb Exploit.SWF.1110 20170928
Emsisoft Trojan.GenericKD.4163563 (B) 20170928
ESET-NOD32 a variant of SWF/Exploit.ExKit.BEO 20170928
F-Prot SWF/Exploit 20170928
F-Secure Trojan.GenericKD.4163563 20170928
Fortinet SWF/Agent.8B2B!tr 20170928
GData Trojan.GenericKD.4163563 20170928
Ikarus Trojan.SWF.Exploit 20170928
MAX malware (ai score=87) 20170928
McAfee Exploit-SWF.bv 20170928
McAfee-GW-Edition Exploit-SWF.bv 20170928
Microsoft VirTool:SWF/Injector.D 20170928
eScan Trojan.GenericKD.4163563 20170928
NANO-Antivirus Exploit.Swf.FLASH.ekrele 20170928
Qihoo-360 Win32/Trojan.Exploit.438 20170928
Sophos AV Troj/SWFExp-NL 20170928
Symantec Trojan.Gen.2 20170928
Tencent Win32.Exploit.Generic.Wlpn 20170928
TrendMicro SWF_EXPLOYT.AUSFZ 20170928
TrendMicro-HouseCall SWF_EXPLOYT.AUSFZ 20170928
VIPRE Trojan.SWF.Generic.b (v) 20170928
ViRobot SWF.S.Exploit.14088 20170928
ZoneAlarm by Check Point HEUR:Exploit.SWF.Generic 20170928
Alibaba 20170911
Avast-Mobile 20170928
Baidu 20170928
ClamAV 20170928
CMC 20170928
CrowdStrike Falcon (ML) 20170804
Cylance 20170928
Endgame 20170821
Sophos ML 20170914
Jiangmin 20170928
K7AntiVirus 20170928
K7GW 20170928
Kaspersky 20170928
Kingsoft 20170928
Malwarebytes 20170928
nProtect 20170928
Palo Alto Networks (Known Signatures) 20170928
Panda 20170928
Rising 20170928
SentinelOne (Static ML) 20170806
SUPERAntiSpyware 20170928
Symantec Mobile Insight 20170928
TheHacker 20170925
TotalDefense 20170928
Trustlook 20170928
VBA32 20170928
Webroot 20170928
WhiteArmor 20170927
Yandex 20170908
Zillya 20170928
Zoner 20170928
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
The studied SWF file performs environment identification.
SWF Properties
SWF version
31
Compression
zlib
Frame size
710.0x120.0 px
Frame count
1
Duration
0.040 seconds
File attributes
ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
10
ActionScript 3 Packages
flash.display
flash.events
flash.system
flash.utils
ExifTool file metadata
MIMEType
application/x-shockwave-flash

ImageSize
710x120

FileType
SWF

Megapixels
0.085

FrameRate
25

FlashVersion
31

FileTypeExtension
swf

Compressed
True

ImageWidth
710

Duration
0.04 s

FlashAttributes
UseNetwork, ActionScript3

FrameCount
1

ImageHeight
120

File identification
MD5 605f2d8059347886bc3c46cd8e168b2b
SHA1 0d86ae373d728db0919d8cc0351367b0ad0bed47
SHA256 0744ba67c5f8210fcdcf4acb328df68780e96d10f2c68b8eddbb9a355bca213e
ssdeep
384:VP0aMNzucNZVYEnDptlhzBipyPkH2jZpr1aLi:t0Jd/FYENrCyvPpz

File size 13.8 KB ( 14088 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 31

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash zlib capabilities

VirusTotal metadata
First submission 2016-12-21 13:36:19 UTC ( 10 months ago )
Last submission 2017-09-28 14:38:14 UTC ( 2 weeks, 5 days ago )
File names 5421.swf
Pure Beauty.swf
7[1]_012656041000.swf
NSS-2017-27H2Gp_1_.swf
Basketball Legends.swf
2016-12-28-Sundown-EK-flash-exploit-5421.swf
output.105531496.txt
output.105280050.txt
output.105311085.txt
flash-exploit.swf
2016-12-21-Afraidgate-Rig-V-flash-exploit.swf
7[1]_011646428000.swf
5421[1].swf
27H2NH
RigV EK Flash exploit Run 1.swf
7[1]_035843312000.swf
output.105289072.txt
2017-01-06-Sundown-EK-fash-exploit-9643522803.swf
noname.exe.pe
%3f9643522803
9643522803.swf
wllfordlane.flv
index.html.6EB98DDA.x-shockwave-flash
7[1]_011635495000.swf
output.105563600.txt
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!