× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0b358ae747109b221f448dd248238d43b905d6ca246e22f7976ddf640a438977
File name: updating.doc
Detection ratio: 35 / 57
Analysis date: 2019-05-25 10:34:47 UTC ( 1 day, 10 hours ago )
Antivirus Result Update
Ad-Aware Exploit.RTF-ObfsStrm.Gen 20190525
AegisLab Hacktool.MSOffice.Generic.3!c 20190525
AhnLab-V3 RTF/Malform-C.Gen 20190525
Antiy-AVL Trojan[Exploit]/OLE.CVE-2017-11882 20190525
Arcabit Exploit.RTF-ObfsStrm.Gen 20190525
Avast Other:Malware-gen [Trj] 20190525
AVG Other:Malware-gen [Trj] 20190525
Avira (no cloud) HEUR/Rtf.Malformed 20190525
BitDefender Exploit.RTF-ObfsStrm.Gen 20190525
CAT-QuickHeal Exp.RTF.Obfus.Gen 20190524
Comodo Exploit.W97M.CVE2017-11882.AG@843jmy 20190525
Cyren CVE-2017-11882!Camelot 20190525
DrWeb Exploit.Rtf.CVE2012-0158 20190525
Emsisoft Exploit.RTF-ObfsStrm.Gen (B) 20190525
ESET-NOD32 probably a variant of Win32/Exploit.CVE-2017-11882.A 20190525
F-Secure Heuristic.HEUR/Rtf.Malformed 20190525
FireEye Exploit.RTF-ObfsStrm.Gen 20190525
GData Exploit.RTF-ObfsStrm.Gen 20190525
Ikarus Exploit.CVE-2017-11882 20190525
Kaspersky HEUR:Exploit.MSOffice.Generic 20190525
MAX malware (ai score=100) 20190525
McAfee Exploit-CVE2017-11882.ah 20190525
McAfee-GW-Edition Exploit-CVE2017-11882.ah 20190525
Microsoft Exploit:O97M/CVE-2017-11882.T 20190525
eScan Exploit.RTF-ObfsStrm.Gen 20190525
Qihoo-360 susp.rtf.objupdate.gen 20190525
Rising Exploit.CVE-2017-11882/SLT!1.AEE3 (CLASSIC) 20190525
Sophos AV Exp/201711882-P 20190525
Symantec Exp.CVE-2017-11882 20190524
TACHYON Trojan-Exploit/RTF.CVE-2017-11882 20190525
Tencent Office.Exploit.Generic.Tdzj 20190525
TrendMicro Trojan.W97M.CVE201711882.PVRYP 20190525
TrendMicro-HouseCall Trojan.W97M.CVE201711882.PVRYP 20190525
ZoneAlarm by Check Point HEUR:Exploit.Win32.CVE-2017-11882.a 20190525
Zoner Probably RTFObfuscation 20190525
Acronis 20190522
Alibaba 20190513
ALYac 20190525
APEX 20190525
Avast-Mobile 20190525
Babable 20190424
Baidu 20190318
Bkav 20190524
ClamAV 20190525
CMC 20190321
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20190525
eGambit 20190525
Endgame 20190522
F-Prot 20190525
Fortinet 20190525
Sophos ML 20190525
Jiangmin 20190524
K7AntiVirus 20190525
K7GW 20190525
Kingsoft 20190525
Malwarebytes 20190525
NANO-Antivirus 20190524
Palo Alto Networks (Known Signatures) 20190525
Panda 20190525
SentinelOne (Static ML) 20190511
SUPERAntiSpyware 20190521
Symantec Mobile Insight 20190523
TheHacker 20190522
TotalDefense 20190525
Trustlook 20190525
VBA32 20190524
ViRobot 20190524
Webroot 20190525
Zillya 20190525
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Summary
Revision time
2018-07-03 09:28:00
Version number
57435
Editing time
12
Author
obidah qudah
Number of pages
1
Creation time
2018-01-23 22:18:00
Operator
Richard
Version
23
Number of characters
97
Number of words
17
Number of non whitespace characters
113
Document properties
Non ascii characters
0
Embedded drawings
15
Rtf header
rtf1
Default ansi codepage
Western European
Read only protection
False
User protection
False
Default character set
ANSI
Custom xml data properties
1
Dos stubs
0
Objects
OLE embedded
Embedded pictures
0
Longest hex string
7280
Default languages
English - United States, Arabic - Saudi Arabia
ExifTool file metadata
MIMEType
text/rtf

ModifyDate
2018:07:03 09:28:00

Characters
97

Author
obidah qudah

TotalEditTime
12 minutes

FileType
RTF

LastModifiedBy
Richard

FileTypeExtension
rtf

CharactersWithSpaces
113

Words
17

CreateDate
2018:01:23 22:18:00

InternalVersionNumber
57435

Pages
1

RevisionNumber
23

File identification
MD5 cee711ad2c0de9bcaa8e6a5c8cd0ff81
SHA1 666158f6093506c6f0976c89926301997c6f20fc
SHA256 0b358ae747109b221f448dd248238d43b905d6ca246e22f7976ddf640a438977
ssdeep
768:s7Kf2sdrM3xaSybdRZXZWkWZNLeyrXi9zCMFtBBuwNXMfJa30SiaF2qmZwoRMlQE:sxxQW3yyrWz8YfKdw680AygYONXFm2

File size 261.2 KB ( 267430 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, unknown character set

TrID Rich Text Format (100.0%)
Tags
cve-2012-0158 ole-embedded exploit rtf cve-2017-11882

VirusTotal metadata
First submission 2018-11-06 01:17:30 UTC ( 6 months, 3 weeks ago )
Last submission 2018-11-06 01:17:30 UTC ( 6 months, 3 weeks ago )
File names dttcodexgigas.666158f6093506c6f0976c89926301997c6f20fc
updating.doc
ExifTool file metadata
MIMEType
text/rtf

ModifyDate
2018:07:03 09:28:00

Characters
97

Author
obidah qudah

TotalEditTime
12 minutes

FileType
RTF

LastModifiedBy
Richard

FileTypeExtension
rtf

CharactersWithSpaces
113

Words
17

CreateDate
2018:01:23 22:18:00

InternalVersionNumber
57435

Pages
1

RevisionNumber
23

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!