× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 13d0d0b67c8e881e858ae8cbece32ee464775b33a9ffcec6bff4dd3085dbb575
File name: 13d0d0b67c8e881e858ae8cbece32ee464775b33a9ffcec6bff4dd3085dbb575
Detection ratio: 33 / 56
Analysis date: 2017-04-13 08:26:06 UTC ( 8 months ago ) View latest
Antivirus Result Update
Ad-Aware Exploit.CVE-2017-0199.Gen 20170413
AegisLab Exploit.Msoffice.Generic!c 20170413
AhnLab-V3 RTF/Cve-2017-0199 20170413
ALYac Trojan.Downloader.DOC.Gen 20170413
Antiy-AVL Trojan/Win32.TGeneric 20170413
Arcabit Exploit.CVE-2017-0199.Gen 20170413
Avast Other:Malware-gen [Trj] 20170413
Avira (no cloud) EXP/CVE-2017-0199.C 20170413
BitDefender Exploit.CVE-2017-0199.Gen 20170413
ClamAV Rtf.Dropper.Agent-6260314-0 20170413
Cyren CVE-2017-0199!Camelot 20170413
Emsisoft Exploit.CVE-2017-0199.Gen (B) 20170413
ESET-NOD32 Win32/Exploit.CVE-2017-0199.A 20170413
F-Prot CVE170199 20170413
F-Secure Exploit.CVE-2017-0199.Gen 20170413
Fortinet Malware_Generic.P0 20170413
GData Exploit.CVE-2017-0199.Gen 20170413
Ikarus Exploit.CVE-2017-0199 20170413
K7AntiVirus Trojan ( 0001140e1 ) 20170413
K7GW Trojan ( 0001140e1 ) 20170413
Kaspersky HEUR:Exploit.MSOffice.Generic 20170413
McAfee Exploit-RTF.c 20170412
McAfee-GW-Edition Exploit-RTF.c 20170413
Microsoft Exploit:O97M/CVE-2017-0199!dha 20170413
eScan Exploit.CVE-2017-0199.Gen 20170413
nProtect Exploit/W32.MSWord.AA 20170413
Sophos AV Troj/DocDrop-TJ 20170413
Symantec Trojan.Mdropper 20170412
Tencent Win32.Exploit.Rtf.Csal 20170413
TrendMicro TROJ_CVE20170199.A 20170413
TrendMicro-HouseCall TROJ_CVE20170199.A 20170413
ViRobot RTF.S.Exploit.37523[h] 20170413
ZoneAlarm by Check Point HEUR:Exploit.Win32.Generic 20170413
Alibaba 20170413
AVG 20170413
AVware 20170410
Baidu 20170411
Bkav 20170412
CAT-QuickHeal 20170412
CMC 20170413
Comodo 20170413
CrowdStrike Falcon (ML) 20170130
DrWeb 20170413
Endgame 20170413
Sophos ML 20170203
Jiangmin 20170413
Kingsoft 20170413
Malwarebytes 20170413
NANO-Antivirus 20170413
Palo Alto Networks (Known Signatures) 20170413
Panda 20170413
Qihoo-360 20170413
Rising 20170413
SentinelOne (Static ML) 20170330
SUPERAntiSpyware 20170413
Symantec Mobile Insight 20170413
TheHacker 20170412
Trustlook 20170413
VBA32 20170412
VIPRE 20170412
Webroot 20170413
WhiteArmor 20170409
Yandex 20170413
Zillya 20170411
Zoner 20170413
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Summary
Revision time
2016-11-27 22:42:00
Version number
17116
Editing time
1
Author
yxfgljhys
Number of pages
1
Creation time
2014-11-28 04:22:00
Operator
yxfgljhys
Version
12
Number of characters
1408
Number of words
128
Number of non whitespace characters
2048
Document properties
Non ascii characters
0
Embedded drawings
20
Rtf header
rtf1
Default ansi codepage
Western European
Read only protection
False
User protection
False
Default character set
ANSI
Custom xml data properties
1
Dos stubs
0
Objects
OLE autolink (OfficeDOC)
Embedded pictures
1
Longest hex string
6208
Default languages
English - United States, Arabic - Saudi Arabia
ExifTool file metadata
MIMEType
text/rtf

ModifyDate
2016:11:27 22:42:00

Characters
1408

Author
yxfgljhys

TotalEditTime
1 minute

FileType
RTF

LastModifiedBy
yxfgljhys

FileTypeExtension
rtf

CharactersWithSpaces
2048

Words
128

CreateDate
2014:11:28 04:22:00

InternalVersionNumber
17116

Pages
1

RevisionNumber
12

Compressed bundles
File identification
MD5 5ebfd13250dd0408e3de594e419f9e01
SHA1 0f3b135fd9eb3c6befbeb69f418ac182aeb56557
SHA256 13d0d0b67c8e881e858ae8cbece32ee464775b33a9ffcec6bff4dd3085dbb575
ssdeep
384:C8W68Kw0zybdKk907U7U/cYOs8B+JJ2PAi6rGsNAYAXJqskps:C8O07U7UUYOs8B+X2PEhAZq1s

File size 36.6 KB ( 37523 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, unknown character set

TrID Rich Text Format (100.0%)
Tags
cve-2012-0158 exploit rtf cve-2017-0199 ole-autolink

VirusTotal metadata
First submission 2017-03-04 14:30:16 UTC ( 9 months, 2 weeks ago )
Last submission 2017-11-08 22:29:42 UTC ( 1 month ago )
File names 13d0d0b67c8e881e858ae8cbece32ee464775b33a9ffcec6bff4dd3085dbb575.bin
0f3b135fd9eb3c6befbeb69f418ac182aeb56557_hire_form.do
hire_form.doc
sample2.doc
ExifTool file metadata
MIMEType
text/rtf

ModifyDate
2016:11:27 22:42:00

Characters
1408

Author
yxfgljhys

TotalEditTime
1 minute

FileType
RTF

LastModifiedBy
yxfgljhys

FileTypeExtension
rtf

CharactersWithSpaces
2048

Words
128

CreateDate
2014:11:28 04:22:00

InternalVersionNumber
17116

Pages
1

RevisionNumber
12

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!