× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2975d89e92fa95a101ea87bb40109981751026c730da048762670c74809e38ad
File name: Fraud Notice XM.doc
Detection ratio: 23 / 56
Analysis date: 2016-08-25 05:31:51 UTC ( 1 year, 3 months ago )
Antivirus Result Update
Ad-Aware Java.Trojan.Downloader.J 20160825
AhnLab-V3 HEUR/Jarex 20160824
ALYac Java.Trojan.Downloader.J 20160825
Arcabit Java.Trojan.Downloader.J 20160825
Avast Java:Malware-gen [Trj] 20160825
AVG Backdoor.Java_c.WW 20160824
Avira (no cloud) JAVA/Adwind.kmas.22 20160825
BitDefender Java.Trojan.Downloader.J 20160825
Cyren Java/Agent.PX 20160825
Emsisoft Java.Trojan.Downloader.J (B) 20160825
ESET-NOD32 Java/Adwind.LL 20160825
F-Prot Java/Agent.PX 20160825
F-Secure Java.Trojan.Downloader.J 20160825
Fortinet Malware_Generic.P0 20160825
GData Java.Trojan.Downloader.J 20160825
Ikarus Trojan.Java.Adwind 20160824
McAfee Adwind.q!jar 20160825
McAfee-GW-Edition Adwind.q!jar 20160825
Microsoft Trojan:Java/Adwind 20160825
eScan Java.Trojan.Downloader.J 20160825
Sophos AV Java/Agent-ATHP 20160825
TrendMicro JAVA_ADWIND.JEJOUI 20160825
TrendMicro-HouseCall JAVA_ADWIND.JEJOUI 20160825
AegisLab 20160825
Alibaba 20160825
Antiy-AVL 20160825
AVware 20160825
Baidu 20160825
Bkav 20160824
CAT-QuickHeal 20160825
ClamAV 20160825
CMC 20160824
Comodo 20160825
DrWeb 20160825
Jiangmin 20160825
K7AntiVirus 20160824
K7GW 20160825
Kaspersky 20160825
Kingsoft 20160825
Malwarebytes 20160825
NANO-Antivirus 20160825
nProtect 20160825
Panda 20160824
Qihoo-360 20160825
Rising 20160825
SUPERAntiSpyware 20160825
Symantec 20160825
Tencent 20160825
TheHacker 20160824
TotalDefense 20160825
VBA32 20160824
VIPRE 20160825
ViRobot 20160825
Yandex 20160824
Zillya 20160824
Zoner 20160825
The file being studied follows the Compound Document File format! More specifically, it is a MS Word Document file.
Summary
last_author
User
creation_datetime
2016-08-23 23:14:00
template
Normal
author
Windows User
page_count
1
last_saved
2016-08-23 23:14:00
edit_time
240
word_count
27
revision_number
2
application_name
Microsoft Office Word
character_count
159
code_page
Latin I
Document summary
line_count
1
characters_with_spaces
185
version
786432
paragraph_count
1
code_page
Latin I
OLE Streams
name
Root Entry
clsid
00020906-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Word
sid
0
size
1344
type_literal
stream
size
121
name
\x01CompObj
sid
17
type_literal
stream
size
280
name
\x05DocumentSummaryInformation
sid
16
type_literal
stream
size
336
name
\x05SummaryInformation
sid
15
type_literal
stream
size
9348
name
1Table
sid
14
type_literal
stream
size
6005
name
Data
sid
1
type_literal
stream
size
72
name
ObjectPool/_1533499069/\x01CompObj
sid
6
type_literal
stream
size
20
name
ObjectPool/_1533499069/\x01Ole
sid
5
type_literal
stream
size
242777
name
ObjectPool/_1533499069/\x01Ole10Native
sid
8
type_literal
stream
size
6
name
ObjectPool/_1533499069/\x03ObjInfo
sid
7
type_literal
stream
size
72
name
ObjectPool/_1533499248/\x01CompObj
sid
11
type_literal
stream
size
20
name
ObjectPool/_1533499248/\x01Ole
sid
10
type_literal
stream
size
242789
name
ObjectPool/_1533499248/\x01Ole10Native
sid
13
type_literal
stream
size
6
name
ObjectPool/_1533499248/\x03ObjInfo
sid
12
type_literal
stream
size
13474
name
WordDocument
sid
2
ExifTool file metadata
SharedDoc
No

Author
Windows User

CodePage
Windows Latin 1 (Western European)

LinksUpToDate
No

LastModifiedBy
User

HeadingPairs
Title, 1

Template
Normal

CharCountWithSpaces
185

CreateDate
2016:08:23 22:14:00

CompObjUserType
Microsoft Office Word 97-2003 Document

ModifyDate
2016:08:23 22:14:00

HyperlinksChanged
No

Characters
159

ScaleCrop
No

RevisionNumber
2

MIMEType
application/msword

Words
27

FileType
DOC

Lines
1

AppVersion
12.0

Security
None

Software
Microsoft Office Word

TotalEditTime
4.0 minutes

Pages
1

CompObjUserTypeLen
39

FileTypeExtension
doc

Paragraphs
1

File identification
MD5 536f9cdbfeed9dcf3f9345ef51558266
SHA1 b6a1d92a2497a0738efb43de992f75f555bc62f5
SHA256 2975d89e92fa95a101ea87bb40109981751026c730da048762670c74809e38ad
ssdeep
12288:z1+zU9EJHWkQWE7QTA11+zU9EJHWkQWE7QTA:J59EJHiWEETAH59EJHiWEETA

File size 513.5 KB ( 525824 bytes )
File type MS Word Document
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1252, Author: Windows User, Template: Normal, Last Saved By: User, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Total Editing Time: 04:00, Create Time/Date: Mon Aug 22 22:14:00 2016, Last Saved Time/Date: Mon Aug 22 22:14:00 2016, Number of Pages: 1, Number of Words: 27, Number of Characters: 159, Security: 0

TrID Microsoft Word document (80.0%)
Generic OLE2 / Multistream Compound File (20.0%)
Tags
doc

VirusTotal metadata
First submission 2016-08-25 05:31:51 UTC ( 1 year, 3 months ago )
Last submission 2016-08-25 05:31:51 UTC ( 1 year, 3 months ago )
File names Fraud Notice XM.doc
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!