× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2cf2fbe92004b98b8dd5ff4631787dcf8241723020f1216b89a1a706addf9347
File name: 2cf2fbe92004b98b8dd5ff4631787dcf8241723020f1216b89a1a706addf9347.rtf
Detection ratio: 38 / 56
Analysis date: 2018-07-01 15:45:54 UTC ( 10 months, 3 weeks ago )
Antivirus Result Update
Ad-Aware Exploit.RTF-ObfsStrm.Gen 20180701
AegisLab Exploit.W32.CVE-2012-0158.ah!c 20180701
AhnLab-V3 Exploit/Agent 20180701
Antiy-AVL Trojan[Exploit]/RTF.Obscure.Gen 20180701
Arcabit Exploit.RTF-ObfsStrm.Gen 20180701
Avast RTF:CVE-2012-0158-BT [Expl] 20180701
AVG RTF:CVE-2012-0158-BT [Expl] 20180701
Avira (no cloud) EXP/CVE-2012-0158 20180701
AVware Exploit.RTF.CVE-2012-0158 (v) 20180701
BitDefender Exploit.RTF-ObfsStrm.Gen 20180701
Bkav Exploit.Office.Heur 20180630
CAT-QuickHeal Exp.RTF.Shellcode.DA 20180701
ClamAV Rtf.Trojan.Agent-1388623 20180701
Cyren RTF/CVE120158 20180701
DrWeb Exploit.CVE2012-0158.29 20180701
Emsisoft Exploit.RTF-ObfsStrm.Gen (B) 20180701
ESET-NOD32 Win32/Exploit.CVE-2012-0158.CF 20180701
F-Prot RTF/CVE120158 20180701
F-Secure Exploit.RTF-ObfsStrm.Gen 20180701
Fortinet W97M/Agent.DI!exploit 20180701
GData Exploit.RTF-ObfsStrm.Gen 20180701
Ikarus Exploit.MSWord.Agent 20180701
K7AntiVirus Trojan ( 0040f43f1 ) 20180701
K7GW Trojan ( 0040f43f1 ) 20180701
Kaspersky Exploit.Win32.CVE-2012-0158.ah 20180701
MAX malware (ai score=99) 20180701
McAfee Exploit-CVE2012-0158!rtf 20180701
McAfee-GW-Edition Exploit-CVE2012-0158!rtf 20180701
Microsoft Exploit:Win32/CVE-2012-0158 20180701
eScan Exploit.RTF-ObfsStrm.Gen 20180701
NANO-Antivirus Trojan.Rtf.CVE20120158.dxoqkh 20180701
Sophos AV Exp/20120158-A 20180701
Symantec Trojan.Mdropper 20180630
Tencent Win32.Exploit.Cve-2012-0158.Amcd 20180701
VIPRE Exploit.RTF.CVE-2012-0158 (v) 20180701
Zillya Downloader.OpenConnection.JS.85595 20180629
ZoneAlarm by Check Point Exploit.Win32.CVE-2012-0158.ah 20180701
Zoner TrojanAgent.Generic 20180701
Avast-Mobile 20180701
Babable 20180406
Baidu 20180628
CMC 20180701
Comodo 20180701
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
eGambit 20180701
Endgame 20180612
Sophos ML 20180601
Jiangmin 20180701
Kingsoft 20180701
Malwarebytes 20180701
Palo Alto Networks (Known Signatures) 20180701
Panda 20180701
Qihoo-360 20180701
SentinelOne (Static ML) 20180618
SUPERAntiSpyware 20180701
TACHYON 20180701
TheHacker 20180628
TotalDefense 20180701
Trustlook 20180701
VBA32 20180629
ViRobot 20180701
Webroot 20180701
Yandex 20180629
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Summary
Revision time
2013-05-08 11:29:00
Version number
49273
Editing time
10
Author
xxx
Company
1stconsult
Number of pages
1
Creation time
2013-04-12 05:50:00
Operator
xxx
Version
9
Number of characters
60
Number of words
10
Number of non whitespace characters
69
Document properties
Non ascii characters
100314
Embedded drawings
0
Rtf header
rtf1
Default ansi codepage
Western European
Read only protection
False
User protection
False
Default character set
ANSI
Custom xml data properties
1
Dos stubs
0
Objects
OLE control
Embedded pictures
0
Longest hex string
6208
Default languages
English - United States, Arabic - Saudi Arabia
ExifTool file metadata
MIMEType
text/rtf

Company
1stconsult

ModifyDate
2013:05:08 11:29:00

Characters
60

Author
xxx

TotalEditTime
10 minutes

FileType
RTF

Pages
1

LastModifiedBy
xxx

FileTypeExtension
rtf

CharactersWithSpaces
69

Words
10

InternalVersionNumber
49273

CreateDate
2013:04:12 05:50:00

RevisionNumber
9

Overlay parents
Compressed bundles
File identification
MD5 ed57cb732e9657c1e24e9f6d7c655eb9
SHA1 86c29b89726af8ec22cfe081455ae859b85e594c
SHA256 2cf2fbe92004b98b8dd5ff4631787dcf8241723020f1216b89a1a706addf9347
ssdeep
3072:Vr5cgkfMS9nVwlBKSbUs8ivrAW/VzW7inBGr1mGzsqxm2WKaFDkHu5TxpYChKXwl:RaKtUbizAceAZ2+FDf5NrE4Fk1M

File size 324.5 KB ( 332266 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, unknown character set

TrID Rich Text Format (100.0%)
Tags
cve-2012-0158 ole-control exploit rtf

VirusTotal metadata
First submission 2013-05-08 16:23:19 UTC ( 6 years ago )
Last submission 2018-05-30 01:52:15 UTC ( 11 months, 3 weeks ago )
File names ee22892477a5cd39_00332266
Statement ID 64775-4985.doc
ed57cb732e9657c1e24e9f6d7c655eb9.doc
sus-virus.doc
2cf2fbe92004b98b8dd5ff4631787dcf8241723020f1216b89a1a706addf9347.rtf
Statement ID 64775-4985.doc
ed57cb732e9657c1e24e9f6d7c655eb9.virus
test
vti-rescan
ed57cb732e9657c1e24e9f6d7c655eb9
Statement ID 64775-4985.doc
Statement ID 64775-4985.doc
file-5468549_doc
ed57cb732e9657c1e24e9f6d7c655eb9.malware
file.___
Statement_ID_64775_4985.doc
Statement ID 64775-4985.doc
StatementID64775-4985.doc
Statement_ID_64775-4985.doc
ExifTool file metadata
MIMEType
text/rtf

Company
1stconsult

ModifyDate
2013:05:08 11:29:00

Characters
60

Author
xxx

TotalEditTime
10 minutes

FileType
RTF

Pages
1

LastModifiedBy
xxx

FileTypeExtension
rtf

CharactersWithSpaces
69

Words
10

InternalVersionNumber
49273

CreateDate
2013:04:12 05:50:00

RevisionNumber
9

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!