× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 329e9b8c5e35ac1a08d759021fcfeaeed0a39d0d802c95b64709f831fa4b0541
File name: Response 2011.doc
Detection ratio: 14 / 42
Analysis date: 2011-04-15 15:31:01 UTC ( 7 years, 7 months ago ) View latest
Antivirus Result Update
AhnLab-V3 Dropper/Cve-2011-0611 20110415
Antiy-AVL Exploit/SWF.CVE-2011-0611 20110415
Avast SWF:CVE-2011-0609-C 20110415
Avast5 SWF:CVE-2011-0609-C 20110415
Commtouch MSWord/Dropper.B!Camelot 20110415
DrWeb Exploit.Wordbo.12 20110415
eTrust-Vet W97M/CVE-2011-0611!dropper 20110415
GData SWF:CVE-2011-0609-C 20110415
Kaspersky Exploit.SWF.CVE-2011-0611.a 20110415
McAfee Exploit-CVE2011-0611 20110415
McAfee-GW-Edition Exploit-CVE2011-0611 20110415
Microsoft Exploit:SWF/CVE-2011-0611.A 20110415
Sophos AV Troj/DocDrp-A 20110415
Symantec Trojan.Dropper 20110415
AntiVir 20110415
AVG 20110415
BitDefender 20110415
CAT-QuickHeal 20110415
ClamAV 20110415
Comodo 20110415
Emsisoft 20110415
eSafe 20110413
F-Prot 20110414
F-Secure 20110415
Fortinet 20110415
Ikarus 20110415
Jiangmin 20110415
K7AntiVirus 20110415
NOD32 20110415
Norman 20110415
Panda 20110415
PCTools 20110415
Prevx 20110415
Rising 20110415
SUPERAntiSpyware 20110414
TheHacker 20110415
TrendMicro 20110415
TrendMicro-HouseCall 20110415
VBA32 20110415
VIPRE 20110415
ViRobot 20110415
VirusBuster 20110415
The file being studied follows the Compound Document File format! More specifically, it is a MS Word Document file.
Summary
last_author
7
creation_datetime
2011-04-04 07:50:00
revision_number
2
author
7
page_count
1
last_saved
2011-04-04 07:51:00
edit_time
60
template
Normal.dot
application_name
Microsoft Office Word
code_page
Simplified Chinese GBK
Document summary
line_count
1
company
hust
version
727256
paragraph_count
1
code_page
Simplified Chinese GBK
OLE Streams
name
Root Entry
clsid
00020906-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Word
sid
0
size
3648
type_literal
stream
sid
11
name
\x01CompObj
size
113
type_literal
stream
sid
10
name
\x05DocumentSummaryInformation
size
284
type_literal
stream
sid
9
name
\x05SummaryInformation
size
384
type_literal
stream
sid
8
name
1Table
size
2677
type_literal
stream
sid
1
name
Data
size
4096
type_literal
stream
sid
6
name
ObjectPool/_1363433832/\x03OCXNAME
size
34
type_literal
stream
sid
5
name
ObjectPool/_1363433832/\x03ObjInfo
size
6
type_literal
stream
sid
7
name
ObjectPool/_1363433832/Contents
size
10429
type_literal
stream
sid
2
name
WordDocument
size
4146
ExifTool file metadata
SharedDoc
No

Author
7

CodePage
Windows Simplified Chinese (PRC, Singapore)

LinksUpToDate
No

LastModifiedBy
7

HeadingPairs
Title, 1

Template
Normal.dot

CharCountWithSpaces
0

CreateDate
2011:04:04 06:50:00

CompObjUserType
Microsoft Office Word Document

ModifyDate
2011:04:04 06:51:00

Company
hust

HyperlinksChanged
No

Characters
0

ScaleCrop
No

RevisionNumber
2

MIMEType
application/msword

Words
0

FileType
DOC

Lines
1

AppVersion
11.636

Security
None

Software
Microsoft Office Word

TotalEditTime
1.0 minutes

Pages
1

CompObjUserTypeLen
31

FileTypeExtension
doc

Paragraphs
1

File identification
MD5 a421d074611188cfcfcedba55cc7e194
SHA1 ca044e91761e633a0580c947adc39a6ca248e5e9
SHA256 329e9b8c5e35ac1a08d759021fcfeaeed0a39d0d802c95b64709f831fa4b0541
ssdeep
1536:NcxdhkEBbF79z9vYN6jiilJzf2zWb5ruo5NaSSqKQN8Uy:2VBJ7t9v79sSrNNiQ/

File size 163.5 KB ( 167440 bytes )
File type MS Word Document
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 936, Author: 7, Template: Normal.dot, Last Saved By: 7, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Total Editing Time: 01:00, Create Time/Date: Sun Apr 03 06:50:00 2011, Last Saved Time/Date: Sun Apr 03 06:51:00 2011, Number of Pages: 1, Number of Words: 0, Number of Characters: 0, Security: 0

TrID Microsoft Word document (80.0%)
Generic OLE2 / Multistream Compound File (20.0%)
Tags
doc exploit cve-2011-0611

VirusTotal metadata
First submission 2011-04-15 15:31:01 UTC ( 7 years, 7 months ago )
Last submission 2017-04-17 23:32:34 UTC ( 1 year, 7 months ago )
File names BGNe7RTfh7.caj
a421d074611188cfcfcedba55cc7e194
aa
Response 2011.doc
2.doc
QGkKVmgO.ocx
VirusShare_a421d074611188cfcfcedba55cc7e194.doc
Response 2011.doc_$
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!