× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
File name: 3
Detection ratio: 19 / 56
Analysis date: 2015-04-20 12:47:11 UTC ( 2 months, 2 weeks ago )
Antivirus Result Update
ALYac Exploit.DOC.EFF 20150420
Ad-Aware Trojan.Dropper.HTA.I 20150420
BitDefender Trojan.Dropper.HTA.I 20150420
ClamAV Win.Dropper.Dizk 20150420
DrWeb Trojan.MulDrop4.39067 20150420
Emsisoft Trojan.Dropper.HTA.I (B) 20150420
F-Secure Trojan:W32/Agent.DUQY 20150420
GData Trojan.Dropper.HTA.I 20150420
Ikarus Trojan.HTA.Agent 20150420
Kaspersky Trojan.HTA.Agent.k 20150420
MicroWorld-eScan Trojan.Dropper.HTA.I 20150420
Norman Dropper.KM 20150420
Qihoo-360 Trojan.Generic 20150420
Sophos Troj/DocDrop-BF 20150420
Symantec Trojan.Mdropper 20150420
Tencent Win32.Trojan.Agent.Lnnz 20150420
TrendMicro TROJ_MDROPR.TUE 20150420
TrendMicro-HouseCall TROJ_MDROPR.TUE 20150420
nProtect Trojan.Dropper.HTA.I 20150420
AVG 20150420
AVware 20150420
AegisLab 20150420
Agnitum 20150420
AhnLab-V3 20150420
Alibaba 20150420
Antiy-AVL 20150420
Avast 20150420
Baidu-International 20150420
Bkav 20150420
ByteHero 20150420
CAT-QuickHeal 20150420
CMC 20150418
Comodo 20150420
Cyren 20150420
ESET-NOD32 20150420
F-Prot 20150420
Fortinet 20150420
Jiangmin 20150420
K7AntiVirus 20150420
K7GW 20150420
Kingsoft 20150420
Malwarebytes 20150420
McAfee 20150420
McAfee-GW-Edition 20150420
Microsoft 20150420
NANO-Antivirus 20150420
Panda 20150420
Rising 20150420
SUPERAntiSpyware 20150420
TheHacker 20150420
TotalDefense 20150420
VBA32 20150420
VIPRE 20150420
ViRobot 20150420
Zillya 20150420
Zoner 20150420
The file being studied follows the Compound Document File format! More specifically, it is a MS Word Document file.
Summary
creation_datetime
2012-11-20 06:02:00
template
Normal
page_count
3
last_saved
2012-11-20 06:02:00
edit_time
60
word_count
395
revision_number
2
application_name
Microsoft Office Word
character_count
2258
code_page
Latin I
Document summary
line_count
18
paragraph_count
5
version
917504
characters_with_spaces
2648
code_page
Latin I
OLE Streams
kids
\\x01CompObj, \\x05DocumentSummaryInformation, \\x05SummaryInformation, 1Table, WordDocument
name
Root Entry
clsid
00020906-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Word
size
448
type_literal
stream
md5
29588f1ad99cf07a643bf959bbc227ea
entropy
5.92025265119
name
1Table
size
6792
type_literal
stream
md5
0d0d19f30008e4f4f03c4f0e1059aaa5
entropy
4.46141655624
name
WordDocument
size
21038
type_literal
stream
md5
fb2a12a5c39418f664b1df60efa4c088
entropy
3.23908426798
name
\\x05SummaryInformation
size
296
type_literal
stream
md5
78ae335f0c1e8c23b5400333e366c4d9
entropy
0.250028107293
name
\\x05DocumentSummaryInformation
size
4096
type_literal
stream
md5
367e9d6e505ece35eba2c1469c5cd664
entropy
4.2359563651
name
\\x01CompObj
size
114
ExifTool file metadata
SharedDoc
No

HyperlinksChanged
No

LinksUpToDate
No

HeadingPairs
Title, 1

Template
Normal

CharCountWithSpaces
2648

CreateDate
2012:11:20 05:02:00

Security
None

CompObjUserType
Microsoft Word 97-2003 Document

ModifyDate
2012:11:20 05:02:00

Characters
2258

Pages
3

RevisionNumber
2

MIMEType
application/msword

Words
395

FileType
DOC

Lines
18

AppVersion
14.0

CodePage
Windows Latin 1 (Western European)

Software
Microsoft Office Word

TotalEditTime
1.0 minutes

ScaleCrop
No

CompObjUserTypeLen
32

Paragraphs
5

File identification
MD5 af170750a8228c9e5f21bfc35fc67721
SHA1 4e2d1e15666c32311c9b4014ce5ac6d86dcf5255
SHA256 351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
ssdeep
49152:HnKQgrkA+OIreJ8be7VB2g3V7BR+CPbmJJ2UNCtF10tjYnbgpGUrGe2c7O3zAhDI:A

File size 2.0 MB ( 2124400 bytes )
File type MS Word Document
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1252, Template: Normal, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Total Editing Time: 01:00, Create Time/Date: Mon Nov 19 05:02:00 2012, Last Saved Time/Date: Mon Nov 19 05:02:00 2012, Number of Pages: 3, Number of Words: 395, Number of Characters: 2258, Security: 0

TrID Microsoft Word document (54.2%)
Microsoft Word document (old ver.) (32.2%)
Generic OLE2 / Multistream Compound File (13.5%)
Tags
doc

VirusTotal metadata
First submission 2013-11-05 21:18:24 UTC ( 1 year, 8 months ago )
Last submission 2015-04-05 10:00:17 UTC ( 3 months ago )
File names 3
351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
Conference.hta
vti-rescan
doc.doc.3
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!