× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
File name: 4e2d1e15666c32311c9b4014ce5ac6d86dcf5255_351813270729b78fb2fe33be...
Detection ratio: 26 / 59
Analysis date: 2018-10-16 12:55:04 UTC ( 4 days, 7 hours ago )
Antivirus Result Update
Ad-Aware Trojan.Dropper.HTA.I 20181016
ALYac Exploit.DOC.EFF 20181016
Arcabit Trojan.Dropper.HTA.I 20181016
Avast Other:Malware-gen [Trj] 20181016
AVG Other:Malware-gen [Trj] 20181016
Avira (no cloud) VBS/Revietmem.MK 20181016
BitDefender Trojan.Dropper.HTA.I 20181016
Bkav W32.HTAOle.Worm 20181016
ClamAV Win.Dropper.Dizk-1 20181016
DrWeb Trojan.MulDrop4.39067 20181016
Emsisoft Trojan.Dropper.HTA.I (B) 20181016
F-Secure Trojan:W32/Agent.DUQY 20181016
GData Trojan.Dropper.HTA.I 20181016
Ikarus Trojan.Dropper 20181016
Kaspersky Trojan.HTA.Agent.k 20181016
MAX malware (ai score=96) 20181016
McAfee-GW-Edition Artemis!Trojan 20181016
eScan Trojan.Dropper.HTA.I 20181016
Qihoo-360 Script/Virus.233 20181016
Sophos AV Troj/DocDrop-BF 20181016
Symantec Trojan.Mdropper 20181016
Tencent Win32.Trojan.Agent.Lnnz 20181016
TrendMicro TROJ_MDROPR.TUE 20181016
TrendMicro-HouseCall TROJ_MDROPR.TUE 20181016
ViRobot Trojan.Win32.S.Agent.2124400 20181016
ZoneAlarm by Check Point Trojan.HTA.Agent.k 20181016
AegisLab 20181016
AhnLab-V3 20181016
Alibaba 20180921
Antiy-AVL 20181016
Avast-Mobile 20181016
Babable 20180918
Baidu 20181015
CAT-QuickHeal 20181013
CMC 20181016
Comodo 20181016
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20181016
Cyren 20181016
eGambit 20181016
Endgame 20180730
ESET-NOD32 20181016
F-Prot 20181016
Fortinet 20181016
Sophos ML 20180717
Jiangmin 20181016
K7AntiVirus 20181016
K7GW 20181016
Kingsoft 20181016
Malwarebytes 20181016
McAfee 20181016
Microsoft 20181016
NANO-Antivirus 20181016
Palo Alto Networks (Known Signatures) 20181016
Panda 20181015
Rising 20181016
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181015
Symantec Mobile Insight 20181001
TACHYON 20181016
TheHacker 20181015
TotalDefense 20181016
Trustlook 20181016
VBA32 20181016
VIPRE 20181016
Webroot 20181016
Yandex 20181015
Zillya 20181015
Zoner 20181015
The file being studied follows the Compound Document File format! More specifically, it is a MS Word Document file.
Summary
creation_datetime
2012-11-20 06:02:00
revision_number
2
page_count
3
word_count
395
edit_time
60
last_saved
2012-11-20 06:02:00
template
Normal
application_name
Microsoft Office Word
character_count
2258
code_page
Latin I
Document summary
line_count
18
characters_with_spaces
2648
version
917504
paragraph_count
5
code_page
Latin I
OLE Streams
name
Root Entry
clsid
00020906-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Word
sid
0
size
448
type_literal
stream
sid
5
name
\x01CompObj
size
114
type_literal
stream
sid
4
name
\x05DocumentSummaryInformation
size
4096
type_literal
stream
sid
3
name
\x05SummaryInformation
size
296
type_literal
stream
sid
1
name
1Table
size
6792
type_literal
stream
sid
2
name
WordDocument
size
21038
ExifTool file metadata
SharedDoc
No

HyperlinksChanged
No

System
Windows

LinksUpToDate
No

HeadingPairs
Title, 1

Identification
Word 8.0

Template
Normal

CharCountWithSpaces
2648

CreateDate
2012:11:20 05:02:00

Word97
No

LanguageCode
English (US)

CompObjUserType
Microsoft Word 97-2003 Document

ModifyDate
2012:11:20 05:02:00

Characters
2258

CodePage
Windows Latin 1 (Western European)

RevisionNumber
2

MIMEType
application/msword

Words
395

FileType
DOC

Lines
18

AppVersion
14.0

Security
None

Software
Microsoft Office Word

TotalEditTime
1 minute

Pages
3

ScaleCrop
No

CompObjUserTypeLen
32

FileTypeExtension
doc

Paragraphs
5

LastPrinted
0000:00:00 00:00:00

DocFlags
1Table, ExtChar

File identification
MD5 af170750a8228c9e5f21bfc35fc67721
SHA1 4e2d1e15666c32311c9b4014ce5ac6d86dcf5255
SHA256 351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
ssdeep
49152:HnKQgrkA+OIreJ8be7VB2g3V7BR+CPbmJJ2UNCtF10tjYnbgpGUrGe2c7O3zAhDI:A

File size 2.0 MB ( 2124400 bytes )
File type MS Word Document
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1252, Template: Normal, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Total Editing Time: 01:00, Create Time/Date: Mon Nov 19 05:02:00 2012, Last Saved Time/Date: Mon Nov 19 05:02:00 2012, Number of Pages: 3, Number of Words: 395, Number of Characters: 2258, Security: 0

TrID Microsoft Word document (54.2%)
Microsoft Word document (old ver.) (32.2%)
Generic OLE2 / Multistream Compound File (13.5%)
Tags
doc

VirusTotal metadata
First submission 2013-11-05 21:18:24 UTC ( 4 years, 11 months ago )
Last submission 2018-04-02 22:28:27 UTC ( 6 months, 2 weeks ago )
File names Conference.hta
4e2d1e15666c32311c9b4014ce5ac6d86dcf5255_351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
vti-rescan
3
doc.doc.3
351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!