× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
File name: 4e2d1e15666c32311c9b4014ce5ac6d86dcf5255_351813270729b78fb2fe33be...
Detection ratio: 27 / 56
Analysis date: 2018-11-19 12:12:20 UTC ( 3 weeks, 1 day ago )
Antivirus Result Update
Ad-Aware Trojan.Dropper.HTA.I 20181119
AegisLab Trojan.HTA.Agent.4!c 20181119
ALYac Exploit.DOC.EFF 20181119
Arcabit Trojan.Dropper.HTA.I 20181119
Avast Other:Malware-gen [Trj] 20181119
AVG Other:Malware-gen [Trj] 20181119
Avira (no cloud) VBS/Revietmem.MK 20181119
BitDefender Trojan.Dropper.HTA.I 20181119
Bkav W32.HTAOle.Worm 20181119
ClamAV Win.Dropper.Dizk-1 20181119
DrWeb Trojan.MulDrop4.39067 20181119
Emsisoft Trojan.Dropper.HTA.I (B) 20181119
F-Secure Trojan:W32/Agent.DUQY 20181119
GData Trojan.Dropper.HTA.I 20181119
Ikarus Trojan.Dropper 20181119
Kaspersky Trojan.HTA.Agent.k 20181119
MAX malware (ai score=96) 20181119
McAfee-GW-Edition Artemis!Trojan 20181119
eScan Trojan.Dropper.HTA.I 20181119
Qihoo-360 Script/Virus.233 20181119
Sophos AV Troj/DocDrop-BF 20181119
Symantec Trojan.Mdropper 20181118
Tencent Win32.Trojan.Agent.Lnnz 20181119
TrendMicro TROJ_MDROPR.TUE 20181119
TrendMicro-HouseCall TROJ_MDROPR.TUE 20181119
ViRobot Trojan.Win32.S.Agent.2124400 20181119
ZoneAlarm by Check Point Trojan.HTA.Agent.k 20181119
AhnLab-V3 20181119
Alibaba 20180921
Antiy-AVL 20181119
Avast-Mobile 20181119
Babable 20180918
Baidu 20181119
CAT-QuickHeal 20181119
CMC 20181119
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181119
Cyren 20181119
eGambit 20181119
Endgame 20181108
ESET-NOD32 20181119
F-Prot 20181119
Fortinet 20181119
Sophos ML 20181108
Jiangmin 20181119
K7AntiVirus 20181119
K7GW 20181119
Kingsoft 20181119
Malwarebytes 20181119
McAfee 20181119
Microsoft 20181119
NANO-Antivirus 20181119
Palo Alto Networks (Known Signatures) 20181119
Panda 20181118
Rising 20181119
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181114
Symantec Mobile Insight 20181108
TACHYON 20181119
TheHacker 20181118
Trustlook 20181119
VBA32 20181119
Webroot 20181119
Yandex 20181116
Zillya 20181116
Zoner 20181119
The file being studied follows the Compound Document File format! More specifically, it is a MS Word Document file.
Summary
creation_datetime
2012-11-20 06:02:00
revision_number
2
page_count
3
word_count
395
edit_time
60
last_saved
2012-11-20 06:02:00
template
Normal
application_name
Microsoft Office Word
character_count
2258
code_page
Latin I
Document summary
line_count
18
characters_with_spaces
2648
version
917504
paragraph_count
5
code_page
Latin I
OLE Streams
name
Root Entry
clsid
00020906-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Word
sid
0
size
448
type_literal
stream
sid
5
name
\x01CompObj
size
114
type_literal
stream
sid
4
name
\x05DocumentSummaryInformation
size
4096
type_literal
stream
sid
3
name
\x05SummaryInformation
size
296
type_literal
stream
sid
1
name
1Table
size
6792
type_literal
stream
sid
2
name
WordDocument
size
21038
ExifTool file metadata
SharedDoc
No

HyperlinksChanged
No

System
Windows

LinksUpToDate
No

HeadingPairs
Title, 1

Identification
Word 8.0

Template
Normal

CharCountWithSpaces
2648

CreateDate
2012:11:20 05:02:00

Word97
No

LanguageCode
English (US)

CompObjUserType
Microsoft Word 97-2003 Document

ModifyDate
2012:11:20 05:02:00

Characters
2258

CodePage
Windows Latin 1 (Western European)

RevisionNumber
2

MIMEType
application/msword

Words
395

FileType
DOC

Lines
18

AppVersion
14.0

Security
None

Software
Microsoft Office Word

TotalEditTime
1 minute

Pages
3

ScaleCrop
No

CompObjUserTypeLen
32

FileTypeExtension
doc

Paragraphs
5

LastPrinted
0000:00:00 00:00:00

DocFlags
1Table, ExtChar

File identification
MD5 af170750a8228c9e5f21bfc35fc67721
SHA1 4e2d1e15666c32311c9b4014ce5ac6d86dcf5255
SHA256 351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
ssdeep
49152:HnKQgrkA+OIreJ8be7VB2g3V7BR+CPbmJJ2UNCtF10tjYnbgpGUrGe2c7O3zAhDI:A

File size 2.0 MB ( 2124400 bytes )
File type MS Word Document
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1252, Template: Normal, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Total Editing Time: 01:00, Create Time/Date: Mon Nov 19 05:02:00 2012, Last Saved Time/Date: Mon Nov 19 05:02:00 2012, Number of Pages: 3, Number of Words: 395, Number of Characters: 2258, Security: 0

TrID Microsoft Word document (54.2%)
Microsoft Word document (old ver.) (32.2%)
Generic OLE2 / Multistream Compound File (13.5%)
Tags
doc

VirusTotal metadata
First submission 2013-11-05 21:18:24 UTC ( 5 years, 1 month ago )
Last submission 2018-04-02 22:28:27 UTC ( 8 months, 1 week ago )
File names Conference.hta
4e2d1e15666c32311c9b4014ce5ac6d86dcf5255_351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
vti-rescan
3
doc.doc.3
351813270729b78fb2fe33be9c57fcd6f3828576171c7f404ed53af77cd91206
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!