× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3aa9c9cf6ed34ecb67fecc41d2e0d54835fe277fed876e1a1dc3e85eed2c0396
File name: dttcodexgigas.9c1ae6c097ee0f41f516d3b04060bd3e465eccb9
Detection ratio: 29 / 57
Analysis date: 2019-01-10 03:22:49 UTC ( 3 months, 2 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Exploit.RTF-ObfsStrm.Gen 20190110
AhnLab-V3 RTF/Malform-C.Gen 20190109
Antiy-AVL Trojan[Exploit]/OLE.CVE-2017-11882 20190110
Arcabit Exploit.RTF-ObfsStrm.Gen 20190110
Avira (no cloud) HEUR/Rtf.Malformed 20190110
BitDefender Exploit.RTF-ObfsStrm.Gen 20190110
CAT-QuickHeal Exp.RTF.Obfus.Gen 20190109
Cyren CVE-2017-11882!Camelot 20190110
DrWeb Exploit.Rtf.CVE2012-0158 20190110
Emsisoft Exploit.RTF-ObfsStrm.Gen (B) 20190110
ESET-NOD32 probably a variant of Win32/Exploit.CVE-2017-11882.A 20190109
F-Secure Exploit.RTF-ObfsStrm.Gen 20190110
GData Exploit.RTF-ObfsStrm.Gen 20190110
Ikarus Exploit.CVE-2017-11882 20190110
Kaspersky HEUR:Exploit.MSOffice.Generic 20190109
MAX malware (ai score=82) 20190110
McAfee Exploit-CVE2017-11882.ah 20190109
McAfee-GW-Edition Exploit-CVE2017-11882.ah 20190109
Microsoft Exploit:O97M/CVE-2017-11882.T 20190109
eScan Exploit.RTF-ObfsStrm.Gen 20190109
Qihoo-360 susp.rtf.objupdate.gen 20190110
Rising Exploit.CVE-2017-11882/SLT!1.AEE3 (CLASSIC) 20190109
Sophos AV Exp/201711882-P 20190109
Symantec Exp.CVE-2017-11882!g3 20190109
TACHYON Trojan-Exploit/RTF.CVE-2017-11882 20190109
TrendMicro Possible_SMBCVE20170199 20190109
TrendMicro-HouseCall Possible_SMBCVE20170199 20190109
ZoneAlarm by Check Point HEUR:Exploit.Win32.CVE-2017-11882.a 20190110
Zoner Probably RTFObfuscation 20190110
Acronis 20190110
AegisLab 20190109
Alibaba 20180921
ALYac 20190110
Avast 20190110
Avast-Mobile 20190109
AVG 20190110
Babable 20180918
Baidu 20190109
Bkav 20190108
ClamAV 20190110
CMC 20190110
Comodo 20190110
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190110
eGambit 20190110
Endgame 20181108
F-Prot 20190110
Fortinet 20190110
Sophos ML 20181128
Jiangmin 20190109
K7AntiVirus 20190109
K7GW 20190109
Kingsoft 20190110
NANO-Antivirus 20190109
Palo Alto Networks (Known Signatures) 20190110
Panda 20190109
SentinelOne (Static ML) 20181223
SUPERAntiSpyware 20190109
Tencent 20190110
TheHacker 20190106
TotalDefense 20190109
Trapmine 20190103
Trustlook 20190110
VBA32 20190109
VIPRE 20190109
ViRobot 20190109
Webroot 20190110
Yandex 20181229
Zillya 20190109
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Summary
Revision time
2018-07-03 09:28:00
Version number
57435
Editing time
12
Author
obidah qudah
Number of pages
1
Creation time
2018-01-23 22:18:00
Operator
Richard
Version
23
Number of characters
97
Number of words
17
Number of non whitespace characters
113
Document properties
Non ascii characters
0
Embedded drawings
15
Rtf header
rtf1
Default ansi codepage
Western European
Read only protection
False
User protection
False
Default character set
ANSI
Custom xml data properties
1
Dos stubs
0
Objects
OLE embedded
Embedded pictures
0
Longest hex string
7280
Default languages
English - United States, Arabic - Saudi Arabia
ExifTool file metadata
MIMEType
text/rtf

ModifyDate
2018:07:03 09:28:00

Characters
97

Author
obidah qudah

TotalEditTime
12 minutes

FileType
RTF

LastModifiedBy
Richard

FileTypeExtension
rtf

CharactersWithSpaces
113

Words
17

CreateDate
2018:01:23 22:18:00

InternalVersionNumber
57435

Pages
1

RevisionNumber
23

File identification
MD5 bab269b9c618244089cc076e1ecb1e20
SHA1 9c1ae6c097ee0f41f516d3b04060bd3e465eccb9
SHA256 3aa9c9cf6ed34ecb67fecc41d2e0d54835fe277fed876e1a1dc3e85eed2c0396
ssdeep
1536:sxxQW3yp1zhsRbyOWrdDLNIVh9dzCQWRkDDji:sxt3aWMDZIVdzCB

File size 261.1 KB ( 267402 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, unknown character set

TrID Rich Text Format (100.0%)
Tags
ole-embedded rtf cve-2017-11882 cve-2012-0158 exploit cve-2017-0199

VirusTotal metadata
First submission 2019-01-10 03:22:49 UTC ( 3 months, 2 weeks ago )
Last submission 2019-01-14 09:39:07 UTC ( 3 months, 1 week ago )
File names dttcodexgigas.9c1ae6c097ee0f41f516d3b04060bd3e465eccb9
bab269b9c618244089cc076e1ecb1e20.virobj
word.doc
ExifTool file metadata
MIMEType
text/rtf

ModifyDate
2018:07:03 09:28:00

Characters
97

Author
obidah qudah

TotalEditTime
12 minutes

FileType
RTF

LastModifiedBy
Richard

FileTypeExtension
rtf

CharactersWithSpaces
113

Words
17

CreateDate
2018:01:23 22:18:00

InternalVersionNumber
57435

Pages
1

RevisionNumber
23

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!