× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3ac491982cf2c47e3f56bf2ff333b09c4c84094fa24a4b7c8d4e120ede8711ac
File name: 0a8aqgdg7qedig.swf
Detection ratio: 4 / 47
Analysis date: 2013-11-11 13:14:22 UTC ( 1 year, 8 months ago ) View latest
Antivirus Result Update
F-Secure Exploit:SWF/Salama.F 20131111
Kaspersky HEUR:Exploit.SWF.Generic 20131111
Sophos Troj/SWFExp-CD 20131111
TrendMicro-HouseCall TROJ_GEN.F47V1108 20131111
AVG 20131111
Agnitum 20131110
AhnLab-V3 20131111
AntiVir 20131111
Antiy-AVL 20131111
Avast 20131111
Baidu-International 20131111
BitDefender 20131111
Bkav 20131111
ByteHero 20131111
CAT-QuickHeal 20131111
ClamAV 20131111
Commtouch 20131111
Comodo 20131111
DrWeb 20131111
ESET-NOD32 20131111
Emsisoft 20131111
F-Prot 20131111
Fortinet 20131111
GData 20131111
Ikarus 20131111
Jiangmin 20131111
K7AntiVirus 20131108
K7GW 20131108
Kingsoft 20130829
Malwarebytes 20131111
McAfee 20131111
McAfee-GW-Edition 20131111
MicroWorld-eScan 20131111
Microsoft 20131111
NANO-Antivirus 20131111
Norman 20131110
Panda 20131111
Rising 20131111
SUPERAntiSpyware 20131111
Symantec 20131111
TheHacker 20131111
TotalDefense 20131108
TrendMicro 20131111
VBA32 20131111
VIPRE 20131111
ViRobot 20131111
nProtect 20131111
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
The studied SWF file makes use of the loadBytes ActionScript3 functionality, commonly used to load other files and arbitrary code at runtime.
SWF Properties
SWF version
14
Compression
zlib
Frame size
550.0x400.0 px
Frame count
1
Duration
0.042 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
11
ActionScript 3 Packages
flash.display
flash.events
flash.utils
mx.core
SWF metadata
Suspicious strings
ExifTool file metadata
MIMEType
application/x-shockwave-flash

Publisher
unknown

Megapixels
0.22

Description
http://www.adobe.com/products/flex

Language
EN

Format
application/x-shockwave-flash

FlashAttributes
UseNetwork, ActionScript3, HasMetadata

Title
Adobe Flex 4 Application

FrameRate
24

FlashVersion
14

Duration
0.04 s

Creator
unknown

FileTypeExtension
swf

Compressed
True

ImageWidth
550

Date
Nov 4, 2013

ImageHeight
400

Warning
[minor] Fixed incorrect URI for xmlns:dc

FileType
SWF

FrameCount
1

ImageSize
550x400

File identification
MD5 1b61c150176f0ab076f8befb46cfc3ce
SHA1 f331223c3ce249bd2c9900a184296aaa005ce7b2
SHA256 3ac491982cf2c47e3f56bf2ff333b09c4c84094fa24a4b7c8d4e120ede8711ac
ssdeep
768:Z332QYAPtJV38SLxlWHKc1+UVFPIbeyhf8l94fpHwxyOINXzcGVgIg5UZd:ZH2QYQFlWHKmVef5lHVxP

File size 42.1 KB ( 43161 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 14

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash zlib loadbytes

VirusTotal metadata
First submission 2013-11-08 20:33:39 UTC ( 1 year, 8 months ago )
Last submission 2015-07-29 06:35:31 UTC ( 6 days, 21 hours ago )
File names 0a8aqgdg7qedig.swf
1b61c150176f0ab076f8befb46cfc3ce_OTHD6AD.tmp
16853297
16853298
0c5188e44cd86f53ffd88fd53e09c6912803b800
output.16853298.txt
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!