× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5d97db906fd9d67258665d16fe8d2ca91551d1067383b34bf9fd203b07bda824
File name: b5fca7066a107891b340d5c42745ae3a
Detection ratio: 9 / 60
Analysis date: 2017-10-20 09:54:05 UTC ( 1 year, 4 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Downloader.DDE.Gen 20171020
Arcabit Trojan.Downloader.DDE.Gen 20171020
BitDefender Trojan.Downloader.DDE.Gen 20171020
ClamAV Doc.Exploit.DDEautoexec-6348842-0 20171020
Cyren XML/DDEDownldr.A!Camelot 20171020
Emsisoft Trojan.Downloader.DDE.Gen (B) 20171020
F-Secure Trojan.Downloader.DDE.Gen 20171020
MAX malware (ai score=85) 20171020
eScan Trojan.Downloader.DDE.Gen 20171020
AegisLab 20171020
AhnLab-V3 20171020
Alibaba 20170911
ALYac 20171020
Antiy-AVL 20171020
Avast 20171020
Avast-Mobile 20171020
AVG 20171020
Avira (no cloud) 20171020
AVware 20171020
Baidu 20171020
Bkav 20171019
CAT-QuickHeal 20171020
CMC 20171018
Comodo 20171020
CrowdStrike Falcon (ML) 20171016
Cylance 20171020
DrWeb 20171020
eGambit 20171020
Endgame 20171016
ESET-NOD32 20171020
F-Prot 20171020
Fortinet 20171020
Ikarus 20171020
Sophos ML 20170914
Jiangmin 20171020
K7AntiVirus 20171019
K7GW 20171020
Kaspersky 20171020
Kingsoft 20171020
Malwarebytes 20171020
McAfee 20171020
McAfee-GW-Edition 20171020
Microsoft 20171019
NANO-Antivirus 20171020
nProtect 20171020
Palo Alto Networks (Known Signatures) 20171020
Panda 20171019
Qihoo-360 20171020
Rising 20171020
SentinelOne (Static ML) 20171019
Sophos AV 20171020
SUPERAntiSpyware 20171020
Symantec 20171020
Symantec Mobile Insight 20171011
Tencent 20171020
TheHacker 20171017
TotalDefense 20171020
TrendMicro 20171020
TrendMicro-HouseCall 20171020
Trustlook 20171020
VBA32 20171019
VIPRE 20171020
ViRobot 20171020
Webroot 20171020
WhiteArmor 20171016
Yandex 20171020
Zillya 20171019
ZoneAlarm by Check Point 20171020
Zoner 20171020
The file being studied follows the Open XML file format! More specifically, it is a Office Open XML Document file.
Content types
rels
xml
Package relationships
word/document.xml
docProps/app.xml
docProps/core.xml
Core document properties
dc:creator
1
cp:lastModifiedBy
1
cp:revision
114
dcterms:created
2017-10-18T12:30:00Z
dcterms:modified
2017-10-20T08:54:00Z
Application document properties
Template
Normal.dotm
TotalTime
410
Pages
2
Words
35
Characters
205
Application
Microsoft Office Word
DocSecurity
0
Lines
1
Paragraphs
1
ScaleCrop
false
vt:lpstr
\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435
vt:i4
1
LinksUpToDate
false
CharactersWithSpaces
239
SharedDoc
false
HyperlinksChanged
false
AppVersion
16.0000
Document languages
Language
Prevalence
ru-ru
3
en-us
2
ar-sa
1
ExifTool file metadata
SharedDoc
No

HyperlinksChanged
No

LinksUpToDate
No

LastModifiedBy
1

HeadingPairs
, 1

ZipFileName
[Content_Types].xml

Template
Normal.dotm

ZipRequiredVersion
20

ModifyDate
2017:10:20 08:54:00Z

ZipCRC
0x6cd2a4df

Words
35

ScaleCrop
No

RevisionNumber
114

MIMEType
application/vnd.openxmlformats-officedocument.wordprocessingml.document

ZipBitFlag
0x0006

CreateDate
2017:10:18 12:30:00Z

Lines
1

AppVersion
16.0

ZipUncompressedSize
1312

ZipCompressedSize
346

Characters
205

CharactersWithSpaces
239

DocSecurity
None

ZipModifyDate
1980:01:01 00:00:00

FileType
DOCX

Application
Microsoft Office Word

TotalEditTime
6.8 hours

ZipCompression
Deflated

Pages
2

Creator
1

FileTypeExtension
docx

Paragraphs
1

The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
11
Uncompressed size
58631
Highest datetime
1980-01-01 00:00:00
Lowest datetime
1980-01-01 00:00:00
Contained files by extension
xml
9
Contained files by type
XML
11
File identification
MD5 b5fca7066a107891b340d5c42745ae3a
SHA1 62d402c95c4d54c4cb7d394cf601ca31efcd9dd0
SHA256 5d97db906fd9d67258665d16fe8d2ca91551d1067383b34bf9fd203b07bda824
ssdeep
192:CtNC2o8c2j9zJCv150S182keb3aoyOa6dp3GlWZmTOeKpQ8Ok:aNjx1CnjRNRB/UTtKpQ5k

File size 13.2 KB ( 13556 bytes )
File type Office Open XML Document
Magic literal
Zip archive data, at least v2.0 to extract

TrID Word Microsoft Office Open XML Format document (51.0%)
Open Packaging Conventions container (38.0%)
ZIP compressed archive (8.6%)
PrintFox/Pagefox bitmap (var. P) (2.1%)
Tags
docx attachment

VirusTotal metadata
First submission 2017-10-20 09:54:05 UTC ( 1 year, 4 months ago )
Last submission 2018-05-09 00:16:23 UTC ( 9 months, 2 weeks ago )
File names AAAA20170927_929092.doc
20170927_931591.doc
20170927_031491.doc
20170927_169134.doc
20170927_531350.doc
20170927_453254.doc
bdcdf32bd15dc26b45bb714c10c80dc474082428.unknow
20170927_088786.doc
20170927_350110.doc
20170927_469175.doc
20170927_333851.doc
20170927_364506.doc
20170927_022706.doc
20170927_298137.doc
20170927_320267.doc
20170927_211131.doc
20170927_461300.doc
20170927_932807.doc
20170927_392926.doc
b5fca7066a107891b340d5c42745ae3a
20170927_601132.doc
20170927_088908.doc
20170927_134809.doc
20170927_671523.doc
20170927_901222.doc
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!