× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 607f6c3795f6e0dedaa93a2df73e7e1192dcc7d73992cff337b895da3cba5523
File name: 2016-09-21-1.swf
Detection ratio: 3 / 54
Analysis date: 2016-10-02 00:37:53 UTC ( 2 years, 2 months ago ) View latest
Antivirus Result Update
ESET-NOD32 a variant of SWF/Exploit.ExKit.BDV 20161001
McAfee-GW-Edition BehavesLike.Flash.Dropper.kb 20161001
Qihoo-360 susp.swf.qexvmI.65 20161002
Ad-Aware 20161002
AegisLab 20161001
AhnLab-V3 20161001
Alibaba 20160930
ALYac 20160930
Antiy-AVL 20161002
Arcabit 20161002
Avast 20161002
AVG 20161002
Avira (no cloud) 20161001
AVware 20161001
Baidu 20161001
BitDefender 20161002
Bkav 20161001
CAT-QuickHeal 20161001
ClamAV 20161002
CMC 20160930
Comodo 20161001
Cyren 20161002
DrWeb 20161002
Emsisoft 20161002
F-Prot 20160926
F-Secure 20161002
Fortinet 20161002
GData 20161002
Ikarus 20161001
Jiangmin 20161001
K7AntiVirus 20161001
K7GW 20161001
Kingsoft 20161002
Malwarebytes 20161001
McAfee 20161001
Microsoft 20161001
eScan 20161001
NANO-Antivirus 20161001
nProtect 20161001
Panda 20161001
Rising 20161001
Sophos AV 20161001
SUPERAntiSpyware 20161001
Symantec 20161001
Tencent 20161002
TheHacker 20161001
TrendMicro 20161001
TrendMicro-HouseCall 20161001
VBA32 20161001
VIPRE 20161001
ViRobot 20161001
Yandex 20161001
Zillya 20161001
Zoner 20161001
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
The studied SWF file makes use of the loadBytes ActionScript3 functionality, commonly used to load other files and arbitrary code at runtime.
SWF Properties
SWF version
32
Compression
zlib
Frame size
500.0x375.0 px
Frame count
1
Duration
0.042 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
0
Total SWF tags
9
ActionScript 3 Packages
flash.display
flash.events
flash.utils
ExifTool file metadata
MIMEType
application/x-shockwave-flash

ImageSize
500x375

FileType
SWF

Megapixels
0.188

FrameRate
24

FlashVersion
32

Warning
Invalid XMP

FileTypeExtension
swf

Compressed
True

ImageWidth
500

Duration
0.04 s

FlashAttributes
UseNetwork, ActionScript3, HasMetadata

FrameCount
1

ImageHeight
375

File identification
MD5 4ead531d5fb690cef55cbf1fd444b2e0
SHA1 2e1a22a184cc50b4dd0926424fc8e8818fd22734
SHA256 607f6c3795f6e0dedaa93a2df73e7e1192dcc7d73992cff337b895da3cba5523
ssdeep
1536:w7UV9r6T9ePLHmOP6+14Fi+KvZyDemKiuZRNoKa5/NeU/VWs7OVzj:wYzPTJeLoZyRuZRNw51eU/4s7OVX

File size 68.8 KB ( 70478 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 32

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash zlib loadbytes

VirusTotal metadata
First submission 2016-10-02 00:37:53 UTC ( 2 years, 2 months ago )
Last submission 2016-10-03 11:17:51 UTC ( 2 years, 2 months ago )
File names 4ead531d5fb690cef55cbf1fd444b2e0.swf
2016-09-21-1.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!