× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7c3b275cfb65f653f12aada3a5aff22793edac5e5f33e48852a374c22323bef8
File name: NuclearPack_2015-10-30.swf
Detection ratio: 1 / 55
Analysis date: 2015-10-30 16:10:31 UTC ( 3 years, 2 months ago ) View latest
Antivirus Result Update
McAfee-GW-Edition BehavesLike.Flash.Exploit.cg 20151030
Ad-Aware 20151030
AegisLab 20151030
Yandex 20151029
AhnLab-V3 20151030
Alibaba 20151030
ALYac 20151030
Antiy-AVL 20151030
Arcabit 20151030
Avast 20151030
AVG 20151030
AVware 20151030
Baidu-International 20151030
BitDefender 20151030
Bkav 20151029
ByteHero 20151030
CAT-QuickHeal 20151030
ClamAV 20151030
CMC 20151029
Comodo 20151030
Cyren 20151030
DrWeb 20151030
Emsisoft 20151030
ESET-NOD32 20151030
F-Prot 20151030
F-Secure 20151030
Fortinet 20151030
GData 20151030
Ikarus 20151030
Jiangmin 20151030
K7AntiVirus 20151030
K7GW 20151030
Kaspersky 20151030
Malwarebytes 20151030
McAfee 20151030
Microsoft 20151030
eScan 20151030
NANO-Antivirus 20151030
nProtect 20151030
Panda 20151030
Qihoo-360 20151030
Rising 20151029
Sophos AV 20151030
SUPERAntiSpyware 20151030
Symantec 20151029
Tencent 20151030
TheHacker 20151028
TotalDefense 20151030
TrendMicro 20151030
TrendMicro-HouseCall 20151030
VBA32 20151030
VIPRE 20151030
ViRobot 20151030
Zillya 20151029
Zoner 20151030
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
The studied SWF file performs environment identification.
SWF Properties
SWF version
14
Compression
zlib
Frame size
500.0x375.0 px
Frame count
1
Duration
0.042 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
10
ActionScript 3 Packages
flash.display
flash.events
flash.external
flash.system
flash.utils
SWF metadata
ExifTool file metadata
MIMEType
application/x-shockwave-flash

Publisher
unknown

Megapixels
0.188

Description
http://www.adobe.com/products/flex

Language
EN

Format
application/x-shockwave-flash

FlashAttributes
UseNetwork, ActionScript3, HasMetadata

Title
Adobe Flex 4 Application

FrameRate
24

FlashVersion
14

Duration
0.04 s

Creator
unknown

FileTypeExtension
swf

Compressed
True

ImageWidth
500

Date
Oct 30, 2015

ImageHeight
375

Warning
[minor] Fixed incorrect URI for xmlns:dc

FileType
SWF

FrameCount
1

ImageSize
500x375

PCAP parents
File identification
MD5 f5dd2623ae871d58483bf14ec5d635e4
SHA1 667aa01503ef3c0d49311c2853a1448fa8fcd42c
SHA256 7c3b275cfb65f653f12aada3a5aff22793edac5e5f33e48852a374c22323bef8
ssdeep
1536:xWVR7uvzYFK7S7pLlfLoN0e7GBleVzuQahziR8RVQj3WVfs+gqUxGDBVQIY2Rk7H:gruvU8OLlfLm0+x2z8i7QXWk/5dcSN9j

File size 118.0 KB ( 120795 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 14

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash exploit zlib cve-2015-7645 capabilities

VirusTotal metadata
First submission 2015-10-30 16:10:31 UTC ( 3 years, 2 months ago )
Last submission 2015-11-28 10:57:21 UTC ( 3 years, 1 month ago )
File names NuclearPack_2015-10-30.swf
CVE20157645.swf
7c3b275cfb65f653f12aada3a5aff22793edac5e5f33e48852a374c22323bef8
f5dd2623ae871d58483bf14ec5d635e4.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!