× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8521563230d98ea2c560b4b28a404f55026661b5489c6e39f268dd3a339fe6b2
File name: mon.doc_
Detection ratio: 30 / 56
Analysis date: 2019-02-12 08:04:42 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Exploit.CVE-2017-11882.Gen 20190212
AhnLab-V3 OLE/Cve-2017-11882.Gen 20190212
ALYac Exploit.CVE-2017-11882.Gen 20190212
Arcabit Exploit.CVE-2017-11882.Gen 20190211
Avira (no cloud) EXP/CVE-2017-11882.Gen 20190212
BitDefender Exploit.CVE-2017-11882.Gen 20190212
CAT-QuickHeal RTF.Heur.31355 20190210
ClamAV Rtf.Exploit.CVE_2017_11882-6584355-0 20190211
Cyren CVE-2017-11882.E.gen!Camelot 20190212
DrWeb Exploit.ShellCode.69 20190212
Emsisoft Exploit.CVE-2017-11882.Gen (B) 20190212
ESET-NOD32 probably a variant of Win32/Exploit.CVE-2017-11882.A 20190212
F-Secure Exploit:W97M/CVE-2017-0199.B 20190212
Fortinet MSOffice/CVE_2017_11882.BB!exploit 20190212
GData Exploit.CVE-2017-11882.Gen (2x) 20190212
Ikarus Exploit.CVE-2017-11882 20190211
Kaspersky HEUR:Exploit.MSOffice.Generic 20190212
MAX malware (ai score=88) 20190212
McAfee Exploit-FYX!BF40ABE67175 20190212
McAfee-GW-Edition Exploit-FYX!BF40ABE67175 20190212
Microsoft Exploit:O97M/CVE-2017-11882.L 20190212
eScan Exploit.CVE-2017-11882.Gen 20190212
NANO-Antivirus Exploit.Rtf.Heuristic-rtf.dinbqn 20190212
Qihoo-360 virus.exp.21711882.d 20190212
Rising Exploit.CVE-2017-11882!1.B40D (CLASSIC) 20190212
Sophos AV Troj/RtfExp-EQ 20190212
Symantec Exp.CVE-2017-11882!g3 20190212
TACHYON Trojan-Exploit/RTF.CVE-2017-11882 20190212
TrendMicro-HouseCall Trojan.W97M.CVE201711882.SMD 20190212
ZoneAlarm by Check Point HEUR:Exploit.RTF.Agent.gen 20190212
Acronis 20190208
AegisLab 20190212
Alibaba 20180921
Antiy-AVL 20190212
Avast 20190212
Avast-Mobile 20190211
AVG 20190212
Babable 20180918
Baidu 20190202
Bkav 20190201
CMC 20190211
Comodo 20190212
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20190212
eGambit 20190212
Endgame 20181108
F-Prot 20190212
Sophos ML 20181128
Jiangmin 20190212
K7AntiVirus 20190212
K7GW 20190212
Kingsoft 20190212
Malwarebytes 20190212
Palo Alto Networks (Known Signatures) 20190212
Panda 20190211
SentinelOne (Static ML) 20190203
SUPERAntiSpyware 20190206
Symantec Mobile Insight 20190207
Tencent 20190212
TheHacker 20190203
Trapmine 20190123
Trustlook 20190212
VBA32 20190211
VIPRE 20190212
ViRobot 20190212
Webroot 20190212
Yandex 20190210
Zillya 20190211
Zoner 20190212
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Document properties
Non ascii characters
0
Embedded drawings
0
Rtf header
rtf
Read only protection
False
User protection
False
Default character set
ANSI (default)
Custom xml data properties
0
Dos stubs
0
Objects
OLE embedded
Embedded pictures
0
Longest hex string
8270
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

Warning
Unspecified RTF encoding. Will assume Latin

FileTypeExtension
rtf

File identification
MD5 e3da4d74d7b9d1c75708a680d2475f11
SHA1 f87b2fdaa92cbbd1ee634c852f5638ec95a98446
SHA256 8521563230d98ea2c560b4b28a404f55026661b5489c6e39f268dd3a339fe6b2
ssdeep
96:EBdvyj8U2DVV3gzS2s3G0BAoV7Hv5aI8W89u++E/XAEyVNN:kVyj/ifJ3BVNf8EJE/w7

File size 8.3 KB ( 8529 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, unknown version

TrID Rich Text Format (100.0%)
Tags
ole-embedded exploit rtf cve-2017-11882

VirusTotal metadata
First submission 2019-02-12 08:04:42 UTC ( 1 month, 1 week ago )
Last submission 2019-02-12 08:04:42 UTC ( 1 month, 1 week ago )
File names mon.doc
mon.doc_
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

Warning
Unspecified RTF encoding. Will assume Latin

FileTypeExtension
rtf

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!