× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 88cdbf79aba30f553a949fc281baaa5d2e5f887d6c3f05b617c4712a709d47a9
File name: SilverApp1.xap
Detection ratio: 39 / 58
Analysis date: 2017-03-30 16:06:58 UTC ( 1 year, 10 months ago ) View latest
Antivirus Result Update
AegisLab Exploit.W32.Cve!c 20170330
AhnLab-V3 Trojan/Win32.Exploit.C559590 20170330
ALYac Exploit.MSIL.CVE-2013-0074.B 20170330
Antiy-AVL Trojan/Win32.SGeneric 20170330
Arcabit Exploit.MSIL.CVE-2013-0074.B 20170330
Avast MSIL:CVE-2013-0074-A [Expl] 20170330
AVG Exploit_c.AAPN 20170330
Avira (no cloud) EXP/Silverlight.Gen2 20170330
AVware Trojan.Win32.Generic!BT 20170330
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9994 20170330
BitDefender Exploit.MSIL.CVE-2013-0074.B 20170330
CAT-QuickHeal Exploit.CVE-2013-0074 20170330
ClamAV Win.Exploit.CVE_2013_0074-1 20170330
Comodo UnclassifiedMalware 20170330
Cyren W32/Trojan.GOTC-6397 20170330
Emsisoft Exploit.MSIL.CVE-2013-0074.B (B) 20170330
ESET-NOD32 a variant of Win32/Exploit.CVE-2013-0074.O 20170330
F-Secure Exploit.MSIL.CVE-2013-0074.B 20170330
Fortinet W32/CVE_2013_0074.ATW!tr 20170330
GData Exploit.MSIL.CVE-2013-0074.B 20170330
Ikarus Trojan.Win32.Exploit 20170330
K7AntiVirus Trojan ( 700000121 ) 20170330
K7GW Trojan ( 700000121 ) 20170330
Kaspersky Exploit.Win32.CVE-2013-0074.msf 20170330
McAfee RDN/Generic Exploit 20170330
McAfee-GW-Edition RDN/Generic Exploit 20170330
Microsoft Exploit:MSIL/CVE-2013-0074.A 20170330
eScan Exploit.MSIL.CVE-2013-0074.B 20170330
NANO-Antivirus Exploit.Win32.Silverlight.desvdx 20170330
Sophos AV Troj/MSIL-ATW 20170330
Symantec SecurityRisk.gen1 20170330
Tencent Win32.Exploit.Cve-2013-0074.Ebgf 20170330
TheHacker Trojan/Exploit.CVE-2013-0074.o 20170330
TrendMicro TROJ_GE.02F19225 20170330
TrendMicro-HouseCall TROJ_GEN.R026C0CJP16 20170330
VBA32 Exploit.CVE20130074 20170330
Yandex Exploit.CVE-2013-0074! 20170327
Zillya Exploit.CVE.Win32.337 20170329
ZoneAlarm by Check Point Exploit.Win32.CVE-2013-0074.msf 20170330
Ad-Aware 20170330
Alibaba 20170330
Bkav 20170330
CMC 20170330
CrowdStrike Falcon (ML) 20170130
DrWeb 20170330
Endgame 20170329
F-Prot 20170330
Sophos ML 20170203
Jiangmin 20170330
Kingsoft 20170330
Malwarebytes 20170330
nProtect 20170330
Palo Alto Networks (Known Signatures) 20170330
Panda 20170330
Qihoo-360 20170330
Rising 20170330
SentinelOne (Static ML) 20170330
SUPERAntiSpyware 20170330
Symantec Mobile Insight 20170329
Trustlook 20170330
VIPRE 20170330
ViRobot 20170330
Webroot 20170330
WhiteArmor 20170327
Zoner 20170330
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
17757
Highest datetime
2013-11-22 23:58:42
Lowest datetime
2013-11-22 23:58:42
Contained files by extension
dll
1
Contained files by type
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x9c4746c0

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
349

ZipCompressedSize
200

FileTypeExtension
zip

ZipFileName
AppManifest.xaml

ZipBitFlag
0x0800

ZipModifyDate
2013:11:22 23:58:42

Execution parents
Compressed bundles
File identification
MD5 f1759371fe6c7f46ca3c82edd456eca2
SHA1 7b8470e18ab4226a8aad2975eddb32cbe0cca160
SHA256 88cdbf79aba30f553a949fc281baaa5d2e5f887d6c3f05b617c4712a709d47a9
ssdeep
192:roWCnF5qXX7mtDZ6E069tmYYCrPiII+5iZJJnT8OlZb+zf0DfRphHIYmdYV66pB7:0nhZi4LVTiBHZJJnT9ZabARXIYmcNP

File size 8.2 KB ( 8381 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID Silverlight Application Package (73.6%)
ZIP compressed archive (21.0%)
PrintFox/Pagefox bitmap (var. P) (5.2%)
Tags
contains-pe cve-2013-0074 exploit zip

VirusTotal metadata
First submission 2014-01-31 10:38:57 UTC ( 5 years ago )
Last submission 2018-05-15 00:09:00 UTC ( 9 months, 1 week ago )
File names 2017-03-30-Terror-EK-SilverApp1.zip
update.xap
drop00000.zip
dkalsjasdasihu.xap
output.43195961.txt
pruncdsilverapp1.xap
43195961
.BC.T_NszzDr
gczbJvBm.xap
vt-upload-6VIA_
iNyuL.xap
silverapp1.xap
8XWTcf.xap
Nr3aa05aWzAG.xap
558307b01c8893c43a49e6ca54cbf3f4e1ed78a1
8XWTcf.xap
file.txt
zgobO.xap
fil99E65A079DE0294B046054DB4FC97CA3
SilverApp1.xap
SilverApp1.xap
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V0809.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!