× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 95361ba95a5387b705ec3e3bf3a119a72ab550382f91233e116a7ecfbed043b3
File name: FILE-82508.doc
Detection ratio: 15 / 58
Analysis date: 2019-01-25 13:17:38 UTC ( 3 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware VB.EmoDldr.4.Gen 20190125
Avast Script:SNH-gen [Trj] 20190125
AVG Script:SNH-gen [Trj] 20190125
BitDefender VB.EmoDldr.4.Gen 20190125
F-Secure VB.EmoDldr.4.Gen 20190125
Fortinet VBA/Agent.AFD!tr.dldr 20190125
GData VB.EmoDldr.4.Gen 20190125
Ikarus Win32.Outbreak 20190125
Kaspersky HEUR:Trojan-Downloader.Script.Generic 20190125
MAX malware (ai score=87) 20190125
Microsoft Trojan:Script/Foretype.A!ml 20190125
NANO-Antivirus Trojan.Ole2.Vbs-heuristic.druvzi 20190125
Tencent Heur.Macro.Generic.Gen.h 20190125
ZoneAlarm by Check Point HEUR:Trojan-Downloader.Script.Generic 20190125
Zoner Probably MacroXML 20190124
Acronis 20190124
AegisLab 20190125
AhnLab-V3 20190125
Alibaba 20180921
ALYac 20190125
Antiy-AVL 20190125
Arcabit 20190125
Avast-Mobile 20190125
Avira (no cloud) 20190125
Babable 20180918
Baidu 20190125
Bkav 20190125
CAT-QuickHeal 20190125
ClamAV 20190125
CMC 20190125
Comodo 20190125
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190125
Cyren 20190125
DrWeb 20190125
eGambit 20190125
Emsisoft 20190125
Endgame 20181108
ESET-NOD32 20190125
F-Prot 20190125
Sophos ML 20181128
Jiangmin 20190125
K7AntiVirus 20190125
K7GW 20190125
Kingsoft 20190125
Malwarebytes 20190125
McAfee 20190125
McAfee-GW-Edition 20190125
eScan 20190125
Palo Alto Networks (Known Signatures) 20190125
Panda 20190125
Qihoo-360 20190125
Rising 20190125
SentinelOne (Static ML) 20190124
Sophos AV 20190125
SUPERAntiSpyware 20190123
Symantec 20190125
TACHYON 20190125
TheHacker 20190125
TotalDefense 20190125
Trapmine 20190123
TrendMicro 20190125
TrendMicro-HouseCall 20190125
Trustlook 20190125
VBA32 20190125
VIPRE 20190124
ViRobot 20190125
Webroot 20190125
Yandex 20190124
Zillya 20190124
File identification
MD5 39a3890832f03342707ab33e29b2924f
SHA1 773640a909576b9bdbdb9e9586d76e245bb8970d
SHA256 95361ba95a5387b705ec3e3bf3a119a72ab550382f91233e116a7ecfbed043b3
ssdeep
3072:WxjmOk9OJM49lVFZ/v88InOYRSF9M1K9DQ7skjL/xSu90OoiLuDKZXfwKeljR1c:aJvNfVFZs8I1kt9fSxUOmD+XfwLg

File size 251.1 KB ( 257108 bytes )
File type XML
Magic literal
XML document text

TrID Microsoft Office XML Flat File Format Word Document (ASCII) (65.1%)
Microsoft Office XML Flat File Format (ASCII) (31.0%)
Generic XML (ASCII) (2.3%)
HyperText Markup Language (1.4%)
Tags
xml

VirusTotal metadata
First submission 2019-01-25 13:17:38 UTC ( 3 months, 3 weeks ago )
Last submission 2019-01-25 23:17:12 UTC ( 3 months, 3 weeks ago )
File names FILE-82508.doc
FILE-760132.doc
emotet_e2_95361ba95a5387b705ec3e3bf3a119a72ab550382f91233e116a7ecfbed043b3_2019-01-25__132001.doc
DOC-5435.doc
US2751099089928377.doc
ExifTool file metadata
WordDocumentFontsFontPitchVal
variable

WordDocumentBodySectPRPictShapeType
#_x0000_t75

WordDocumentBodySectPRPictShapeStyle
width:468pt;height:349.5pt;visibility:visible;mso-wrap-style:square

WordDocumentDocumentPropertiesCharacters
1

WordDocumentBodySectPRPictShapeSpid
_x0000_i1025

WordDocumentStylesStyleNameVal
Normal

WordDocumentStylesStyleRPrLangBidi
AR-SA

WordDocumentBodySectPRPictShapetypeId
_x0000_t75

MIMEType
application/xml

WordDocumentStylesStyleTblPrTblCellMarTopType
dxa

WordDocumentStylesStyleRsidVal
005A24B1

WordDocumentBodySectPRPictShapetypePathConnecttype
rect

WordDocumentBodySectSectPrPgMarRight
1440

WordDocumentShapeDefaultsShapelayoutIdmapExt
edit

WordDocumentBodySectPRPictShapetypePathExtrusionok
f

WordDocumentShapeDefaultsShapedefaultsExt
edit

WordDocumentBodySectPRPictShapeId
Picture 1

WordDocumentStylesStyleTblPrTblCellMarRightType
dxa

WordDocumentFontsFontName
Times New Roman

WordDocumentBodySectSectPrPgMarBottom
1440

WordDocumentBodySectPRPictShapetypeFormulasFEqn
if lineDrawn pixelLineWidth 0

WordDocumentStylesStyleTblPrTblCellMarTopW
0

WordDocumentFontsDefaultFontsCs
Times New Roman

WordDocumentBodySectPRPictShapetypeLockAspectratio
t

WordDocumentStylesStylePPrSpacingLine
259

WordDocumentDocSuppDataBinDataName
tqzsius

WordDocumentDocPrZoomPercent
100

WordDocumentBodySectSectPrPgSzH
15840

WordDocumentFontsDefaultFontsAscii
Calibri

WordDocumentStylesStyleStyleId
Normal

WordDocumentBodySectSectPrPgSzW
12240

WordDocumentBodySectPRPictShapetypePreferrelative
t

WordDocumentStylesStylePPrSpacingAfter
160

WordDocumentOcxPresent
no

WordDocumentStylesStyleTblPrTblIndType
dxa

WordDocumentDocPrRsidsRsidRootVal
005E6EE1

WordDocumentDocumentPropertiesLastSaved
2019:01:25 13:00:00Z

WordDocumentBodySectPRPictShapetypeLockExt
edit

WordDocumentBodySectSectPrPgMarLeft
1440

WordDocumentBodySectSectPrColsSpace
720

FileType
XML

WordDocumentDocumentPropertiesPages
1

WordDocumentStylesLatentStylesLsdExceptionName
Normal

WordDocumentStylesStyleTblPrTblCellMarRightW
108

WordDocumentDocPrDefaultTabStopVal
720

WordDocumentDocumentPropertiesRevision
1

WordDocumentBodySectSectPrPgMarFooter
720

WordDocumentDocumentPropertiesTotalTime
0

WordDocumentBodySectSectPrPgMarTop
1440

WordDocumentStylesStyleUiNameVal
Table Normal

WordDocumentBodySectSectPrPgMarHeader
720

WordDocumentDocumentPropertiesParagraphs
1

WordDocumentBodySectPRRsidRPr
00F17BA9

WordDocumentBodySectPRsidR
005E6EE1

WordDocumentBodySectPRPictShapetypeStroked
f

WordDocumentBodySectPRPictShapetypeCoordsize
21600,21600

WordDocumentDocPrCharacterSpacingControlVal
DontCompress

WordDocumentEmbeddedObjPresent
no

WordDocumentStylesStyleRPrRFontsAscii
Tahoma

WordDocumentStylesVersionOfBuiltInStylenamesVal
7

WordDocumentIgnoreSubtreeVal
http://schemas.microsoft.com/office/word/2003/wordml/sp2

WordDocumentBodySectPRPictBinData
(Binary data 145376 bytes, use -b option to extract)

WordDocumentStylesStyleTblPrTblCellMarBottomType
dxa

WordDocumentFontsFontCharsetVal
00

WordDocumentDocumentPropertiesLines
1

WordDocumentStylesStyleTblPrTblCellMarBottomW
0

WordDocumentStylesLatentStylesDefLockedState
off

WordDocumentDocPrRsidsRsidVal
005A24B1

WordDocumentBodySectPRPictShapetypeFilled
f

WordDocumentBodySectPRPictShapeImagedataSrc
wordml://ivmzu

WordDocumentBodySectPRPictShapetypeStrokeJoinstyle
miter

WordDocumentDocumentPropertiesCharactersWithSpaces
1

WordDocumentStylesStyleLinkVal
BalloonTextChar

WordDocumentStylesLatentStylesLatentStyleCount
375

WordDocumentDocPrAlwaysShowPlaceholderTextVal
off

WordDocumentBodySectPRPictShapetypePath
m@4@5l@4@11@9@11@9@5xe

WordDocumentDocumentPropertiesCreated
2019:01:25 13:00:00Z

WordDocumentStylesStyleRPrRFontsCs
Tahoma

WordDocumentBodySectSectPrPgMarGutter
0

WordDocumentDocPrViewVal
print

WordDocumentBodySectPRsidRDefault
0088201E

WordDocumentDocSuppDataBinData
(Binary data 79524 bytes, use -b option to extract)

WordDocumentStylesStyleTblPrTblCellMarLeftW
108

WordDocumentMacrosPresent
yes

WordDocumentFontsFontFamilyVal
Roman

WordDocumentStylesStyleRPrLangVal
EN-US

WordDocumentDocumentPropertiesWords
0

WordDocumentStylesStyleTblPrTblIndW
0

WordDocumentFontsDefaultFontsFareast
Calibri

WordDocumentStylesStyleRPrSzVal
22

FileTypeExtension
xml

WordDocumentShapeDefaultsShapelayoutExt
edit

WordDocumentBodySectPRPictShapetypePathGradientshapeok
t

WordDocumentStylesStyleRPrLangFareast
EN-US

WordDocumentShapeDefaultsShapedefaultsSpidmax
1026

WordDocumentStylesStyleBasedOnVal
Normal

WordDocumentBodySectPRPictBinDataName
wordml://ivmzu

WordDocumentBodySectSectPrRsidR
005E6EE1

WordDocumentDocPrPixelsPerInchVal
120

WordDocumentDocPrIgnoreMixedContentVal
off

WordDocumentBodySectPRPictShapetypeSpt
75

WordDocumentStylesStyleRPrFontVal
Calibri

WordDocumentStylesStyleTblPrTblCellMarLeftType
dxa

WordDocumentDocPrSaveInvalidXMLVal
off

WordDocumentDocumentPropertiesVersion
16

WordDocumentStylesStyleDefault
on

WordDocumentShapeDefaultsShapelayoutIdmapData
1

WordDocumentStylesStyleType
paragraph

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!