× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 98da2f3484e2a7c7ddc826112ae0db90c8a37c5c6757f517640670273a7b1079
Detection ratio: 5 / 59
Analysis date: 2018-04-17 16:16:21 UTC ( 10 months, 1 week ago ) View latest
Antivirus Result Update
AegisLab Exploit.Msoffice.Generic!c 20180417
CAT-QuickHeal Exp.RTF.Heur.Gen.A 20180417
DrWeb BAT.DownLoader.254 20180417
Kaspersky HEUR:Exploit.MSOffice.Generic 20180417
ZoneAlarm by Check Point HEUR:Exploit.MSOffice.Generic 20180417
Ad-Aware 20180417
AhnLab-V3 20180417
Alibaba 20180417
ALYac 20180417
Antiy-AVL 20180417
Arcabit 20180417
Avast 20180417
Avast-Mobile 20180417
AVG 20180417
Avira (no cloud) 20180417
AVware 20180417
Baidu 20180417
BitDefender 20180417
Bkav 20180410
ClamAV 20180417
CMC 20180417
Comodo 20180417
CrowdStrike Falcon (ML) 20170201
Cybereason None
Cylance 20180417
Cyren 20180417
eGambit 20180417
Emsisoft 20180417
Endgame 20180403
ESET-NOD32 20180417
F-Prot 20180417
F-Secure 20180417
Fortinet 20180417
GData 20180417
Ikarus 20180417
Sophos ML 20180121
Jiangmin 20180417
K7AntiVirus 20180417
K7GW 20180417
Kingsoft 20180417
Malwarebytes 20180417
MAX 20180417
McAfee 20180417
McAfee-GW-Edition 20180417
Microsoft 20180417
eScan 20180417
NANO-Antivirus 20180417
nProtect 20180417
Palo Alto Networks (Known Signatures) 20180417
Panda 20180417
Qihoo-360 20180417
Rising 20180417
SentinelOne (Static ML) 20180225
Sophos AV 20180417
SUPERAntiSpyware 20180417
Symantec 20180417
Symantec Mobile Insight 20180412
Tencent 20180417
TheHacker 20180415
TrendMicro 20180417
TrendMicro-HouseCall 20180417
Trustlook 20180417
VBA32 20180414
VIPRE 20180417
ViRobot 20180417
Webroot 20180417
WhiteArmor 20180408
Yandex 20180417
Zillya 20180417
Zoner 20180416
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Document properties
Non ascii characters
20278
Embedded drawings
0
Rtf header
rtf1
Read only protection
False
User protection
False
Default character set
ANSI (default)
Custom xml data properties
0
Dos stubs
0
Objects
Hypertext Markup Language (HTML) control
Hypertext Markup Language (HTML) control
Hypertext Markup Language (HTML) control
Embedded pictures
2
Longest hex string
9613
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

Warning
Unspecified RTF encoding. Will assume Latin

FileTypeExtension
rtf

File identification
MD5 23aec4f5829e0115713676618eec0e94
SHA1 9f5f82809eba86a1062ff5756de6635336c05124
SHA256 98da2f3484e2a7c7ddc826112ae0db90c8a37c5c6757f517640670273a7b1079
ssdeep
768:kmWP7xmWrnzA8jbdOcQ4G9z48olLN2AuN8X41oy2u1LrWYtSpcrZxWxiWB0UmM8M:M3rn04bd/IKxL6mS2oLSYYS2AWeHvLQ

File size 98.8 KB ( 101153 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, unknown character set

TrID Poser pose (71.4%)
Rich Text Format (28.5%)
Tags
exploit rtf html-control cve-2017-11882 attachment

VirusTotal metadata
First submission 2018-04-17 16:10:14 UTC ( 10 months, 1 week ago )
Last submission 2018-05-09 05:30:31 UTC ( 9 months, 2 weeks ago )
File names 98da2f3484e2a7c7ddc826112ae0db90c8a37c5c6757f517640670273a7b1079.dat
CRA_canada_doc.doc
cea8d31499132631a04dea52de82a4b33439c107
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

Warning
Unspecified RTF encoding. Will assume Latin

FileTypeExtension
rtf

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!