× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a5c58121720ec8315aea0a20c1039b270e403da5e925c6843a04f55210b5f81e
File name: zbetcheckin_tracker_h.doc
Detection ratio: 39 / 57
Analysis date: 2018-11-10 01:56:17 UTC ( 6 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.40600608 20181109
AhnLab-V3 OLE/Cve-2017-11882.Gen 20181109
ALYac Exploit.CVE-2017-11882.Gen 20181110
Antiy-AVL Trojan[Exploit]/OLE.CVE-2017-11882 20181110
Arcabit Trojan.Generic.D26B8420 20181109
Avast Other:Malware-gen [Trj] 20181110
AVG Other:Malware-gen [Trj] 20181110
Avira (no cloud) EXP/CVE-2017-11882.Gen 20181110
Baidu Win32.Exploit.CVE-2017-11882.t 20181109
BitDefender Trojan.GenericKD.40600608 20181109
CAT-QuickHeal Exp.RTF.CVE-2017-11882.L 20181108
ClamAV Rtf.Exploit.CVE_2017_11882-6584355-0 20181109
Cyren CVE-2017-11882.A.gen!Camelot 20181110
DrWeb Exploit.Siggen.14067 20181110
Emsisoft Trojan.Agent (A) 20181109
ESET-NOD32 a variant of Win32/Injector.EAZV 20181110
F-Prot W32/VBKrypt.EU.gen!Eldorado 20181109
Fortinet Malicious_Behavior.SB 20181110
GData Generic.Exploit.CVE-2017-11882.A 20181109
Ikarus Trojan.VB.Crypt 20181109
Kaspersky Trojan-Spy.Win32.Noon.uld 20181109
MAX malware (ai score=94) 20181110
McAfee Exploit-CVE2017-11882.p 20181109
McAfee-GW-Edition Exploit-CVE2017-11882.p 20181109
Microsoft Exploit:O97M/CVE-2017-0199.F 20181110
eScan Trojan.GenericKD.40600608 20181110
NANO-Antivirus Exploit.OleNative.CVE-2017-11882.evenbv 20181110
Panda Trj/GdSda.A 20181109
Qihoo-360 virus.exp.21711882.gen 20181110
Rising Exploit.CVE-2017-11882/SLT!1.AEE3 (CLASSIC:bWQ1Osvl7DetxKwjh4gqezsCHVc) 20181110
Sophos AV Exp/201711882-A 20181109
Symantec Trojan.Mdropper 20181109
TACHYON Suspicious/RTF.Agent.Gen 20181110
Tencent Unk.Win32.Script.404086 20181110
TrendMicro TROJ_GEN.R053C0OJE18 20181110
TrendMicro-HouseCall TrojanSpy.Win32.FAREIT.SMA.hp 20181110
VBA32 BScope.TrojanDownloader.Godzilla 20181109
VIPRE LooksLike.RTF.Malware.a (v) 20181109
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20181110
AegisLab 20181110
Alibaba 20180921
Avast-Mobile 20181109
Babable 20180918
Bkav 20181109
CMC 20181109
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181110
Endgame 20181108
F-Secure 20181109
Sophos ML 20181108
Jiangmin 20181109
K7AntiVirus 20181109
K7GW 20181109
Kingsoft 20181110
Malwarebytes 20181109
Palo Alto Networks (Known Signatures) 20181110
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181107
Symantec Mobile Insight 20181108
TheHacker 20181108
TotalDefense 20181109
Trustlook 20181110
ViRobot 20181109
Webroot 20181110
Yandex 20181109
Zillya 20181109
Zoner 20181110
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Document properties
Non ascii characters
0
Embedded drawings
0
Rtf header
rtf1
Default ansi codepage
Western European
Generator
Riched20 6.3.9600
Read only protection
False
User protection
False
Default character set
ANSI
Custom xml data properties
0
Dos stubs
0
Objects
OLE embedded (Package)
OLE embedded (Package)
OLE embedded (Package)
Embedded pictures
2
Longest hex string
1151944
Default languages
English - United States
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

FileTypeExtension
rtf

File identification
MD5 85a8bfef37a9492def1376c096d89f7a
SHA1 8540c2927305af585ce90b7ce9d6d4f0d8d04773
SHA256 a5c58121720ec8315aea0a20c1039b270e403da5e925c6843a04f55210b5f81e
ssdeep
24576:hzMqtQn6WUJv1JmgKV/yb+NQuDBb7q463l:D

File size 1.1 MB ( 1168873 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, ANSI

TrID Rich Text Format (100.0%)
Tags
ole-embedded exploit rtf cve-2017-11882 cve-2017-0199

VirusTotal metadata
First submission 2018-11-10 01:56:17 UTC ( 6 months, 1 week ago )
Last submission 2018-11-16 03:59:34 UTC ( 6 months, 1 week ago )
File names 85a8bfef37a9492def1376c096d89f7a
zbetcheckin_tracker_h.doc
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

FileTypeExtension
rtf

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!