× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ab43550acb8061c77b7e89e1b14fdf8514378c596fee88af2016214f593ac789
File name: Inv82877338.doc
Detection ratio: 8 / 58
Analysis date: 2019-02-13 13:34:49 UTC ( 1 month ago ) View latest
Antivirus Result Update
Ikarus Trojan-Downloader.DOC.Agent 20190213
K7AntiVirus Trojan ( 005464381 ) 20190213
K7GW Trojan ( 005464381 ) 20190213
McAfee W97M/Downloader.cqc 20190213
McAfee-GW-Edition W97M/Downloader.cqc 20190213
Symantec ISB.Downloader!gen92 20190213
TACHYON Suspicious/XML.Obfus.Gen.5 20190213
Zoner Probably MacroXML 20190213
Acronis 20190213
Ad-Aware 20190213
AegisLab 20190213
AhnLab-V3 20190213
Alibaba 20180921
ALYac 20190213
Antiy-AVL 20190213
Arcabit 20190212
Avast 20190213
Avast-Mobile 20190213
AVG 20190213
Avira (no cloud) 20190213
Babable 20180918
Baidu 20190202
BitDefender 20190213
Bkav 20190213
CAT-QuickHeal 20190213
ClamAV 20190213
CMC 20190213
Comodo 20190213
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190213
Cyren 20190213
DrWeb 20190213
eGambit 20190213
Emsisoft 20190213
Endgame 20181108
ESET-NOD32 20190213
F-Prot 20190213
F-Secure 20190213
Fortinet 20190213
GData 20190213
Sophos ML 20181128
Jiangmin 20190213
Kaspersky 20190213
Kingsoft 20190213
Malwarebytes 20190213
MAX 20190213
Microsoft 20190213
eScan 20190213
NANO-Antivirus 20190213
Palo Alto Networks (Known Signatures) 20190213
Panda 20190213
Qihoo-360 20190213
Rising 20190213
SentinelOne (Static ML) 20190203
Sophos AV 20190213
SUPERAntiSpyware 20190206
Symantec Mobile Insight 20190207
Tencent 20190213
TheHacker 20190212
TotalDefense 20190213
Trapmine 20190123
TrendMicro 20190213
TrendMicro-HouseCall 20190213
Trustlook 20190213
VBA32 20190213
VIPRE 20190212
ViRobot 20190213
Webroot 20190213
Yandex 20190213
Zillya 20190212
ZoneAlarm by Check Point 20190213
File identification
MD5 af4c61299cb1fa18a9441fdb0a8276af
SHA1 e9a0f2384684a322ac925abc6b30d093e4d40ed9
SHA256 ab43550acb8061c77b7e89e1b14fdf8514378c596fee88af2016214f593ac789
ssdeep
6144:+rE+rRFxVBSMzSVIhl9EKRDqME4yanMjdn/NQVg+D3Do8oRtxQwvVAJTVr:GJ1VBS8SVIf51E4K14o8Iu3

File size 486.7 KB ( 498424 bytes )
File type XML
Magic literal
XML document text

TrID Microsoft Office XML Flat File Format Word Document (ASCII) (65.1%)
Microsoft Office XML Flat File Format (ASCII) (31.0%)
Generic XML (ASCII) (2.3%)
HyperText Markup Language (1.4%)
Tags
xml

VirusTotal metadata
First submission 2019-02-13 13:34:49 UTC ( 1 month ago )
Last submission 2019-02-14 00:35:43 UTC ( 1 month ago )
File names FILE87923462.doc
ACC0458041117661.doc
Inv82877338.doc
emotet_e2_ab43550acb8061c77b7e89e1b14fdf8514378c596fee88af2016214f593ac789_2019-02-13__133504.doc
ExifTool file metadata
WordDocumentFontsFontPitchVal
variable

WordDocumentBodySectPRPictShapeType
#_x0000_t75

WordDocumentBodySectPRPictShapeStyle
width:468pt;height:349.5pt;visibility:visible;mso-wrap-style:square

WordDocumentDocumentPropertiesCharacters
1

WordDocumentBodySectSectPrPgMarBottom
1440

WordDocumentStylesStyleNameVal
Normal

WordDocumentStylesStyleRPrLangBidi
AR-SA

WordDocumentBodySectPRPictShapetypeId
_x0000_t75

MIMEType
application/xml

WordDocumentStylesStyleTblPrTblCellMarTopType
dxa

WordDocumentBodySectPRPictShapeSpid
_x0000_i1025

WordDocumentStylesStyleRsidVal
005A24B1

WordDocumentBodySectPRPictShapetypePathConnecttype
rect

WordDocumentBodySectSectPrPgMarRight
1440

WordDocumentShapeDefaultsShapelayoutIdmapExt
edit

WordDocumentBodySectPRPictShapetypePathExtrusionok
f

WordDocumentShapeDefaultsShapedefaultsExt
edit

WordDocumentBodySectPRPictShapeId
Picture 1

WordDocumentStylesStyleTblPrTblCellMarRightType
dxa

WordDocumentFontsFontName
Times New Roman

WordDocumentBodySectPRPictShapetypeFormulasFEqn
if lineDrawn pixelLineWidth 0

WordDocumentStylesStyleTblPrTblCellMarTopW
0

WordDocumentFontsDefaultFontsCs
Times New Roman

WordDocumentBodySectPRPictShapetypeLockAspectratio
t

WordDocumentStylesStylePPrSpacingLine
259

WordDocumentDocSuppDataBinDataName
P746708

WordDocumentDocPrZoomPercent
100

WordDocumentBodySectSectPrPgSzH
15840

WordDocumentFontsDefaultFontsAscii
Calibri

WordDocumentStylesStyleStyleId
Normal

WordDocumentBodySectSectPrPgSzW
12240

WordDocumentBodySectPRPictShapetypePreferrelative
t

WordDocumentStylesStylePPrSpacingAfter
160

WordDocumentOcxPresent
no

WordDocumentStylesStyleTblPrTblIndType
dxa

WordDocumentDocPrRsidsRsidRootVal
005E6EE1

WordDocumentDocumentPropertiesLastSaved
2019:02:13 13:03:00Z

WordDocumentBodySectPRPictShapetypeLockExt
edit

WordDocumentBodySectSectPrPgMarLeft
1440

WordDocumentBodySectSectPrColsSpace
720

FileType
XML

WordDocumentDocumentPropertiesPages
1

WordDocumentStylesLatentStylesLsdExceptionName
Normal

WordDocumentStylesStyleTblPrTblCellMarRightW
108

WordDocumentDocPrDefaultTabStopVal
720

WordDocumentDocumentPropertiesRevision
1

WordDocumentBodySectSectPrPgMarFooter
720

WordDocumentDocumentPropertiesTotalTime
0

WordDocumentBodySectSectPrPgMarTop
1440

WordDocumentStylesStyleUiNameVal
Table Normal

WordDocumentBodySectSectPrPgMarHeader
720

WordDocumentDocumentPropertiesParagraphs
1

WordDocumentBodySectPRRsidRPr
0053312B

WordDocumentBodySectPRsidR
005E6EE1

WordDocumentBodySectPRPictShapetypeStroked
f

WordDocumentBodySectPRPictShapetypeCoordsize
21600,21600

WordDocumentDocPrCharacterSpacingControlVal
DontCompress

WordDocumentEmbeddedObjPresent
no

WordDocumentStylesStyleRPrRFontsAscii
Tahoma

WordDocumentStylesVersionOfBuiltInStylenamesVal
7

WordDocumentIgnoreSubtreeVal
http://schemas.microsoft.com/office/word/2003/wordml/sp2

WordDocumentBodySectPRPictBinData
(Binary data 366950 bytes, use -b option to extract)

WordDocumentStylesStyleTblPrTblCellMarBottomType
dxa

WordDocumentFontsFontCharsetVal
00

WordDocumentDocumentPropertiesLines
1

WordDocumentStylesStyleTblPrTblCellMarBottomW
0

WordDocumentStylesLatentStylesDefLockedState
off

WordDocumentDocPrRsidsRsidVal
005A24B1

WordDocumentBodySectPRPictShapetypeFilled
f

WordDocumentBodySectPRPictShapeImagedataSrc
wordml://h4_1_9.A02728.c_1574

WordDocumentBodySectPRPictShapetypeStrokeJoinstyle
miter

WordDocumentDocumentPropertiesCharactersWithSpaces
1

WordDocumentStylesStyleLinkVal
BalloonTextChar

WordDocumentStylesLatentStylesLatentStyleCount
375

WordDocumentDocPrAlwaysShowPlaceholderTextVal
off

WordDocumentBodySectPRPictShapetypePath
m@4@5l@4@11@9@11@9@5xe

WordDocumentDocumentPropertiesCreated
2019:02:13 13:03:00Z

WordDocumentStylesStyleRPrRFontsCs
Tahoma

WordDocumentBodySectSectPrPgMarGutter
0

WordDocumentDocPrViewVal
print

WordDocumentBodySectPRsidRDefault
00C93A2A

WordDocumentDocSuppDataBinData
(Binary data 96454 bytes, use -b option to extract)

WordDocumentStylesStyleTblPrTblCellMarLeftW
108

WordDocumentMacrosPresent
yes

WordDocumentFontsFontFamilyVal
Roman

WordDocumentStylesStyleRPrLangVal
EN-US

WordDocumentDocumentPropertiesWords
0

WordDocumentStylesStyleTblPrTblIndW
0

WordDocumentFontsDefaultFontsFareast
Calibri

WordDocumentStylesStyleRPrSzVal
22

FileTypeExtension
xml

WordDocumentShapeDefaultsShapelayoutExt
edit

WordDocumentBodySectPRPictShapetypePathGradientshapeok
t

WordDocumentStylesStyleRPrLangFareast
EN-US

WordDocumentShapeDefaultsShapedefaultsSpidmax
1026

WordDocumentStylesStyleBasedOnVal
Normal

WordDocumentBodySectPRPictBinDataName
wordml://h4_1_9.A02728.c_1574

WordDocumentBodySectSectPrRsidR
005E6EE1

WordDocumentDocPrPixelsPerInchVal
120

WordDocumentDocPrIgnoreMixedContentVal
off

WordDocumentBodySectPRPictShapetypeSpt
75

WordDocumentStylesStyleRPrFontVal
Calibri

WordDocumentStylesStyleTblPrTblCellMarLeftType
dxa

WordDocumentDocPrSaveInvalidXMLVal
off

WordDocumentDocumentPropertiesVersion
16

WordDocumentStylesStyleDefault
on

WordDocumentShapeDefaultsShapelayoutIdmapData
1

WordDocumentStylesStyleType
paragraph

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!