× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c166aff46cadce2db642047cdca65234c32c6634d9ed822eeeb2a911178d6cc3
File name: doc_98E350A8A6C443C72FA6DB1FBC0B79AD
Detection ratio: 35 / 58
Analysis date: 2018-11-17 04:09:44 UTC ( 2 months ago )
Antivirus Result Update
Ad-Aware Trojan.GenericKD.6202551 20181117
AhnLab-V3 SWF/Cve-2012-5054 20181116
ALYac Exploit.DOC.CVE-2013-0633 20181117
Arcabit Trojan.Generic.D5EA4B7 20181117
Avast SWF:CVE-2012-5054-A [Expl] 20181117
AVG SWF:CVE-2012-5054-A [Expl] 20181117
Avira (no cloud) EXP/SWF.CZ.2 20181116
BitDefender Trojan.GenericKD.6202551 20181117
CAT-QuickHeal Exp.SWF.CVE-2013-0633.A 20181116
ClamAV Doc.Dropper.Agent-6371775-0 20181116
Comodo UnclassifiedMalware 20181117
Cyren CVE135331 20181117
DrWeb Exploit.SWF.232 20181117
Emsisoft Trojan.GenericKD.6202551 (B) 20181117
ESET-NOD32 SWF/Exploit.CVE-2012-5054.B 20181117
F-Prot CVE135331 20181117
F-Secure Exploit:SWF/CVE-2012-5054.A 20181116
Fortinet SWF/CVE_2012_4167.A!exploit 20181117
GData Trojan.GenericKD.6202551 20181117
Ikarus Exploit.SWF 20181116
Kaspersky HEUR:Exploit.SWF.Agent.gen 20181117
MAX malware (ai score=100) 20181117
McAfee Generic Exploit.f 20181117
McAfee-GW-Edition Generic Exploit.f 20181117
Microsoft Trojan:Win32/Tiggre!rfn 20181117
eScan Trojan.GenericKD.6202551 20181117
NANO-Antivirus Exploit.Swf.CVE-2012-5054.cgyubt 20181117
Qihoo-360 Win32/Trojan.Exploit.c81 20181117
Sophos AV Troj/SWFExp-CI 20181117
Symantec Trojan.Mdropper 20181116
Tencent Win32.Exploit.Agent.Hwwh 20181117
TrendMicro TROJ_MDROP.USR 20181117
TrendMicro-HouseCall TROJ_MDROP.USR 20181117
ViRobot DOC.Z.CVE-2012-5054.32768 20181116
ZoneAlarm by Check Point HEUR:Exploit.SWF.Agent.gen 20181117
AegisLab 20181117
Alibaba 20180921
Antiy-AVL 20181117
Avast-Mobile 20181116
Babable 20180918
Baidu 20181116
Bkav 20181116
CMC 20181116
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181117
eGambit 20181117
Endgame 20181108
Sophos ML 20181108
Jiangmin 20181117
K7AntiVirus 20181116
K7GW 20181116
Kingsoft 20181117
Malwarebytes 20181117
Palo Alto Networks (Known Signatures) 20181117
Panda 20181116
Rising 20181117
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181114
Symantec Mobile Insight 20181108
TACHYON 20181117
TheHacker 20181113
TotalDefense 20181116
Trustlook 20181117
VBA32 20181116
Webroot 20181117
Yandex 20181116
Zillya 20181116
Zoner 20181117
The file being studied follows the Compound Document File format! More specifically, it is a MS Word Document file.
Summary
last_author
1785429
creation_datetime
2012-05-15 11:39:00
author
.......
title
page_count
1
last_saved
2012-05-15 11:39:00
word_count
7
revision_number
2
application_name
Microsoft Office Word
character_count
41
code_page
Latin I
template
Normal.dot
Document summary
line_count
1
company
Leibniz
characters_with_spaces
47
version
730895
paragraph_count
1
code_page
Latin I
OLE Streams
name
Root Entry
clsid
00020906-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Word
sid
0
size
3840
type_literal
stream
size
113
name
\x01CompObj
sid
14
type_literal
stream
size
284
name
\x05DocumentSummaryInformation
sid
13
type_literal
stream
size
412
name
\x05SummaryInformation
sid
12
type_literal
stream
size
2336
name
1Table
sid
11
type_literal
stream
size
4096
name
Data
sid
1
type_literal
stream
size
145
name
ObjectPool/_1398590705/\x01CompObj
sid
6
type_literal
stream
size
20
name
ObjectPool/_1398590705/\x01Ole
sid
5
type_literal
stream
size
184
name
ObjectPool/_1398590705/\x02OlePres000
sid
10
type_literal
stream
size
34
name
ObjectPool/_1398590705/\x03OCXNAME
sid
8
type_literal
stream
size
6
name
ObjectPool/_1398590705/\x03ObjInfo
sid
7
type_literal
stream
size
13553
name
ObjectPool/_1398590705/contents
sid
9
type_literal
stream
size
4146
name
WordDocument
sid
2
ExifTool file metadata
SharedDoc
No

Author
.......

CodePage
Windows Latin 1 (Western European)

System
Windows

LinksUpToDate
No

LastModifiedBy
1785429

HeadingPairs
Title, 1

Identification
Word 8.0

Template
Normal.dot

CharCountWithSpaces
47

Word97
No

LanguageCode
English (US)

CompObjUserType
Microsoft Office Word Document

ModifyDate
2012:05:15 10:39:00

ScaleCrop
No

Company
Leibniz

Characters
41

HyperlinksChanged
No

RevisionNumber
2

MIMEType
application/msword

Words
7

CreateDate
2012:05:15 10:39:00

Lines
1

AppVersion
11.9999

Security
None

Software
Microsoft Office Word

FileType
DOC

TotalEditTime
0

Pages
1

CompObjUserTypeLen
31

FileTypeExtension
doc

Paragraphs
1

LastPrinted
0000:00:00 00:00:00

DocFlags
Has picture, 1Table, ExtChar

File identification
MD5 98e350a8a6c443c72fa6db1fbc0b79ad
SHA1 07f5d6032c3fb1b834f10689efdf3327f0909c3f
SHA256 c166aff46cadce2db642047cdca65234c32c6634d9ed822eeeb2a911178d6cc3
ssdeep
192:Zvy2FjEyitZwosXGGluLqCU2w5ZuiMCMhOrDPjTF7L90txhLip:lHytZhmGGluLc2q5Djh7CtXL

File size 32.0 KB ( 32768 bytes )
File type MS Word Document
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 5.1, Code page: 1252, Title: , Author: ......., Template: Normal.dot, Last Saved By: 1785429, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Create Time/Date: Mon May 14 10:39:00 2012, Last Saved Time/Date: Mon May 14 10:39:00 2012, Number of Pages: 1, Number of Words: 7, Number of Characters: 41, Security: 0

TrID Microsoft Word document (80.0%)
Generic OLE2 / Multistream Compound File (20.0%)
Tags
doc exploit cve-2013-0633 cve-2012-5054 cve-2012-4167

VirusTotal metadata
First submission 2012-09-10 07:44:43 UTC ( 6 years, 4 months ago )
Last submission 2018-05-15 00:01:52 UTC ( 8 months, 1 week ago )
File names 98E350A8A6C443C72FA6DB1FBC0B79AD.doc
aa
sFqJ.xlsx
98E350A8A6C443C72FA6DB1FBC0B79AD.doc.malware
3Ihsgy.xlsb
رسالة الكوفحي.doc
vti-rescan
file-4486633_doc
doc_98E350A8A6C443C72FA6DB1FBC0B79AD
EgJI7pn.drv
5Nl1WWm.png
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!