× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c1ab610ecdfaf466903b1fb5d9bdb620ca6b9e0fa17c104f2fdaeb9f9c5f0cbf
File name: 2015-03-02-Fiesta-EK-flash-exploit.swf
Detection ratio: 34 / 55
Analysis date: 2016-12-08 19:14:15 UTC ( 1 year, 6 months ago )
Antivirus Result Update
Ad-Aware Script.SWF.C165 20161208
AegisLab Exploit.Swf.Agent!c 20161208
ALYac Script.SWF.C165 20161208
Antiy-AVL Trojan[Exploit]/SWF.Agent.gen 20161208
Arcabit Script.SWF.C165 20161208
Avast SWF:Agent-DZ [Expl] 20161208
AVG SWF/Agent.AL 20161208
Avira (no cloud) EXP/CVE-2014-0497.10421 20161208
AVware LooksLike.SWF.Malware.g (v) 20161208
BitDefender Script.SWF.C165 20161208
CAT-QuickHeal SWF.Heur.Gen 20161208
Cyren SWF/CVE140497 20161208
DrWeb Exploit.SWF.495 20161208
Emsisoft Script.SWF.C165 (B) 20161208
ESET-NOD32 SWF/Exploit.CVE-2014-0497.J 20161208
F-Prot SWF/CVE140497 20161208
F-Secure Script.SWF.C165 20161208
Fortinet SWF/ExKit.AQ!exploit 20161208
GData Script.SWF.C165 20161208
Ikarus SWF.Script.C78 20161208
K7AntiVirus Trojan ( 0001140e1 ) 20161208
K7GW Trojan ( 0001140e1 ) 20161208
Kaspersky HEUR:Exploit.SWF.Agent.gen 20161208
McAfee Exploit-SWF.q 20161205
McAfee-GW-Edition BehavesLike.Flash.Exploit.lg 20161208
Microsoft VirTool:SWF/Obfuscator.I 20161208
eScan Script.SWF.C165 20161208
NANO-Antivirus Exploit.Swf.Agent.dvtnts 20161208
Qihoo-360 swf.exp.fiesta.b 20161208
Sophos AV Troj/SWFExp-CA 20161208
Symantec Trojan.Gen.2 20161208
Tencent Win32.Exploit.Agent.Dxdn 20161208
TrendMicro TROJ_FRS.PMA000CI15 20161208
VIPRE LooksLike.SWF.Malware.g (v) 20161208
AhnLab-V3 20161208
Alibaba 20161208
Baidu 20161207
Bkav 20161208
ClamAV 20161208
CMC 20161208
Comodo 20161208
CrowdStrike Falcon (ML) 20161024
Sophos ML 20161202
Jiangmin 20161208
Kingsoft 20161208
Malwarebytes 20161208
nProtect 20161208
Panda 20161208
Rising 20161208
SUPERAntiSpyware 20161208
TheHacker 20161130
TotalDefense 20161208
TrendMicro-HouseCall 20161208
Trustlook 20161208
VBA32 20161208
ViRobot 20161208
WhiteArmor 20161207
Yandex 20161208
Zillya 20161207
Zoner 20161208
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
SWF Properties
SWF version
13
Compression
zlib
Frame size
800.0x600.0 px
Frame count
1
Duration
0.033 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
10
ActionScript 3 Packages
flash.display
flash.events
flash.external
flash.system
flash.utils
SWF metadata
ExifTool file metadata
MIMEType
application/x-shockwave-flash

Publisher
unknown

Megapixels
0.48

Description
http://www.adobe.com/products/flex

Language
EN

Format
application/x-shockwave-flash

FlashAttributes
UseNetwork, ActionScript3, HasMetadata

Title
Adobe Flex 4 Application

FrameRate
30

FlashVersion
13

Duration
0.03 s

Creator
unknown

FileTypeExtension
swf

Compressed
True

ImageWidth
800

Date
Feb 28, 2015

ImageHeight
600

Warning
[minor] Fixed incorrect URI for xmlns:dc

FileType
SWF

FrameCount
1

ImageSize
800x600

PCAP parents
File identification
MD5 174fe217b9288259c114b84a7bc78c0c
SHA1 15e73a6e0d0ff88b5b2124f393d49c5688bb0813
SHA256 c1ab610ecdfaf466903b1fb5d9bdb620ca6b9e0fa17c104f2fdaeb9f9c5f0cbf
ssdeep
192:YMoRfQFILgSUKBVWjCCUy0eKwzEjjv2mOyxBJ1xNsrsbQ+hsE7Hyh8FT:FoRfvMb6VWjCCswkj9DxP1x0yQ+hsE7t

File size 10.2 KB ( 10421 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 13

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash exploit zlib cve-2014-0497

VirusTotal metadata
First submission 2015-03-03 08:10:42 UTC ( 3 years, 3 months ago )
Last submission 2016-12-08 19:14:15 UTC ( 1 year, 6 months ago )
File names 2015-03-02-Fiesta-EK-Flash-Exploit.swf
2015-03-02-Fiesta-EK-flash-exploit.swf
1.swf
yppt.swf
2015-03-02-Fiesta-EK-flash-exploit.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!