× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c2b666a3ef4c191b77b78c037656e50477b8ba3d35fd61ae843a3a1f4d41c5c1
File name: .BC.T_cBhgJq
Detection ratio: 32 / 56
Analysis date: 2018-10-26 00:46:00 UTC ( 1 month, 2 weeks ago )
Antivirus Result Update
Ad-Aware Exploit.SWF.CVE-2010-1297.B 20181025
AhnLab-V3 SWF/Cve-2010-1297 20181025
ALYac Exploit.SWF.CVE-2010-1297.B 20181026
Antiy-AVL Trojan[Exploit]/SWF.CVE-2010-1297.a 20181025
Arcabit Exploit.SWF.CVE-2010-1297.B 20181025
Avast SWF:CVE-2010-1297-A [Expl] 20181026
AVG SWF:CVE-2010-1297-A [Expl] 20181026
Avira (no cloud) EXP/CVE-2010-1297 20181025
BitDefender Exploit.SWF.CVE-2010-1297.B 20181026
CAT-QuickHeal Exp.SWF.AC 20181025
ClamAV Pdf.Exploit.Agent-35955 20181026
DrWeb Exploit.CVE2010-1297.1 20181025
ESET-NOD32 SWF/Exploit.Agent.BX 20181026
F-Secure Exploit.SWF.CVE-2010-1297.B 20181025
Fortinet SWF/CVE20101297.C!exploit 20181026
GData Exploit.SWF.CVE-2010-1297.B 20181026
Kaspersky Exploit.SWF.CVE-2010-1297.a 20181025
MAX malware (ai score=80) 20181026
Microsoft Exploit:SWF/CVE-2010-1297.D 20181026
eScan Exploit.SWF.CVE-2010-1297.B 20181026
NANO-Antivirus Exploit.Swf.CVE20101297.covjtn 20181026
Qihoo-360 Win32/Trojan.Exploit.846 20181026
Rising Expolit.SWF/Gen(96%) (AI) 20181026
Sophos AV Troj/SWFDlr-V 20181026
Symantec Trojan.Pidief.J 20181026
Tencent Exploit.SWF.CVE-2010-1297.a 20181026
TotalDefense SWF/CVE-2010-1297.C!exploit 20181025
TrendMicro SWF_CVE20101297.D 20181026
TrendMicro-HouseCall SWF_CVE20101297.D 20181026
VBA32 Exploit.SWF.CVE-2010-1297.a 20181025
VIPRE Exploit.SWF.CVE-2010-1297 (v) 20181025
ZoneAlarm by Check Point Exploit.SWF.CVE-2010-1297.a 20181026
AegisLab 20181026
Alibaba 20180921
Avast-Mobile 20181025
Babable 20180918
Baidu 20181024
Bkav 20181025
CMC 20181025
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181026
Cyren 20181026
eGambit 20181026
Emsisoft 20181025
Endgame 20180730
F-Prot 20181025
Sophos ML 20180717
Jiangmin 20181026
K7AntiVirus 20181025
K7GW 20181025
Kingsoft 20181026
Malwarebytes 20181025
McAfee 20181026
McAfee-GW-Edition 20181025
Palo Alto Networks (Known Signatures) 20181026
Panda 20181025
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181022
Symantec Mobile Insight 20181001
TACHYON 20181026
TheHacker 20181025
Trustlook 20181026
ViRobot 20181025
Webroot 20181026
Yandex 20181025
Zillya 20181024
Zoner 20181025
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
Contains ActionScript code to request and retrieve content from Internet URLs.
SWF Properties
SWF version
9
Compression
zlib
Frame size
550.0x180.0 px
Frame count
1
Duration
0.032 seconds
File attributes
HasMetadata, ActionScript3
Unrecognized SWF tags
0
Total SWF tags
94
ActionScript 3 Packages
fl.controls
fl.core
fl.events
fl.livepreview
fl.managers
flash.display
flash.events
flash.geom
flash.net
flash.system
flash.text
flash.ui
flash.utils
Referenced URLs
ExifTool file metadata
MIMEType
application/x-shockwave-flash

ImageSize
550x180

FileType
SWF

Megapixels
0.099

FrameRate
31

FlashVersion
9

FileTypeExtension
swf

Compressed
True

ImageWidth
550

Duration
0.03 s

FlashAttributes
ActionScript3, HasMetadata

FrameCount
1

ImageHeight
180

File identification
MD5 4666a447105b483533b2bbd0ab316480
SHA1 fcfe976b44e6faa30eda4127ece73c5d51ddeeb5
SHA256 c2b666a3ef4c191b77b78c037656e50477b8ba3d35fd61ae843a3a1f4d41c5c1
ssdeep
384:+SZdscsHMWNq3jtOADOtrP4kq3SmU8EN3rsF8+NFo9959zwDv3gCZ9Mmb880utsl:6cuMW4jtOSW74nmRq8j99bs7FZmmfNm5

File size 26.1 KB ( 26774 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 9

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash exploit zlib cve-2010-1297

VirusTotal metadata
First submission 2010-06-11 23:06:53 UTC ( 8 years, 6 months ago )
Last submission 2018-08-24 21:26:00 UTC ( 3 months, 3 weeks ago )
File names .BC.T_cBhgJq
foo.bar
4666a447105b483533b2bbd0ab316480
CVE-2010-1297.swf
MBOzQOva7.dwg
CVE-2010-1297.swf
CVE-2010-1297.swf
4666a447105b483533b2bbd0ab316480_fcfe976b44e6faa30eda4127ece73c5d51ddeeb5.bin
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!