× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: cc80f45b6c770ea59d8584526cc2a2b2574f78ab87b739a360750d5e470207d2
File name: RigEK landing page.txt
Detection ratio: 26 / 57
Analysis date: 2018-08-22 03:06:21 UTC ( 3 months, 3 weeks ago )
Antivirus Result Update
Ad-Aware Trojan.JS.Agent.SIB 20180822
AegisLab Troj.Dropper.Script!c 20180822
ALYac Trojan.Script.Agent 20180822
Antiy-AVL Trojan[Exploit]/VBS.CVE-2016-0189 20180822
Arcabit Trojan.JS.Agent.SIB 20180822
Avira (no cloud) EXP/Agent.uztra 20180821
BitDefender Trojan.JS.Agent.SIB 20180822
CAT-QuickHeal JS.EK.RLP.30675 20180821
Emsisoft Trojan.JS.Agent.SIB (B) 20180822
ESET-NOD32 JS/Exploit.Agent.NNR 20180821
F-Secure Trojan.JS.Agent.SIB 20180822
Fortinet JS/Agent.NNR!tr 20180822
GData Trojan.JS.Agent.SIB 20180822
Ikarus Trojan.Js.Exploit 20180821
Kaspersky HEUR:Exploit.Script.Generic 20180822
MAX malware (ai score=97) 20180822
McAfee JS/Exploit.q 20180822
McAfee-GW-Edition BehavesLike.HTML.Exploit.nq 20180822
eScan Trojan.JS.Agent.SIB 20180822
NANO-Antivirus Trojan.Script.Heuristic-js.iacgm 20180821
Qihoo-360 Win32/Trojan.Dropper.586 20180822
Rising Exploit.Agent!8.1B (TOPIS:tS5H1snEihQ) 20180822
Symantec Trojan.Gen.NPE 20180821
TrendMicro HTML_EXPLOYT.THAAHH 20180822
TrendMicro-HouseCall HTML_EXPLOYT.THAAHH 20180822
ZoneAlarm by Check Point HEUR:Exploit.Script.Generic 20180822
AhnLab-V3 20180822
Avast 20180821
Avast-Mobile 20180820
AVG 20180821
AVware 20180822
Babable 20180725
Baidu 20180820
Bkav 20180821
ClamAV 20180821
CMC 20180821
Comodo 20180822
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20180822
Cyren 20180822
DrWeb 20180822
eGambit 20180822
Endgame 20180730
F-Prot 20180822
Sophos ML 20180717
Jiangmin 20180822
K7AntiVirus 20180821
K7GW 20180822
Kingsoft 20180822
Malwarebytes 20180822
Microsoft 20180822
Palo Alto Networks (Known Signatures) 20180822
Panda 20180820
SentinelOne (Static ML) 20180701
Sophos AV 20180822
SUPERAntiSpyware 20180821
Symantec Mobile Insight 20180814
TACHYON 20180822
Tencent 20180822
TheHacker 20180821
Trustlook 20180822
VBA32 20180821
VIPRE 20180822
ViRobot 20180821
Webroot 20180822
Yandex 20180820
Zoner 20180821
File identification
MD5 7dfe7dfb07b5e71d4a8db1333ced35c0
SHA1 5cba9906dc4e5c451fba994bb991655b804cec91
SHA256 cc80f45b6c770ea59d8584526cc2a2b2574f78ab87b739a360750d5e470207d2
ssdeep
1536:G8W5z7BsQs1SwInUDLfBgfM0EiDxdNWbZdDhrCoUmUoCoWgvaDUh0:G3z72anUDLfBgfbIF7Lm9BoW

File size 94.5 KB ( 96751 bytes )
File type HTML
Magic literal
HTML document text

TrID file seems to be plain text/ASCII (0.0%)
Tags
exploit html cve-2016-0189

VirusTotal metadata
First submission 2018-01-13 00:18:05 UTC ( 11 months ago )
Last submission 2018-02-07 22:56:35 UTC ( 10 months ago )
File names RigEK landing page.txt
ExifTool file metadata
HTTPEquivXUACompatible
IE=10

MIMEType
text/html

FileType
HTML

FileTypeExtension
html

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!