× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: d83ff64f758e353a51e299bcc97a0d27cf485d731a8578919e6f0b4b704b693c
File name: loited.rtf
Detection ratio: 37 / 55
Analysis date: 2018-11-13 21:47:10 UTC ( 5 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware VB:Trojan.Downloader.JUAU 20181112
AhnLab-V3 OLE/Cve-2017-11882.Gen 20181113
ALYac Exploit.CVE-2017-11882.Gen 20181113
Antiy-AVL Trojan[Exploit]/OLE.CVE-2017-11882 20181113
Arcabit VB:Trojan.Downloader.JUAU 20181113
Avira (no cloud) VBS/Dldr.Agent.bgna 20181113
Baidu Win32.Exploit.CVE-2017-11882.t 20181112
BitDefender VB:Trojan.Downloader.JUAU 20181113
CAT-QuickHeal Exp.RTF.CVE-2017-11882.L 20181113
ClamAV Rtf.Exploit.CVE_2017_11882-6584355-0 20181113
Cyren CVE-2017-11882.A.gen!Camelot 20181113
DrWeb JS.DownLoader.4263 20181113
Emsisoft VB:Trojan.Downloader.JUAU (B) 20181113
ESET-NOD32 Win32/Exploit.CVE-2017-11882.G 20181113
F-Secure Exploit:W97M/CVE-2017-0199.B 20181113
Fortinet VBA/TrojanDownloader.ZP!tr 20181113
GData Generic.Exploit.CVE-2017-11882.A 20181113
Ikarus Trojan-Downloader.VBS.Agent 20181113
Jiangmin Heur:Exploit.CVE-2017-11882.Gen 20181113
K7AntiVirus Trojan ( 0051f3601 ) 20181113
K7GW Trojan ( 0051f3601 ) 20181113
Kaspersky Trojan-Downloader.VBS.Agent.cna 20181113
MAX malware (ai score=85) 20181113
McAfee Exploit-CVE2017-11882.b 20181113
McAfee-GW-Edition Exploit-CVE2017-11882.b 20181113
Microsoft Exploit:O97M/CVE-2017-11882.A 20181113
eScan VB:Trojan.Downloader.JUAU 20181113
NANO-Antivirus Exploit.OleNative.CVE-2017-11882.evenbv 20181113
Qihoo-360 virus.exp.21711882.gen 20181113
Rising Exploit.CVE-2017-11882/SLT!1.AEE3 (CLASSIC) 20181113
Sophos AV Exp/201711882-A 20181113
Symantec Trojan.Mdropper 20181113
TACHYON Trojan-Exploit/RTF.CVE-2017-11882 20181113
Tencent Unk.Win32.Script.404086 20181113
TrendMicro VBS_POWLOAD.SMGDTH 20181113
TrendMicro-HouseCall VBS_POWLOAD.SMGDTH 20181113
ZoneAlarm by Check Point Trojan-Downloader.VBS.Agent.cna 20181113
AegisLab 20181113
Alibaba 20180921
Avast 20181113
Avast-Mobile 20181113
AVG 20181113
Babable 20180918
Bkav 20181113
CMC 20181113
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181113
eGambit 20181113
Endgame 20181108
F-Prot 20181113
Sophos ML 20181108
Kingsoft 20181113
Malwarebytes 20181113
Palo Alto Networks (Known Signatures) 20181113
Panda 20181113
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181107
Symantec Mobile Insight 20181108
TheHacker 20181108
TotalDefense 20181113
Trustlook 20181113
VBA32 20181113
ViRobot 20181113
Webroot 20181113
Yandex 20181113
Zillya 20181113
Zoner 20181113
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Document properties
Non ascii characters
0
Embedded drawings
0
Rtf header
rtf1
Default ansi codepage
Western European
Generator
Riched20 6.3.9600
Read only protection
False
User protection
False
Default character set
ANSI
Custom xml data properties
0
Dos stubs
0
Objects
OLE embedded (Package)
OLE embedded (Package)
OLE embedded (Package)
Embedded pictures
2
Longest hex string
9268
Default languages
English - United States
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

FileTypeExtension
rtf

File identification
MD5 b552c87a98889c9d220d12bb93787d4c
SHA1 2d218865557636c447341e6e46cd63c0d7697949
SHA256 d83ff64f758e353a51e299bcc97a0d27cf485d731a8578919e6f0b4b704b693c
ssdeep
96:MvZ1aZnw/SUnotNx4HjSGACMHju5ZFs5tX557dpG5Z5uS4cS4F/S4pp89CU61ScW:uZwZyo44L404pAcGkPSGZxZvBgGkPD

File size 25.6 KB ( 26197 bytes )
File type Rich Text Format
Magic literal
Rich Text Format data, version 1, ANSI

TrID Rich Text Format (100.0%)
Tags
ole-embedded exploit rtf cve-2017-11882 cve-2017-0199

VirusTotal metadata
First submission 2018-11-13 19:21:13 UTC ( 5 months, 1 week ago )
Last submission 2018-11-13 21:47:10 UTC ( 5 months, 1 week ago )
File names loited.rtf
19899021
ExifTool file metadata
MIMEType
text/rtf

FileType
RTF

FileTypeExtension
rtf

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!