× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e4c4fabbb62effead9ca17ec0bcd1ccfab5a328a0d008f2b14c7c1a129e6be6e
File name: E2FE34C58765B4F6E41E4B096203D04A.swf
Detection ratio: 35 / 56
Analysis date: 2015-07-22 06:13:22 UTC ( 1 week, 6 days ago )
Antivirus Result Update
ALYac Script.SWF.C68 20150722
AVG SWF/Exploit.AR 20150721
Ad-Aware Script.SWF.C68 20150722
AhnLab-V3 SWF/Cve-2013-3163 20150722
Arcabit Script.SWF.C68 20150722
Avast SWF:Agent-CO [Expl] 20150722
Avira EXP/CVE-2013-3163 20150722
BitDefender Script.SWF.C68 20150722
CAT-QuickHeal SWF.GenSusp.E 20150722
ClamAV Win.Exploit.CVE_2013_3163-2 20150721
Comodo UnclassifiedMalware 20150722
Cyren SWF/CVE133163 20150722
ESET-NOD32 SWF/Exploit.CVE-2013-3163.A 20150722
Emsisoft Script.SWF.C68 (B) 20150722
F-Prot SWF/CVE133163 20150722
F-Secure Script.SWF.C68 20150722
Fortinet SWF/Exp.BX!exploit 20150722
GData Script.SWF.C68 20150722
Ikarus Exploit.SWF 20150722
K7AntiVirus Trojan ( 0001140e1 ) 20150722
K7GW Trojan ( 0001140e1 ) 20150722
Kaspersky Exploit.SWF.CVE-2013-3163.c 20150722
McAfee Exploit-CVE2013-3163 20150722
McAfee-GW-Edition BehavesLike.Flash.Exploit.ll 20150722
MicroWorld-eScan Script.SWF.C68 20150722
Microsoft Exploit:SWF/CVE-2013-3163 20150722
Panda Exploit/CVE-2013-3163 20150721
Qihoo-360 Trojan.Generic 20150722
Sophos Troj/SWFExp-BX 20150722
Symantec Downloader.Swif 20150722
Tencent Win32.Exploit.Cve-2013-3163.Also 20150722
TrendMicro SWF_EXPLYT.DSB 20150722
TrendMicro-HouseCall SWF_EXPLYT.DSB 20150722
ViRobot SWF.S.CVE-2013-3163.5820[h] 20150722
nProtect Script.SWF.C68 20150721
AVware 20150722
AegisLab 20150722
Agnitum 20150721
Alibaba 20150722
Antiy-AVL 20150722
Baidu-International 20150722
Bkav 20150721
ByteHero 20150722
DrWeb 20150722
Jiangmin 20150720
Kingsoft 20150722
Malwarebytes 20150722
NANO-Antivirus 20150722
Rising 20150721
SUPERAntiSpyware 20150722
TheHacker 20150721
TotalDefense 20150721
VBA32 20150721
VIPRE 20150722
Zillya 20150722
Zoner 20150722
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
The flash file uses methods of the ExternalInterface class to communicate with the external host of the Flash plugin, such as the web browser.
SWF Properties
SWF version
10
Compression
zlib
Frame size
800.0x600.0 px
Frame count
1
Duration
0.033 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
10
ActionScript 3 Packages
flash.display
flash.events
flash.external
flash.media
flash.net
flash.text
flash.utils
SWF metadata
Referenced URLs
ExifTool file metadata
MIMEType
application/x-shockwave-flash

Publisher
unknown

Megapixels
0.48

Description
http://www.adobe.com/products/flex

Language
EN

Format
application/x-shockwave-flash

FileAttributes
UseNetwork, ActionScript3, HasMetadata

FileType
SWF

Title
Adobe Flex 3 Application

FrameRate
30

FlashVersion
10

Duration
0.03 s

Creator
unknown

FileTypeExtension
swf

Compressed
True

ImageWidth
800

Date
Jul 5, 2013

ImageHeight
600

Warning
[minor] Fixed incorrect URI for xmlns:dc

FrameCount
1

ImageSize
800x600

Compressed bundles
File identification
MD5 e2fe34c58765b4f6e41e4b096203d04a
SHA1 81fe2ae7a685014cafc12c3abbcc5ffc9ab27b7e
SHA256 e4c4fabbb62effead9ca17ec0bcd1ccfab5a328a0d008f2b14c7c1a129e6be6e
ssdeep
96:rfogvfZuARP3IFVBOH0FYjXIyEWAPryl6u1DNK0e8z07s9qSiPWzzcc5:TNHRP32B00FYjXfEZFiDE0eM0tWnH5

File size 5.7 KB ( 5820 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 10

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash exploit zlib cve-2013-3163 ext-interface

VirusTotal metadata
First submission 2013-07-05 18:23:13 UTC ( 2 years, 1 month ago )
Last submission 2015-06-24 17:06:50 UTC ( 1 month, 1 week ago )
File names swfsploit1.sw
E2FE34C58765B4F6E41E4B096203D04A.swf
e2fe34c58765b4f6e41e4b096203d04a.exe
vti-rescan
e2fe34c58765b4f6e41e4b096203d04a
e4c4fabbb62effead9ca17ec0bcd1ccfab5a328a0d008f2b14c7c1a129e6be6e
movie.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!