× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f945fc889556e1ff98f270b8eaa14f6a39ce34a7c5e43ad029dcde7ed24dfa6f
File name: 2015-07-22-Nuclear-EK-Flash-Exploit.swf
Detection ratio: 3 / 55
Analysis date: 2015-07-22 06:23:02 UTC ( 1 year, 9 months ago ) View latest
Antivirus Result Update
AVware Trojan.SWF.Agent.b (v) 20150722
McAfee-GW-Edition BehavesLike.Flash.Exploit.mb 20150722
VIPRE Trojan.SWF.Agent.b (v) 20150722
Ad-Aware 20150722
AegisLab 20150721
Yandex 20150721
AhnLab-V3 20150722
Alibaba 20150722
ALYac 20150722
Antiy-AVL 20150722
Arcabit 20150722
Avast 20150722
AVG 20150721
Avira (no cloud) 20150721
Baidu-International 20150720
BitDefender 20150722
Bkav 20150721
ByteHero 20150722
CAT-QuickHeal 20150722
ClamAV 20150721
Comodo 20150722
Cyren 20150722
DrWeb 20150722
Emsisoft 20150722
ESET-NOD32 20150722
F-Prot 20150722
F-Secure 20150722
Fortinet 20150722
GData 20150722
Ikarus 20150722
Jiangmin 20150720
K7AntiVirus 20150722
K7GW 20150722
Kaspersky 20150722
Kingsoft 20150722
Malwarebytes 20150722
McAfee 20150722
Microsoft 20150722
eScan 20150722
NANO-Antivirus 20150722
nProtect 20150721
Panda 20150721
Qihoo-360 20150722
Rising 20150721
Sophos 20150722
SUPERAntiSpyware 20150722
Symantec 20150722
Tencent 20150722
TheHacker 20150721
TrendMicro 20150722
TrendMicro-HouseCall 20150722
VBA32 20150721
ViRobot 20150722
Zillya 20150721
Zoner 20150722
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
SWF Properties
SWF version
14
Compression
zlib
Frame size
500.0x375.0 px
Frame count
1
Duration
0.042 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
11
ActionScript 3 Packages
flash.display
flash.events
flash.external
flash.system
flash.utils
mx.core
SWF metadata
ExifTool file metadata
MIMEType
application/x-shockwave-flash

Publisher
unknown

Megapixels
0.188

Description
http://www.adobe.com/products/flex

Language
EN

Format
application/x-shockwave-flash

FlashAttributes
UseNetwork, ActionScript3, HasMetadata

Title
Adobe Flex 4 Application

FrameRate
24

FlashVersion
14

Duration
0.04 s

Creator
unknown

FileTypeExtension
swf

Compressed
True

ImageWidth
500

Date
Jul 22, 2015

ImageHeight
375

Warning
[minor] Fixed incorrect URI for xmlns:dc

FileType
SWF

FrameCount
1

ImageSize
500x375

File identification
MD5 7d5520efe1ddc84075beac0024aab643
SHA1 fa5e79733959f72038319bf5a93d0f293ea9966b
SHA256 f945fc889556e1ff98f270b8eaa14f6a39ce34a7c5e43ad029dcde7ed24dfa6f
ssdeep
384:3S/5dgz9RPat2HYcidpzGbqrtkUfmVXxJ94IE4Eo9Lk9Km1Icb1fsSWdY3a:3S/TObYciVrlfmRXGIhkwrQfsVsa

File size 23.2 KB ( 23804 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 14

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash zlib

VirusTotal metadata
First submission 2015-07-22 06:23:02 UTC ( 1 year, 9 months ago )
Last submission 2015-11-30 19:03:24 UTC ( 1 year, 4 months ago )
File names 2015-07-22-Nuclear-EK-Flash-Exploit.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!