× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fdd74e175a64a6b6257d232dcc8a9555b1184636cf77e3ab7ee36cc5bc8ca364
File name: d9b7e135874e39bb79b07cb3468a43f6.swf
Detection ratio: 0 / 45
Analysis date: 2012-12-03 17:50:04 UTC ( 6 years, 5 months ago ) View latest
Antivirus Result Update
Yandex 20121203
AntiVir 20121203
Antiy-AVL 20121202
Avast 20121203
AVG 20121203
BitDefender 20121203
ByteHero 20121130
CAT-QuickHeal 20121203
ClamAV 20121203
Commtouch 20121203
Comodo 20121203
DrWeb 20121203
Emsisoft 20121203
eSafe 20121202
ESET-NOD32 20121203
F-Prot 20121202
F-Secure 20121203
Fortinet 20121203
GData 20121203
Ikarus 20121203
Jiangmin 20121203
K7AntiVirus 20121203
Kaspersky 20121203
Kingsoft 20121119
Malwarebytes 20121203
McAfee 20121203
McAfee-GW-Edition 20121203
Microsoft 20121203
eScan 20121203
NANO-Antivirus 20121203
Norman 20121203
nProtect 20121203
Panda 20121203
PCTools 20121203
Rising 20121203
Sophos AV 20121203
SUPERAntiSpyware 20121203
Symantec 20121203
TheHacker 20121203
TotalDefense 20121203
TrendMicro 20121203
TrendMicro-HouseCall 20121203
VBA32 20121130
VIPRE 20121203
ViRobot 20121203
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
Contains ActionScript code to request and retrieve content from Internet URLs.
The studied SWF file performs environment identification.
The flash file uses methods of the ExternalInterface class to communicate with the external host of the Flash plugin, such as the web browser.
The flash file seems to embed javascript code. In combination with the ExternalInterface class usage, this code might be trying to modify the DOM of the parent URL embedding the file.
SWF Properties
SWF version
12
Compression
zlib
Frame size
300.0x250.0 px
Frame count
105
Duration
4.375 seconds
File attributes
HasMetadata, ActionScript3
Unrecognized SWF tags
0
Total SWF tags
192
ActionScript 3 Packages
adobe.utils
flash.accessibility
flash.desktop
flash.display
flash.errors
flash.events
flash.external
flash.filters
flash.geom
flash.globalization
flash.media
flash.net
flash.net.drm
flash.printing
flash.profiler
flash.sampler
flash.sensors
flash.system
flash.text
flash.text.engine
flash.text.ime
flash.ui
flash.utils
flash.xml
SWF metadata
ExifTool file metadata
ImageSize
300x250

InstanceID
xmp.iid:3FF0E678573AE211A568A8E48E4F45A3

OriginalDocumentID
xmp.did:1C236A784EE1E1119603D30D46BBE045

MetadataDate
2012:11:29 21:06:31+02:00

ModifyDate
2012:11:29 21:06:31+02:00

Format
application/x-shockwave-flash

FlashAttributes
ActionScript3, HasMetadata

FrameRate
24

FlashVersion
12

DerivedFromOriginalDocumentID
xmp.did:1C236A784EE1E1119603D30D46BBE045

Compressed
True

ImageWidth
300

DerivedFromInstanceID
xmp.iid:3EF0E678573AE211A568A8E48E4F45A3

CreateDate
2012:08:08 14:34:53+03:00

FrameCount
105

MIMEType
application/x-shockwave-flash

CreatorTool
Adobe Flash Professional CS5.5 - build 349

FileType
SWF

Megapixels
0.075

ImageHeight
250

DocumentID
xmp.did:3FF0E678573AE211A568A8E48E4F45A3

FileTypeExtension
swf

Duration
4.38 s

DerivedFromDocumentID
xmp.did:AD30651454E1E1119603D30D46BBE045

File identification
MD5 14947e1f0631b2e87e6f01d6e614dcb2
SHA1 5b54ad076864c43abd70b81df73ae793d967e632
SHA256 fdd74e175a64a6b6257d232dcc8a9555b1184636cf77e3ab7ee36cc5bc8ca364
ssdeep
1536:cDo4vAhjuWVU6sjMV6vzD8ETz9MF7b1ESxZpeE7/imYBkc2x0mCxZgTZ2ZrhfE/D:CIRFVejU6boMzeF7J5btemY+B5Z2ZtfA

File size 94.7 KB ( 96941 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 12

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
flash zlib capabilities ext-interface

VirusTotal metadata
First submission 2012-12-03 17:50:04 UTC ( 6 years, 5 months ago )
Last submission 2017-12-06 19:18:47 UTC ( 1 year, 5 months ago )
File names 46b6f37bf0e25fcc8794adefc774ba46.swf
malwares_swf.swf
7f30a26cab20eefbed7bf1f2faa5f175.swf
d9b7e135874e39bb79b07cb3468a43f6.swf
14947e1f0631b2e87e6f01d6e614dcb2
fc7234d0a773e1c1f2391fa49b21def0.swf
5723bc3147074a8ff71d26cd4f42d9e2.swf
7d8a7140f5e4a7c0fd68aab49caa8fdd.swf
d9b7e135874e39bb79b07cb3468a43f6.sw
14947e1f0631b2e87e6f01d6e614dcb2
e063367a8db60fac0ad3b8342feda8aa.swf
cf8db3cad5ce28a8ec2a22e4ba3547fb.swf
27b0461584a89c37bc9637c68e721f6e.swf
b709188badaeba23adb8fef00a03d3c9f9a6bb6a
e45b9d5c69205cc23ec87ab08b05d4a4.swf
19b0a8b6b7c92bf72a9f426482926d66.swf
d00d784af4a52d917797bac0c46970bd.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!