× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ff3163c628649a13c765d7abfa933223bf45374830e3052fbf52c0bf4bcaf5a1
File name: hp.swf
Detection ratio: 1 / 55
Analysis date: 2015-06-25 16:05:43 UTC ( 1 year, 10 months ago ) View latest
Antivirus Result Update
McAfee-GW-Edition BehavesLike.Flash.Exploit.lb 20150624
Ad-Aware 20150623
AegisLab 20150623
Yandex 20150624
AhnLab-V3 20150623
Alibaba 20150624
ALYac 20150625
Antiy-AVL 20150625
Arcabit 20150625
Avast 20150623
AVG 20150624
Avira (no cloud) 20150625
AVware 20150623
Baidu-International 20150625
BitDefender 20150623
Bkav 20150625
ByteHero 20150625
CAT-QuickHeal 20150623
ClamAV 20150624
Comodo 20150625
Cyren 20150623
DrWeb 20150624
Emsisoft 20150623
ESET-NOD32 20150623
F-Prot 20150622
F-Secure 20150623
Fortinet 20150625
GData 20150624
Ikarus 20150623
Jiangmin 20150624
K7AntiVirus 20150623
K7GW 20150623
Kaspersky 20150625
Kingsoft 20150625
Malwarebytes 20150625
McAfee 20150623
Microsoft 20150625
eScan 20150623
NANO-Antivirus 20150623
nProtect 20150623
Panda 20150623
Qihoo-360 20150625
Rising 20150625
Sophos 20150625
SUPERAntiSpyware 20150623
Symantec 20150624
Tencent 20150625
TheHacker 20150622
TrendMicro 20150624
TrendMicro-HouseCall 20150625
VBA32 20150624
VIPRE 20150623
ViRobot 20150623
Zillya 20150625
Zoner 20150625
The file being studied is a SWF file! SWF files deliver vector graphics, text, video, and sound over the Internet.
Commonly abused SWF properties
The studied SWF file makes use of ActionScript3, some exploits have been found in the past targeting the ActionScript Virtual Machine. ActionScript has also been used to force unwanted redirections and other badness. Note that many legitimate flash files may also use it to implement rich content and animations.
The studied SWF file makes use of the loadBytes ActionScript3 functionality, commonly used to load other files and arbitrary code at runtime.
SWF Properties
SWF version
10
Compression
zlib
Frame size
800.0x600.0 px
Frame count
1
Duration
0.033 seconds
File attributes
HasMetadata, ActionScript3, UseNetwork
Unrecognized SWF tags
1
Total SWF tags
12
ActionScript 3 Packages
flash.display
flash.events
flash.utils
mx.core
mx.events
SWF metadata
ExifTool file metadata
MIMEType
application/x-shockwave-flash

Publisher
unknown

Megapixels
0.48

Description
http://www.adobe.com/products/flex

Language
EN

Format
application/x-shockwave-flash

FlashAttributes
UseNetwork, ActionScript3, HasMetadata

Title
Adobe Flex 4 Application

FrameRate
30

FlashVersion
10

Duration
0.03 s

Creator
unknown

FileTypeExtension
swf

Compressed
True

ImageWidth
800

Date
2015:6:4

ImageHeight
600

Warning
[minor] Fixed incorrect URI for xmlns:dc

FileType
SWF

FrameCount
1

ImageSize
800x600

Compressed bundles
File identification
MD5 205a625ebc3b0a9b286dc8f065845433
SHA1 5f6a2521c6bfd5becfefc3a3db74d0a23d382f0e
SHA256 ff3163c628649a13c765d7abfa933223bf45374830e3052fbf52c0bf4bcaf5a1
ssdeep
384:yPo22igOGg7cOvs/44k4XmC94oYuU4X1yl9Ly8oo69XK3:yTc+s/FH94oJ1mboof3

File size 13.6 KB ( 13954 bytes )
File type Flash
Magic literal
Macromedia Flash data (compressed), version 10

TrID Macromedia Flash Player Compressed Movie (100.0%)
Tags
zlib cve-2014-1776 flash exploit loadbytes cve-2015-3113

VirusTotal metadata
First submission 2015-06-25 16:05:43 UTC ( 1 year, 10 months ago )
Last submission 2016-07-23 13:06:49 UTC ( 9 months ago )
File names hp.sw
hp.swf
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!