× I cookies sono disabilitati! Questo sito richiede i cookies abilitati per funzionare correttamente
SHA256: aafc9a94b1676172dfc55ae5660b5263888c603821b73b6d2540a7578b67c431
Nome del file: 1adf29fb9b6c6ed972f1b9609b321314.rtf
Rapporto rilevamento: 41 / 59
Data analisi: 2018-09-13 06:09:45 UTC ( 1 settimana, 1 giorno fa )
Antivirus Risultato Aggiornamento
Ad-Aware Trojan.RTF-COM-Dropper.Gen 20180913
AegisLab Hacktool.RTF.Agent.3!c 20180913
AhnLab-V3 RTF/Cve-2012-1856 20180913
ALYac Exploit.CVE-2015-1641.A 20180913
Antiy-AVL Trojan[Exploit]/Office.Exploit.otkloader 20180913
Arcabit Trojan.Generic.D4FBEB5, Trojan.Generic.D4FBEB6 20180913
Avast RTF:CVE-2012-0158-DK [Expl] 20180913
AVG RTF:CVE-2012-0158-DK [Expl] 20180913
AVware LooksLike.RTF.Malware.b (v) 20180913
Baidu Win32.Exploit.CVE-2015-1770.a 20180912
BitDefender Trojan.RTF-COM-Dropper.Gen 20180913
Bkav Exploit.Office.Heur 20180912
CAT-QuickHeal Exp.RTF.Gen.3341 20180912
ClamAV Rtf.Dropper.Agent-1409885 20180913
Cyren Trojan.QIGR-4 20180913
DrWeb Exploit.CVE-2015-1641.3 20180913
Emsisoft Trojan.RTF-COM-Dropper.Gen (B) 20180913
ESET-NOD32 Win32/Exploit.Agent.NDR 20180913
F-Secure Trojan.RTF-COM-Dropper.Gen 20180913
Fortinet MSOffice/CVE_2015_1641.A!exploit 20180913
GData Trojan.GenericKD.5226166 (2x) 20180913
Ikarus Exploit.CVE-2015-1641 20180912
Kaspersky Exploit.RTF.Agent.e 20180913
MAX malware (ai score=99) 20180913
McAfee Exploit-CVE2012-0158.o 20180913
McAfee-GW-Edition Exploit-CVE2012-0158.o 20180913
Microsoft Exploit:Win32/CVE-2012-0158 20180913
eScan Trojan.RTF-COM-Dropper.Gen 20180913
NANO-Antivirus Trojan.Rtf.RTF.ebbloa 20180913
Qihoo-360 susp.office.heapspray 20180913
Rising Exploit.CVE-2015-1641!1.A3AF (CLASSIC) 20180913
Sophos AV Troj/DocDrop-JK 20180913
SUPERAntiSpyware Trojan.Agent/Gen 20180907
Symantec Trojan.Mdropper 20180912
Tencent Win32.Exploit.Agent.Ebrr 20180913
TrendMicro TROJ_EXPLOIT.JEJONW 20180913
TrendMicro-HouseCall TROJ_DROPR.DAM 20180913
VIPRE LooksLike.RTF.Malware.b (v) 20180913
Zillya Downloader.OpenConnection.JS.134910 20180912
ZoneAlarm by Check Point Exploit.RTF.Agent.e 20180913
Zoner Probably RTFBinData 20180912
Alibaba 20180713
Avast-Mobile 20180913
Avira (no cloud) 20180913
Babable 20180907
CMC 20180913
Comodo 20180913
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20180913
eGambit 20180913
Endgame 20180730
F-Prot 20180913
Sophos ML 20180717
Jiangmin 20180912
K7AntiVirus 20180913
K7GW 20180913
Kingsoft 20180913
Malwarebytes 20180913
Palo Alto Networks (Known Signatures) 20180913
Panda 20180912
SentinelOne (Static ML) 20180830
Symantec Mobile Insight 20180911
TACHYON 20180913
TheHacker 20180913
TotalDefense 20180913
Trustlook 20180913
VBA32 20180912
ViRobot 20180913
Webroot 20180913
Yandex 20180912
The file being studied is a Rich Text Format file! RTF is a proprietary document file format with published specification developed by Microsoft Corporation since 1987 for Microsoft products and for cross-platform document interchange.
Document properties
Non ascii characters
71175
Embedded drawings
0
Rtf header
rtjextersf
Read only protection
False
User protection
False
Default character set
ANSI (default)
Custom xml data properties
0
Dos stubs
0
Objects
OLE control (Word.Document.12)
OLE embedded (Word.Document.12)
OLE embedded (Word.Document.12)
OLE embedded (Word.Document.12)
Embedded pictures
0
Longest hex string
100239
File identification
MD5 1adf29fb9b6c6ed972f1b9609b321314
SHA1 16e6b2fcb48116bdc3c853a0077825165f9964dc
SHA256 aafc9a94b1676172dfc55ae5660b5263888c603821b73b6d2540a7578b67c431
ssdeep
6144:rbzBK5/a1V9thWvxdepq/5LEaAMcQLR67Jw33tkXaw/:rJK5C1V9vadepu5QaBrueHKqw/

File size 395.4 KB ( 404908 bytes )
File type Rich Text Format
Magic literal
data

TrID Unknown!
Tags
ole-embedded rtf cve-2015-1641 cve-2012-0158 ole-control cve-2012-1856 exploit attachment cve-2015-1770

VirusTotal metadata
First submission 2015-09-27 19:02:35 UTC ( 2 anni, 12 mesi fa )
Last submission 2018-05-30 05:27:28 UTC ( 3 mesi, 3 settimane fa )
Nomi dei files Paypal_5GT450043353.doc
OrderDetails.doc
1adf29fb9b6c6ed972f1b9609b321314.rtf
OrderDetails.doc
2015-09-28 orderdetails.bad
1adf29fb9b6c6ed972f1b9609b321314.sample
Nessun commento. Nessun membro della Comunità di VirusTotal ha commentato questo item, sii il primo a farlo!

Lascia il tuo commento...

?
Posta commento

Non ti sei ancora collegato. Solo gli utenti registrati possono commentare, collegati ed esprimi il tuo giudizio!

Nessun voto. Nessuno ha ancora votato questo item, sii il primo a farlo!