File: d474eec649cb1825c487df07a1ef2a0c9767949bdcadf60ab996f71fd143a214

Metadata
File name:OTX_d474eec649cb1825c487df07a1ef2a0c9767949bdcadf60ab996f71fd143a214
File type:Rich Text Format data, version 1, ANSI
File size:419898
Analysis date:2017-12-27 11:52:57
MD5:9eca81dd6953e4ff691d8a534280a8f2
SHA1:6340a7916db67c1b6dc1731014bb440435578c66
SHA256:d474eec649cb1825c487df07a1ef2a0c9767949bdcadf60ab996f71fd143a214
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
Source:
APTNotes
Cyber threat intelligence reports associated with d474eec649cb1825c487df07a1ef2a0c9767949bdcadf60ab996f71fd143a214.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
AVGRTF:CVE-2012-0158-CQ [Expl]
Ad-AwareExploit.RTF-ObfsStrm.Gen
AegisLabExploit.Msword.Cve!c
AhnLab-V3Doc/Cve-2012-0158
Antiy-AVLTrojan/Win32.TGeneric
ArcabitExploit.RTF-ObfsStrm.Gen
AvastRTF:CVE-2012-0158-CQ [Expl]
AviraEXP/Rtf.CVE-2012-0158.J.6
BaiduWin32.Exploit.Agent.v
BitDefenderExploit.RTF-ObfsStrm.Gen
CAT-QuickHealExp.RTF.CVE-2012-0158
CyrenRTF/CVE120158
DrWebExploit.Rtf.CVE2012-0158
ESET-NOD32Win32/Exploit.Agent.NLY
EmsisoftExploit.RTF-ObfsStrm.Gen (B)
F-ProtRTF/CVE120158
F-SecureExploit.RTF-ObfsStrm.Gen
FortinetMSWord/Toolbar.A!exploit
GDataExploit.RTF-ObfsStrm.Gen
IkarusRtf.Exploit.CVE-2012-0158
KasperskyExploit.MSWord.CVE-2012-0158.ei
MAXmalware (ai score=98)
McAfeeExploit-CVE2012-0158.k
McAfee-GW-EditionExploit-CVE2012-0158.k
MicroWorld-eScanExploit.RTF-ObfsStrm.Gen
MicrosoftExploit:Win32/CVE-2012-0158
NANO-AntivirusExploit.ComObj.CVE-2012-0158.hzuf
SophosTroj/DocDrop-CD
SymantecTrojan.Mdropper
TencentWord.Exploit.Cve-2012-0158.Hyjy
ZoneAlarmExploit.MSWord.CVE-2012-0158.ei
ZonerProbably RTFBinData
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about d474eec649cb1825c487df07a1ef2a0c9767949bdcadf60ab996f71fd143a214.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.