File: f24b873fa61d48d5436099a79ccc5524b276fd0626a6e915dd3c5e5d231a9600

Metadata
File name:OTX_f24b873fa61d48d5436099a79ccc5524b276fd0626a6e915dd3c5e5d231a9600
File type:Rich Text Format data, version 1, ANSI
File size:279472
Analysis date:2017-12-27 11:46:09
MD5:ce002e76ce3038070934fd6b883a2033
SHA1:19e9dfabdb9b10a90b62c12f205ff0d1eeef3f14
SHA256:f24b873fa61d48d5436099a79ccc5524b276fd0626a6e915dd3c5e5d231a9600
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
APTNotes
Cyber threat intelligence reports associated with f24b873fa61d48d5436099a79ccc5524b276fd0626a6e915dd3c5e5d231a9600.
Loading...
Domains
Domains the malware sample communicates with.
DomainIP
crl4.digicert.comN/A
crl3.digicert.comN/A
Hosts
Hosts the malware sample communicates with.
93.184.220.29
2.21.242.237
66.225.197.197
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
ALYacTrojan.Script.762262
Ad-AwareTrojan.Script.762262
AegisLabExploit.Msword.Agent!c
AhnLab-V3RTF/Cve-2012-0158
Antiy-AVLTrojan[Exploit]/Office.CVE-2012-0158
ArcabitTrojan.Script.DBA196
BaiduWin32.Exploit.CVE-2012-0158.h
BitDefenderTrojan.Script.762262
CAT-QuickHealExp.RTF.CVE-2012-0158
DrWebExploit.Rtf.82
ESET-NOD32Win32/Exploit.CVE-2012-0158.JL
EmsisoftTrojan.Script.762262 (B)
F-SecureTrojan.Script.762262
GDataTrojan.Script.762262
IkarusExploit.MSWord.Agent
JiangminExploit.CVE-2012-0158.a
KasperskyExploit.MSWord.Agent.ey
MAXmalware (ai score=98)
McAfeeExploit-CVE2012-0158.f
McAfee-GW-EditionExploit-CVE2012-0158.f
MicroWorld-eScanTrojan.Script.762262
MicrosoftExploit:Win32/CVE-2012-0158
NANO-AntivirusTrojan.Rtf.CVE20120158.dxopnd
Qihoo-360heur.rtf.obfuscated.1
SophosTroj/DocDrop-DM
SymantecTrojan.Mdropper
TencentExploit.WORD.CVE-2012-0158
ZillyaDownloader.OpenConnection.JS.105247
ZoneAlarmExploit.MSWord.Agent.ey
ZonerProbably RTFBinData
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about f24b873fa61d48d5436099a79ccc5524b276fd0626a6e915dd3c5e5d231a9600.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.