fec71b8479f3a416fa58580ae76a8c731c2294c24663c601a1267e0e5c2678a0 File Analysis Results

Metadata

Warning = [minor] Fixed incorrect URI for xmlns	dc
Description = http	//www.adobe.com/products/flex
Source:

APTNotes
Cyber threat intelligence reports associated with fec71b8479f3a416fa58580ae76a8c731c2294c24663c601a1267e0e5c2678a0.

Domains
Domains the malware sample communicates with.

Hosts
Hosts the malware sample communicates with.

HTTP Requests
HTTP requests the malware sample makes.

AV Detections
AV detection names associated with the malware sample.

ALYac	Exploit.CVE-2018-4878
Ad-Aware	Script.SWF.C589
AegisLab	Hacktool.SWF.Agent.3!c
AhnLab-V3	SWF/Cve-2018-4878.R
Antiy-AVL	Trojan[Exploit]/SWF.CVE-2018-4878
Arcabit	Script.SWF.C589
Avira	EXP/CVE-2018-4878.A.Gen
BitDefender	Script.SWF.C589
CAT-QuickHeal	Exp.SWF.CVE-2018-4878.D
ClamAV	Swf.Trojan.Rokrat-6443186-0
Cyren	SWF/CVE-2018-4878.B!Camelot
DrWeb	SWF.Exploit.42
ESET-NOD32	SWF/Exploit.CVE-2018-4878.A
F-Secure	Exploit.EXP/CVE-2018-4878.A.Gen
FireEye	Script.SWF.C589
Fortinet	SWF/CVE20184878.DC!exploit
GData	Script.SWF.C589
Ikarus	Trojan.SWF.Exploit
Kaspersky	Exploit.SWF.Agent.rs
MAX	malware (ai score=100)
McAfee	Exploit-CVE2018-4878.b
McAfee-GW-Edition	BehavesLike.Flash.Dropper.cb
MicroWorld-eScan	Script.SWF.C589
Microsoft	Exploit:SWF/Korpode.A!gen
NANO-Antivirus	Exploit.Swf.CVE20184878.exmycd
Qihoo-360	swf.exp.20184878.b
Rising	Exploit.CVE-2018-4878!1.B022 (CLASSIC)
Sophos	Troj/SWFExp-OL
Symantec	Trojan.Gen.2
TACHYON	Trojan-Exploit/SWF.Agent.Gen
Tencent	Win32.Exploit.Agent.Dtsv
TrendMicro	SWF_EXPLOYT.KORPD
TrendMicro-HouseCall	SWF_EXPLOYT.KORPD
ViRobot	SWF.S.Exploit.117338
Zillya	Exploit.Agent.Script.1214
ZoneAlarm	Exploit.SWF.Agent.rs

Mutants
Mutants created by the malware sample.

Registry keys
Registry keys created by the malware sample.

Comments
User comments about fec71b8479f3a416fa58580ae76a8c731c2294c24663c601a1267e0e5c2678a0.

File: fec71b8479f3a416fa58580ae76a8c731c2294c24663c601a1267e0e5c2678a0