Malware Metadata Search

Search for malware metadata.

Key hash:
Keysum:
Metadata:
Exploit name:

HashFile typeReport

File:
04042017summary.doc
MD5:
996054b4ebf1a81661b6b450113257a2
SHA1:
2d736f3f0d0ab9ac6d80511e848cbf1bfcdabe29
SHA256:
00bc76898f07f18122f386b890d79c9338d223a5b5c89213a4bbf1040bccfa28
SSDeep:
3072:quIOdIq+UtrBgYP/4usn/beyjgmDW0AA/YsVOK8AVs:E7crBgYP/ds/LO0AA/YsN7q

Rich Text Format data, version 1, unknown character set

Virus Report
Embedded Executable

File:
Security instructions from Visa.doc
MD5:
33edc70615de35b71e54f046d7fa3038
SHA1:
5bb2676c916ee71b81ab3e568a8b7321092d3c71
SHA256:
07f89dd94759af3d32448ee4da4f3aa14eb2209cb0469eaed859adccde0cc46a
SSDeep:
1536:qs5YTOw5Npl9t55G5IJJlDt+U3vVxIuC2PSKb8uTD3H1W+U+KWFel03Gch/Bi:quIOIDl9trkIH+MVxo2PlbXn31xU+u0k

Rich Text Format data, version 1, unknown character set

Virus Report
Embedded Executable

File:
s.doc
MD5:
99df4eaa5766457bbd22de4bf8f014b1
SHA1:
6a7ee3b506d0f12afcbcc0fbb9ad4c8e366fb672
SHA256:
4289286337598fe88c8a4600765aa60d2630d6bed0ec5036ad769e6cec04514a
SSDeep:
12288:bLn9RKP17wH/XhcXAm/8wZkhRkKlKCSLOU9AamsAkmdSp6gQBRcXjgyP:bxsN7I/XQAa6hKxKH7Tg6ti

Rich Text Format data, version 1, unknown character set

Virus Report
Embedded Executable Transposition cipher This program cannot be run in DOS mode

File:
kuntertip.doc
MD5:
e6cdd9ba9872e3c010b0476196a3a5df
SHA1:
f1f87009bcc73d3f06ac5184ec9eb21085c32f1b
SHA256:
029c962ad6c44b481434bf18c0b8d2082236562238a1c19a97a84e13eab1d481
SSDeep:
6144:kVT1EQDg9gS9+KG5cL1qNGEAWDYZZEtfe/gM9upuE3:kFyQaPvwchqNGn1TEF0kuE

data

Virus Report
Embedded Executable

File:
dokilat.doc
MD5:
e208251c3837c32f1886629ba5484189
SHA1:
7d0e4df4b6cf540b56cd6565bc108a59af908cb0
SHA256:
06e0916013ca022d29dbd6becd32cb91e6ffbfb552775dd9e72923565db6a6f6
SSDeep:
6144:kQT1EQDg9gS9+KG5cL1qNGEAWDYZZEhPP+0F2aX2d2+Y:k6yQaPvwchqNGn1TEhW0Fgd2l

data

Virus Report
Embedded Executable

File:
chaqiriq.doc
MD5:
5dc62a802210b2d20a9b9c2d23b1efbf
SHA1:
9013b85f32393f09a9e94fbfbc7cdbaf03ec64e7
SHA256:
248103de8c038c359c84e622388950721089d0105a02136a0e52fcb88ee3e57d
SSDeep:
6144:khT1EQDg9gS9+KG5cL1qNGEAWDYZZEhPP+0F2aX2d2+Y:khyQaPvwchqNGn1TEhW0Fgd2l

data

Virus Report
Embedded Executable

File:
APT_9.DOC
MD5:
c17aa4d63759c7f5c278238f94cfdc99
SHA1:
a3bd5d2b20a83ef57d9b3d3ac4071098c34d1adf
SHA256:
ab51c51dd26420b61cf201bb56aaf7391cd626f80ecd136a68e50f272a6abc2e
SSDeep:
768:USPaCzA6HGGXNmCIcVsx5yaXcpK3qSjoiP2rmhlXykQW:YHw59lSx5RXh3qkoiemhAk7

Composite Document File V2 Document, No summary info

Virus Report
MS Office encrypted document
genexploit - MS Office encrypted document

File:
virus.doc
MD5:
ae4970e17a9a6089bc98650c307fe06c
SHA1:
7fc23494e8e5e826747e3dd08bfbf6aed4deb357
SHA256:
edf1165d9d03455b14a079f87b1d3fe77da1ccf23c9a341f2a9510f14f399d5f
SSDeep:
24576:87snkhyfcHGE1YxwB2HdBjvo9I2IhBgqcoOn5rGiYdtS6Ij2upbExU:fFdc2Hrjvt2I7HOn5rGv0dWU

data

Virus Report
MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158
genexploit - MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158

File:
schet2071.01.03.16.doc
MD5:
70edefbefaee9a7a1f520b5552ac1a38
SHA1:
545cfbc71be2d1c9db428e8c8b80f647d48ce01d
SHA256:
018ad8199a586c4cbd756d7d3c0ff8882f30d0094ac329c3404b6370ba33b4dc
SSDeep:
24576:7iSfsnkIUHHHHpIbCL9vtbo4c3fOvDLHB4Fo4O81:vI+L9JrDzKF3l

data

Virus Report
MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158
genexploit - MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158

File:
schet2071.26.02.16.doc
MD5:
ff995b6b553c6c7e0f22fe81a5149b7b
SHA1:
e677cd7402dec6d2f485d93f7183bc3378c2a798
SHA256:
2619f64d92878ec52fe5edd5b3dd6c81c2805794fff5209c5051a9f55e0b5ccb
SSDeep:
24576:7iSfsnkS2yFQrep8rXxTI69F6eVStnh2YAq2:HlreM799

data

Virus Report
MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158
genexploit - MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158

File:
schet2078.25.02.16.doc
MD5:
25ddf8fa475bf99a0370aaf66d3e3740
SHA1:
0560742909b25c5e5741af0afb7ad4fa8e52e9a1
SHA256:
f61dc695dd6a19b70dd01e4c511127063a808a5edf5812ee3ccc5dac6cc788d5
SSDeep:
24576:7iSfsnkwdqaWU+dbc+BgWqwYIwdmXu8UAAUxf03Ke0MlYIbdE879uq:IdqaYdLBgWqfFEsAoaeNlTe8hf

data

Virus Report
MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158
genexploit - MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158

File:
EK-1.doc
MD5:
29af48f3566038aab803c77b35a12be5
SHA1:
8526a3b01cba933fe39a3488124be3dad8fca1ed
SHA256:
2bef4cfe4d8aca179b4750361dd82dcdc465b1d82ad7cd06e23eceaac89b7428
SSDeep:
3072:s9uSOQbzhuWAQ8zbaZ+pF+5NfuFz13p2p:snNnMW6naUp05NfuFz13pK

Rich Text Format data, version 1, unknown character set

Virus Report
Embedded Executable Transposition cipher This program cannot be run in DOS mode

File:
Invoice_101970~1.doc
MD5:
99cf22f4adeb6baf887de7e1eecc4b9e
SHA1:
a36c4225af317b6ce3aa6fc14959402e9d6165ab
SHA256:
41791fd591230f430fb33d8f9b4f0812971c99e05a7c7691e3502ba1cc45f9b4
SSDeep:
12288:a8MFkp0CZ95suKFw2m99ej2l70q9TccyW4Xe4sqy5:a8MFkp1Wfm99ej2yq9Tc7b3E5

Rich Text Format data, version 1, unknown character set

Virus Report
MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158
genexploit - MS Office Exploit RTF MSCOMCTL.OCX RCE CVE-2012-0158

File:
CVE-2007-5659 PDF 9BC1735453963E33EA1857CC25AA5A19 SurveyOnObamapdf.pdf=
MD5:
9bc1735453963e33ea1857cc25aa5a19
SHA1:
70a219d52e3401e58869045b61a8d5730b4117f4
SHA256:
a6bde95330c830646945f2564c5bec27802bcbb117316bdda2520a11a4dbead9
SSDeep:
1536:TVCs+2968zx0ETJsZY3sWq55odn4/YuQmcnVCs+29H:TU2AM0ETJsZYY5u4gJmcnU2l

PDF document, version 1.5

Virus Report
PDF Exploit call to Collab.collectEmailInfo CVE-2007-5659
pdfexploit - PDF Exploit call to Collab.collectEmailInfo CVE-2007-5659
28/40 (70%) Virustotal

File:
qisqiche terjimihal.doc
MD5:
1ebab4bcf40099de1b715755af990da7
SHA1:
82bfa79f366268aa8a53d57d2516a66d0736e80f
SHA256:
d975f86d2292d9af373a1a45010c251315765891f3351bc17a8ab84a32077fde
SSDeep:
3072:+QV9ug9lQQd4MwhUGokpbOMIdT3wg47s:+29r9xbkpbO913D47s

data

Virus Report
Embedded Executable

File:
bayanat.doc
MD5:
6d8ffbbfc51f9bde489db3213d2d0e9e
SHA1:
ed2ac3eb633b5767294c42c00cced9be1762b2b4
SHA256:
077499d9208b5effceb2c41ecfbcdc219224b9d4d7c9015e11b92091691f0ef5
SSDeep:
12288:+scALhdG8CS4QJBx3VgIcttZU9svt4UfvSpGfppq4A:+scALLJlXctta9MtNfvql

data

Virus Report
Embedded Executable

File:
chaqiriq.doc
MD5:
4630d5747f013782e995b4ef4f9ee0f4
SHA1:
e4789a3ea7155035311749f8d6200b45b70ec822
SHA256:
7b3cc362c1442358b8ca2b20aab54335b549e95a428bfe0700237994447ae53c
SSDeep:
12288:+wcALhdG8CS4QJBx3VgIcttZU9svt4UfvSpGfppq4A:+wcALLJlXctta9MtNfvql

data

Virus Report
Embedded Executable

File:
chaqiriq.doc
MD5:
38f83048103e139a8852a447109681d3
SHA1:
3f0f0ce0b7c92f9922838770119c220f1f29d7de
SHA256:
8977d11e64e4bbd775cd9c4cfedd4c420bb6af2da0471589005c075857b66f65
SSDeep:
12288:+7cALhdG8CS4QJBx3VgIcttZU9svt4UfvSpGfppq4A:+7cALLJlXctta9MtNfvql

data

Virus Report
Embedded Executable

File:
Exile Group.doc
MD5:
e3879faa75932f33604e8cd398d7ead4
SHA1:
ed9316c8146c763235dd5e912c627cacbf7f5832
SHA256:
17dec099c0eff198b039028472219da73c6e7c22d0c74268303e3057b710a5f1
SSDeep:
12288:+6cALhdG8CS4QJBx3VgIcttZU9svt4UfvSpGfppq4A:+6cALLJlXctta9MtNfvql

data

Virus Report
Embedded Executable

File:
bayanat.doc
MD5:
e50d18a8977d9e46fc9ca9cb64e61e3a
SHA1:
8090b208d36684d4614756f8df1123e17f9cdaed
SHA256:
4e3f036cd2f6214f7324a6577ea136e7c483b3b2a0e1da9c4e35f1abfadee459
SSDeep:
12288:+4cALhdG8CS4QJBx3VgIcttZU9svt4UfvSpGfppq4A:+4cALLJlXctta9MtNfvql

data

Virus Report
Embedded Executable