RTF malware analysis — malicious · c369bb7767167b29

MALICIOUS

RTF

100.4 KB First seen: 2012-07-12

MD5: 97bed3ebe3a3a385e0b3f7d1e6992cd7 SHA-1: 1871fc2156e9be9cfe1c914b77e659f895882814 SHA-256: c369bb7767167b29eb1d4297f0baa70896390a49fce8beb4ef6fc599cc8f24bd

120 Risk Score

Heuristics 2

CVE-2010-3333 — pFragments RTF stack overflow critical CVE exact CVE_2010_3333

RTF shape property pFragments has an oversized value, matching the CVE-2010-3333 stack-overflow trigger in Microsoft Word 2002/2003.
ClamAV: BC.Legacy.Exploit.CVE_2010_3333-5 critical CLAMAV_DETECTION

ClamAV detected this file as malware: BC.Legacy.Exploit.CVE_2010_3333-5

Open this report in the interactive analyzer, or submit your own file for analysis.