RTF malware analysis — malicious · ff0cd7a152c40e0e

MALICIOUS

RTF

100.2 KB First seen: 2012-07-12

MD5: cb5be34d1669332eae3684be50130a8d SHA-1: d0655dec7c4f39ecc45568eee848bd935ffdbfe9 SHA-256: ff0cd7a152c40e0ecfd142eb683b9e308ab7c9d18e0657a85d5d6228715014b8

120 Risk Score

Heuristics 2

CVE-2010-3333 — pFragments RTF stack overflow critical CVE exact CVE_2010_3333

RTF shape property pFragments has an oversized value, matching the CVE-2010-3333 stack-overflow trigger in Microsoft Word 2002/2003.
ClamAV: BC.Legacy.Exploit.CVE_2010_3333-5 critical CLAMAV_DETECTION

ClamAV detected this file as malware: BC.Legacy.Exploit.CVE_2010_3333-5

Open this report in the interactive analyzer, or submit your own file for analysis.