Exp/20120158-A

Category: Viruses and SpywareProtection available since:10 Apr 2012 20:06:11 (GMT)
Type: Malicious behaviorLast Updated:24 Apr 2012 22:41:16 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Exp/20120158-A is a generic detection looking for files exploiting the CVE-2012-0158 vulnerability

Examples of Exp/20120158-A include:

Example 1

File Information

Size
18K
SHA-1
140aa5d78d921900e56d0aa19fc2801d2bac9675
MD5
496171c22fb4c92709307fcbb0da5afc
CRC-32
f610d14b
File type
Microsoft Word 95 to 2003
First seen
2012-08-22

Example 2

File Information

Size
322K
SHA-1
1d2e342ba66b9e12afb37f4b322b297a9d6c37d9
MD5
d05e8b7ea5c6ebd3b04cf7f06abb5217
CRC-32
260b45ce
File type
Rich Text Format (RTF)
First seen
2012-04-20

Example 3

File Information

Size
11K
SHA-1
bfc5437c9fe5276e4658676e02909949fc29c269
MD5
488cbd41c278a2b1355834ebe0968d55
CRC-32
aea3397f
File type
Rich Text Format (RTF)
First seen
2013-04-19

Further information

There is more information about Exp/20120158-A on the blog article Microsoft Word Intruder Revealed – inside a malware construction kit.