| * | Depth | Type | Name | Size | Compressed | Attributes | Date | Time (UTC) | Total Size | Total Items | CRC-32 | MD5 | SHA-1 | Details | Thumbnail |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 0 | MIME | http://www.scopr.com/test/infected_activemime.eml.bin | 50,491 | 50,491 | ---------- | 01.01.1970 | 01:00:00 | 139,135 | 38 | a6c72386 | 3914fa82106b01aaf020db27a2973bbd | 8b727c006b5ba51ee410e55c7489baddc9cf499a | Suspicious;Scopr:AntiMalware:Malware=SuspiciousExtensionPattern-MIME(bin)-HTML(eml);Scopr:AntiMalware:Scanner=Scopr;Scopr:AntiMalware:Malware=SuspiciousExtension-MIME(bin);ncd=MIME;nce=bin; | ||
| 1 | HTML | MIME_part_0 | 21,564 | 23,052 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 21,560 | 1 | a169d36e | 1a3b0770a9255fa94899ec4e7b562619 | 208013f6f55754a78ae9cbeff5aee2a1f84933c1 | MIMEBodyPart;encoding=quoted-printable;ncd=MIME,HTML;nce=bin,?; | ||
| 2 | HTML | MIME_part_0 | 21,560 | 21,560 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 0 | 0 | 4a9c59f8 | 9320b7e9bf60f42e8def9020df22a40a | cbeb78b74c9a509ed58c4c1c1e15c3963280f6fb | ncd=MIME,HTML,HTML;nce=bin,?,?; | ||
| 1 | WMF | MIME_part_1 | 560 | 768 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 0 | 0 | 10e93eb7 | 99d6973ecd28e1913022544973d278d4 | 33375948aae081e417cfcbdbad59ae257938c620 | MIMEBodyPart;encoding=base64;numobjects=3;ncd=MIME,WMF;nce=bin,?; | ||
| 1 | ZIP:THMX | MIME_part_2 | 3,135 | 4,292 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 8,398 | 5 | b7538338 | 3c12528ed7aec745a489a1a4e42422f4 | f112f78c244664c1ab9be1123abdb9dea08c639d | MIMEBodyPart;encoding=base64;crc32=0xbf0fdee9;ncd=MIME,ZIP:THMX;nce=bin,?; | ||
| 2 | XML | [Content_Types].xml | 540 | 255 | ----- | 01.01.1980 | 00:00:00 | 0 | 0 | bf0fdee9 | c9cbcd6f377d2c787064d8e5464412f1 | e52b0a05ec21d91953adf435f79216c13f0abd7d | compressionmethodid=8;compressionmethod=deflate;ncd=MIME,ZIP:THMX,XML;nce=bin,?,xml; | ||
| 2 | XML | _rels/.rels | 310 | 192 | ----- | 01.01.1980 | 00:00:00 | 0 | 0 | e7a7d6a5 | 72721ae37030f210de7a73d75dbc33eb | 0391c4107d2d980a3453fb01c7a3cf87e0fd63a9 | compressionmethodid=8;compressionmethod=deflate;ncd=MIME,ZIP:THMX,XML;nce=bin,?,rels; | ||
| 2 | XML | theme/theme/themeManager.xml | 138 | 131 | ----- | 01.01.1980 | 00:00:00 | 0 | 0 | 1696796b | ad57ce056452726e5fb113fb8c6f229e | 1f3827fdb4f84b4aa192554a13b3176a79f400e7 | compressionmethodid=8;compressionmethod=deflate;ncd=MIME,ZIP:THMX,XML;nce=bin,?,xml; | ||
| 2 | XML | theme/theme/theme1.xml | 7,127 | 1,735 | ----- | 01.01.1980 | 00:00:00 | 0 | 0 | 2d7d5ea5 | 79047617aa6160cc3c7a0f952b77c968 | 7e6d7fb9fb02f8c9ad3e81507167199340fd12b3 | compressionmethodid=8;compressionmethod=deflate;ncd=MIME,ZIP:THMX,XML;nce=bin,?,xml; | ||
| 2 | XML | theme/theme/_rels/themeManager.xml.rels | 283 | 182 | ----- | 01.01.1980 | 00:00:00 | 0 | 0 | 9f90d10d | c8d47b0b4a92b9587777ef824be3c8c4 | acb1a688c812a9f476143fb88a32c8c5475cf97c | compressionmethodid=8;compressionmethod=deflate;ncd=MIME,ZIP:THMX,XML;nce=bin,?,rels; | ||
| 1 | XML | MIME_part_3 | 314 | 355 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 0 | 0 | 57c7ceda | 6b7a472a22fbdbff4b2b08ddb4f43735 | c6df700168d3f5a90ff2713b78f8ef1446927102 | MIMEBodyPart;encoding=quoted-printable;ncd=MIME,XML;nce=bin,?; | ||
| 1 | ACTIVEMIME | MIME_part_4 | 13,009 | 17,806 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 70,443 | 23 | dc96dc1e | b182b38223c1f113a7790181efcd521f | 5a23cdc5b709ee56c7db2ca20e13f6a66859f7c7 | MIMEBodyPart;encoding=base64;ncd=MIME,ACTIVEMIME;nce=bin,?; | ||
| 2 | OLESS | ActiveMime | 39,936 | 12,792 | -AS-- | 01.01.1970 | 01:00:00 | 30,507 | 22 | 3cbf95b2 | 415777b013e1f54e13936a7e399e84df | b6142f079428d70b8549e1f5c53ea24a2edbba8f | ncd=MIME,ACTIVEMIME,OLESS;nce=bin,?,?; | ||
| 3 | ? | VBA/dir | 902 | 902 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | dc45c695 | fbe17ba8b0cc3cf3eec3f318e409119a | 8720953f5bdbbd5d881d0168ea933f6c9ff84201 | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 4 | ? | VBA/dir.vba | 1,503 | 901 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | d8f7a497 | 5dc198eff797c7ff04f042aee3b1804a | 84956f67dff3c81a9fc42d736460e492a9cd5e58 | platform=1;projectname=vdcasvvv;docstring=;helpfilepath=;ncd=MIME,ACTIVEMIME,OLESS,?,?;nce=bin,?,?,?,vba; | ||
| 3 | ? | VBA/Module1 | 2,353 | 2,353 | -AS-- | 01.01.1970 | 01:00:00 | 11 | 4 | 2318529b | 42b5cbb42afe88c28aef4ef08144ed13 | 010890424d3cc86b64bc1048c66cae717d825964 | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 4 | VBS | VBA/Module1.vba | 901 | 495 | -AS-- | 01.01.1970 | 01:00:00 | 11 | 4 | f64669e8 | f88e8291259c685a488fd4322e992364 | b1f207c60d422f2343c04e44e5824a77c132920e | ncd=MIME,ACTIVEMIME,OLESS,?,VBS;nce=bin,?,?,?,vba; | ||
| 3 | ? | VBA/Module2 | 7,854 | 7,854 | -AS-- | 01.01.1970 | 01:00:00 | 71 | 3 | dd841fd8 | 6a52d488082fcc666ec93eea59493002 | 727c9826b037392f912778d11e0381f0daafa5bf | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 4 | VBS | VBA/Module2.vba | 3,877 | 1,636 | -AS-- | 01.01.1970 | 01:00:00 | 71 | 3 | 25b43fbd | 20b5879c7bcdb44d3841767f80787a4f | d2ab522727c851a60a52a9a97692180e99ba79cc | ncd=MIME,ACTIVEMIME,OLESS,?,VBS;nce=bin,?,?,?,vba; | ||
| 3 | ? | VBA/hgfdcsxsdvsd | 1,104 | 1,104 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | 1058ecb3 | 6bf36fd295e017e6037409bf6e385799 | 37e1f0ef464d4a28b63a0e5c92a7374a8025e5d4 | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 4 | PL | VBA/hgfdcsxsdvsd.vba | 332 | 212 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | 5c872f36 | 612789d5fa0234c769c90c18d288832d | 9f4935bbee5c77bafd94cb5fb96f625bd9370afa | WrongExtension;ncdncemismatch=1;ncd=MIME,ACTIVEMIME,OLESS,?,PL;nce=bin,?,?,?,vba; | ||
| 3 | ? | VBA/uytrfedsavsav | 1,178 | 1,178 | -AS-- | 01.01.1970 | 01:00:00 | 14 | 2 | 2f251d94 | 0baa264366003a8d9de2d4ce7c79054b | 4da4c0d089083d5d35fb0241a5485383268bee89 | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 4 | TXT | VBA/uytrfedsavsav.vba | 347 | 236 | -AS-- | 01.01.1970 | 01:00:00 | 14 | 2 | 28e826de | b1f1d76727e57dc95e9b31b1641bdd99 | 9a266f62aa639d8d55cb9bf82f2b9920de49fe55 | characterencoding=7-bit US-ASCII;ncd=MIME,ACTIVEMIME,OLESS,?,TXT;nce=bin,?,?,?,vba; | ||
| 3 | BASE64 | PROJECT | 606 | 606 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | 5bfb96d9 | f7e11333216f7201785f8a741714b683 | db1ef2695405a79613750a9cd5df45e9a02a7a1b | ncd=MIME,ACTIVEMIME,OLESS,BASE64;nce=bin,?,?,?; | ||
| 3 | ? | PROJECTwm | 131 | 131 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | 4638f5bd | 18b603bfcc07ec8c2951b028c5d72a5e | 0a1c1a8d2cb6d31aab7ff5f8b67cdeeb5a0e803e | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 3 | ? | uytrfedsavsav/f | 247 | 247 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | f008d4fb | d45a421bb108c53362c718238b581117 | 02cfc41a1c83fd21ce57d4b9b6f9359260b3782f | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 3 | ? | uytrfedsavsav/o | 15,600 | 15,600 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | b4c6a8dd | e1483bc47fae3891edd149669bcf8548 | 54403eefb79097b5d3fe91ec05989fcb3f2e0ed2 | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 3 | ? | uytrfedsavsav/CompObj | 97 | 97 | -AS-- | 01.01.1970 | 01:00:00 | 0 | 0 | 36d8574b | 8b485527ad9d96fe72d3fba385f0ad95 | 0f8beae8d51fe366fcd51430d0e2c0cd319419ed | ncd=MIME,ACTIVEMIME,OLESS,?;nce=bin,?,?,?; | ||
| 3 | TXT | uytrfedsavsav/VBFrame | 299 | 299 | -AS-- | 01.01.1970 | 01:00:00 | 40 | 2 | 43548af1 | 7a661e1b98e68d170a476d8e51ea9e00 | e6e4b4dd26b0cd236d5abcfc83fc7af33d41d61c | characterencoding=7-bit US-ASCII;ncd=MIME,ACTIVEMIME,OLESS,TXT;nce=bin,?,?,?; | ||
| 1 | TXT | MIME_part_5 | 140 | 146 | -rw-r--r-- | 01.01.1970 | 01:00:00 | 12 | 3 | 2640f00f | 557b59cc696082511fab24f33edc135c | e1b3f53fc830fbe2cbb0255923010e24746df7a1 | MIMEBodyPart;encoding=quoted-printable;characterencoding=7-bit US-ASCII;ncd=MIME,TXT;nce=bin,?; | ||
| Totals | 196,438 | 167,608 |
| * | Infected |
Executable |
Archive/Container |
Suspicious |
Encrypted |
Text |
Powered by Scopr XRay
| XRay version | 6.0.693.0 |
| Processed by user | guest |
| Start time | Thu Nov 21 09:06:51 2024 UTC |
| End time | Thu Nov 21 09:06:52 2024 UTC |
| Elapsed time | 00:00:00.376 |
| Bytes extracted | 196438 |
| Processing speed | 510.10 KB/s |
| Server default configuration | |
| Maximum extraction depth | 5 |
| Maximum extracted file size (bytes) | 50000000 |
| Maximum extracted virtual disk size (bytes) | 1073741824 |
| Maximum items per depth | 50 |
| Maximum processing time (seconds) | 10 |
| Enable Optical Character Recognition (OCR) | No |
| OCR BMP images | No |
| OCR GIF images | No |
| OCR ICO images | No |
| OCR JBIG2 images | No |
| OCR JPEG images | No |
| OCR PCX images | No |
| OCR PNG images | No |
| OCR SVG images | No |
| OCR TGA images | No |
| OCR TIFF images | No |
| OCR WEBP images | No |
| Maximum frames to OCR per image | 0 |
| Minimum OCR frame width | 0 |
| Minimum OCR frame height | 0 |
| Maximum OCR frame width | 0 |
| Maximum OCR frame height | 0 |
| Maximum OCR depth | 0 |
| Maximum images to OCR per depth | 0 |
| OCR timeout (milliseconds) | 0 |
| OCR maximum black pixel threshold (0-255) | 0 |
| OCR minimum white pixel threshold (0-255) | 255 |
| OCR extract pre-processed binarized images | 0 |
| Enable Quirc barcode scanner | No |
| Enable ZBar barcode scanner | No |
| Enable ZXing barcode scanner | No |
| Enabled ZBar Barcode Types | 0x00000000 |
| Minimum barcode bounding box width | 0x00000000 |
| Minimum barcode bounding box height | 0x00000000 |
| Maximum barcode bounding box width | 0x00000000 |
| Maximum barcode bounding box height | 0x00000000 |
| Enable min/max thresholds | No |
| Maximum barcode black pixel threshold (0-255) | 0 |
| Minimum barcode white pixel threshold (0-255) | 255 |
| Extract barcode pre-processed binarized images | 0 |
| Enable 2x zoom barcode scan | No |
| Enable photo-negative barcode scan | No |
| Enable ASCII Art barcode detection | No |
| Enable ASCII Art barcode detection | No |
| Enable BMP barcode detection | No |
| Enable GIF barcode detection | No |
| Enable ICO barcode detection | No |
| Enable JBIG2 barcode detection | No |
| Enable JPEG barcode detection | No |
| Enable JPEG2000 barcode detection | No |
| Enable PCX barcode detection | No |
| Enable PNG barcode detection | No |
| Enable SVG barcode detection | No |
| Enable TGA barcode detection | No |
| Enable TIFF barcode detection | No |
| Enable WEBP barcode detection | No |
| Enable image blockHash computation | Yes |
| Enable image PDQ hash computation | Yes |
| Enable BMP image hashing | Yes |
| Enable GIF image hashing | Yes |
| Enable ICO image hashing | Yes |
| Enable JPEG image hashing | Yes |
| Enable PCX image hashing | No |
| Enable PNG image hashing | Yes |
| Enable SVG image hashing | Yes |
| Enable TGA image hashing | No |
| Enable TIFF image hashing | Yes |
| Enable WEBP image hashing | Yes |
| Max hash image depth | 3 |
| Max hash image width | 5000 |
| Max hash image height | 5000 |
| Min hash image width | 0 |
| Min hash image height | 0 |
Engines used
| 7Z | ACE | ActiveMime | ALZip | APPLEDOUBLE | AR | ARJ | BCRYPT | BIFF | BZIP |
| CAB | CHM | CPIO | DAA | EAPPX | EXE | GZIP | HA | HYP | ICS |
| ICO | GIF | ISO9660 | JPEG | LHA | LZ | MBR | MSCIL | PNG | OLESS |
| ONE | PHAR | QOI | BMP | RAR | RPM | RPMSG | SIT | SQZ | |
| SZ | TAR | TNEF | UDF | VHD | VHDX | XAR | XBO | XZ | ZIP |
| ZOO | ZPAQ | ZST | RTF | Text | BASE64 | HQX | HTML | IHEX | IQY |
| JavaScript | MIME | Perl | PHP | Python | UUE | VBE | VBScript | WARC | XML |
| XXE | YENC |