Categories: Malware

What is “Exploit.CVE-2014-6352”?

The Exploit.CVE-2014-6352 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Exploit.CVE-2014-6352 virus can do?

Injection (inter-process)
Injection with CreateRemoteThread in a remote process
Uses Windows utilities for basic functionality
A potential decoy document was displayed to the user
Network activity detected but not expressed in API logs
Harvests information related to installed mail clients

How to determine Exploit.CVE-2014-6352?


File Info:
crc32: 5F0DB9E2md5: d8fc9f24446c7f72d4c7b2b9e5bc9965name: upload_filesha1: 728d254bfd17fa8a6372e47d865a89401c9acaa7sha256: 129f89eaae67ccb20150588cc90d3906e90f75052599fef7806d5d55e808b498sha512: 44f69fcd119906caa017ad093d693965757db1963df9075f8be3ec8b6d2517fd7b20000dfbd4db46ec778302250875bce4f0147e829d1f3e739499505989aff1ssdeep: 6144:n28Mbo2FoHHqgVG9qETx83/AseZvvAjCoPV2yOiuuiYkm1MB4FXx0GiGbpO6y:+o2aJZEy3/AdZOdvfXeGlbU6ytype: Composite Document File V2 Document, corrupt: Can't read SAT
Version Info:
0: [No Data]

Exploit.CVE-2014-6352 also known as:

FireEye	Trojan.GenericKD.34416118
ALYac	Exploit.CVE-2014-6352
AegisLab	Trojan.UKP.Generic.4!c
BitDefender	Trojan.GenericKD.34416118
NANO-Antivirus	Trojan.Win32.Redcap.hsqoli
MAX	malware (ai score=83)
Antiy-AVL	Trojan[Exploit]/OLE.CVE-2014-6352
Microsoft	Trojan:Win32/Bluteal!rfn
Arcabit	Trojan.Generic.D20D25F6
GData	Trojan.GenericKD.34416118
SentinelOne	DFI – Malicious OLE
Fortinet	W32/Dropper.GIF!tr
BitDefenderTheta	Gen:NN.ZedlaF.34216.ty5@aSY3W2ci