× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a871f329342b27c0ee99ce3204b4e8eba6c02bea8e921cca1a3a97e6b2c50a8b
File name: order_id.zip
Detection ratio: 17 / 54
Analysis date: 2014-06-26 17:21:53 UTC ( 1 year, 1 month ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Agent.BDSD 20140626
AntiVir TR/Crypt.Xpack.73543 20140626
Avast Win32:Malware-gen 20140626
BitDefender Trojan.Agent.BDSD 20140626
Commtouch W32/Trojan.QPGV-4277 20140626
Emsisoft Trojan.Agent.BDSD (B) 20140626
GData Trojan.Agent.BDSD 20140626
Ikarus Trojan-Spy.Zbot 20140626
Malwarebytes Spyware.Zbot.VXGen 20140626
MicroWorld-eScan Trojan.Agent.BDSD 20140626
Qihoo-360 HEUR/Malware.QVM20.Gen 20140626
Rising PE:Malware.XPACK-HIE/Heur!1.9C48 20140623
Sophos Troj/Agent-AHNF 20140626
Symantec Trojan.Smoaler 20140626
TrendMicro TROJ_AGENT.GNQA 20140626
TrendMicro-HouseCall TROJ_GE.8CCDEC6C 20140626
VIPRE Win32.Malware!Drop 20140626
AVG 20140626
AegisLab 20140626
Agnitum 20140626
AhnLab-V3 20140626
Antiy-AVL 20140626
Baidu-International 20140626
Bkav 20140625
ByteHero 20140626
CAT-QuickHeal 20140626
CMC 20140624
ClamAV 20140626
Comodo 20140626
DrWeb 20140626
ESET-NOD32 20140626
F-Prot 20140626
F-Secure 20140626
Fortinet 20140626
Jiangmin 20140626
K7AntiVirus 20140626
K7GW 20140626
Kaspersky 20140626
Kingsoft 20140626
McAfee 20140626
McAfee-GW-Edition 20140626
Microsoft 20140626
NANO-Antivirus 20140626
Norman 20140626
Panda 20140626
SUPERAntiSpyware 20140626
Tencent 20140626
TheHacker 20140624
TotalDefense 20140626
VBA32 20140626
ViRobot 20140626
Zillya 20140626
Zoner 20140626
nProtect 20140626
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
116224
Highest datetime
2014-06-26 05:22:14
Lowest datetime
2014-06-26 05:22:14
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x53268cfc

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
116224

ZipCompressedSize
71180

FileTypeExtension
zip

ZipFileName
order_id_78362478236784236784623875.exe

ZipBitFlag
0

ZipModifyDate
2014:06:26 05:22:07

Compressed bundles
File identification
MD5 583e55d58f4cadf9da8cdfa9d4327590
SHA1 7161e88e30ee1b4ed7ac1c70f3173ab918d694aa
SHA256 a871f329342b27c0ee99ce3204b4e8eba6c02bea8e921cca1a3a97e6b2c50a8b
ssdeep
1536:k7Vqzash0GRi3R73vOVbzxP3fjDhMS6PoLthXvCQBAi+gTrrZQDU9exrlC:Q1sh7i3dfOtzxP3rlM7StLr+gTr99GY

File size 69.7 KB ( 71392 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe attachment zip

VirusTotal metadata
First submission 2014-06-26 10:30:07 UTC ( 1 year, 1 month ago )
Last submission 2015-07-29 22:48:28 UTC ( 2 days, 23 hours ago )
File names 583e55d58f4cadf9da8cdfa9d4327590.zip
583e55d58f4cadf9da8cdfa9d4327590.malware
order_id(1).zip
xxorder_id.zip
order_id.zip.rename_to_zip_no_password
order_id.zip
file-7171274_zip
order_id {rcvd 2014-06-26 16h29}.zip
1046450a8ac712d040b92e3461a8d66c
order_id.zip
contents
7161e88e30ee1b4ed7ac1c70f3173ab918d694aa.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!