× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 01021dbb9d60eaf7d34dc4ddbf41d4be5acff8d7469baa6a55d57253eb589450
File name: 7ba97ff41d8ccd67436aaf56cf05b687a339f897
Detection ratio: 40 / 62
Analysis date: 2018-03-29 15:57:51 UTC ( 1 year, 1 month ago ) View latest
Antivirus Result Update
AegisLab Troj.Win64.BitMiner.tnck 20180329
AhnLab-V3 Trojan/Win64.BitCoinMiner.R160845 20180329
ALYac Misc.Riskware.BitCoinMiner 20180329
Antiy-AVL RiskWare[RiskTool]/Win64.BitCoinMiner 20180329
Arcabit Application.BitcoinMiner.HO 20180329
Avira (no cloud) TR/BitCoinMiner.decxj 20180329
AVware Trojan.Win32.Generic!BT 20180329
BitDefender Application.BitcoinMiner.HO 20180329
CAT-QuickHeal PUA.MineBicoin.S558839 20180329
ClamAV Win.Malware.Agent-6412297-0 20180329
Cyren W64/S-6d3e5a73!Eldorado 20180329
DrWeb Tool.BtcMine.569 20180329
Emsisoft Application.BitcoinMiner.HO (B) 20180329
ESET-NOD32 a variant of Win64/CoinMiner.AQ potentially unwanted 20180329
F-Prot W64/S-6d3e5a73!Eldorado 20180329
F-Secure Application.BitcoinMiner.HO 20180329
Fortinet Adware/BitMiner 20180329
Ikarus Trojan.Win64.BitMiner 20180329
Sophos ML heuristic 20180121
Jiangmin Trojan.BitMiner.w 20180329
K7AntiVirus Unwanted-Program ( 004cf63c1 ) 20180329
K7GW Unwanted-Program ( 004cf63c1 ) 20180329
Kaspersky Trojan.Win64.BitMiner.b 20180329
Malwarebytes RiskWare.BCMiner 20180329
MAX malware (ai score=85) 20180329
McAfee W64/CoinMiner 20180329
McAfee-GW-Edition W64/CoinMiner 20180329
Microsoft Trojan:Win64/MineBicoin.Y 20180329
NANO-Antivirus Riskware.Win64.BtcMine.dtzmeg 20180329
Panda HackTool/BitCoinMiner 20180329
Sophos AV Bitcoin Miner (PUA) 20180329
Symantec Trojan.Gen.NPE 20180329
Tencent Win64.Trojan.Bitminer.Ajmc 20180329
TrendMicro HKTL_COINMINE 20180329
TrendMicro-HouseCall HKTL_COINMINE 20180329
VBA32 Trojan.Win64.BitMiner 20180329
VIPRE Trojan.Win32.Generic!BT 20180329
Yandex Riskware.BitCoinMiner! 20180329
Zillya Trojan.BitMiner.Win64.1 20180328
ZoneAlarm by Check Point Trojan.Win64.BitMiner.b 20180329
Ad-Aware 20180329
Alibaba 20180329
Avast 20180329
Avast-Mobile 20180329
AVG 20180329
Baidu 20180329
Bkav 20180329
CMC 20180329
Comodo 20180329
CrowdStrike Falcon (ML) 20170201
Cybereason 20180225
Cylance 20180329
eGambit 20180329
Endgame 20180316
GData 20180329
Kingsoft 20180329
eScan 20180329
nProtect 20180329
Palo Alto Networks (Known Signatures) 20180329
Qihoo-360 20180329
Rising 20180329
SentinelOne (Static ML) 20180225
SUPERAntiSpyware 20180329
Symantec Mobile Insight 20180311
TheHacker 20180327
TotalDefense 20180329
Trustlook 20180329
ViRobot 20180329
WhiteArmor 20180324
Zoner 20180329
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
12
Uncompressed size
20233368
Highest datetime
2017-09-08 11:18:14
Lowest datetime
2014-09-24 17:48:38
Contained files by extension
dll
10
exe
1
Contained files by type
Portable Executable
11
directory
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xd10320ca

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
8390656

ZipCompressedSize
5560092

FileTypeExtension
zip

ZipFileName
minergate-cli.exe

ZipBitFlag
0

ZipModifyDate
2014:09:25 11:12:04

File identification
MD5 7f3ebb072a81626b5b315ab8d82f1fb5
SHA1 b59c1166226a927c7b8308af44427516892b9213
SHA256 01021dbb9d60eaf7d34dc4ddbf41d4be5acff8d7469baa6a55d57253eb589450
ssdeep
196608:E9H4xJgoWQje5L1rGlFJ2QOTEj8DvSqrWXPWZfTFj71bzl1io1wm1pfz:k5h1rGlFwQObb4sbdRbzPfdpr

File size 10.1 MB ( 10597771 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2018-03-28 11:31:47 UTC ( 1 year, 1 month ago )
Last submission 2018-03-29 15:57:51 UTC ( 1 year, 1 month ago )
File names 7ba97ff41d8ccd67436aaf56cf05b687a339f897
x64.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!