× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 02eed15f6426ccf31d0aa3fdceb474bed6d01be349a33fa4eb426ea3206c90fd
File name: 0002_.b64.zip
Detection ratio: 2 / 57
Analysis date: 2015-03-31 14:34:26 UTC ( 2 years, 4 months ago ) View latest
Antivirus Result Update
CMC Packed.Win32.Katusha.1!O 20150330
Norman Kryptik.CFBF 20150331
Ad-Aware 20150331
AegisLab 20150331
Yandex 20150330
AhnLab-V3 20150331
Alibaba 20150331
ALYac 20150331
Antiy-AVL 20150331
Avast 20150331
AVG 20150331
Avira (no cloud) 20150402
AVware 20150331
Baidu-International 20150331
BitDefender 20150331
Bkav 20150331
ByteHero 20150331
CAT-QuickHeal 20150331
ClamAV 20150331
Comodo 20150331
Cyren 20150331
DrWeb 20150331
Emsisoft 20150331
ESET-NOD32 20150331
F-Prot 20150331
F-Secure 20150331
Fortinet 20150331
GData 20150331
Ikarus 20150331
Jiangmin 20150330
K7AntiVirus 20150331
K7GW 20150331
Kaspersky 20150331
Kingsoft 20150331
Malwarebytes 20150331
McAfee 20150331
McAfee-GW-Edition 20150331
Microsoft 20150331
eScan 20150331
NANO-Antivirus 20150331
nProtect 20150331
Panda 20150331
Qihoo-360 20150331
Rising 20150331
Sophos AV 20150331
SUPERAntiSpyware 20150331
Symantec 20150331
Tencent 20150331
TheHacker 20150330
TotalDefense 20150331
TrendMicro 20150331
TrendMicro-HouseCall 20150331
VBA32 20150331
VIPRE 20150331
ViRobot 20150331
Zillya 20150331
Zoner 20150330
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
30208
Highest datetime
2015-03-31 15:26:40
Lowest datetime
2015-03-31 15:26:40
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
788

ZipCRC
0x0022903a

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
30208

ZipCompressedSize
14385

FileTypeExtension
zip

ZipFileName
Document2121.exe

ZipBitFlag
0

ZipModifyDate
2015:03:31 15:26:20

File identification
MD5 513069a2691428c31518abcc69eef46a
SHA1 032019598822b5c35cceb549d9c8f5981887bc45
SHA256 02eed15f6426ccf31d0aa3fdceb474bed6d01be349a33fa4eb426ea3206c90fd
ssdeep
384:q1Ejpv7xSoOe/ffLZxuKBSobLMbWff/wMQZdPMC0nowVxbn:pZ5OOn9D9EWfDQHr0nokN

File size 14.2 KB ( 14515 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe attachment zip

VirusTotal metadata
First submission 2015-03-31 14:31:16 UTC ( 2 years, 4 months ago )
Last submission 2016-06-09 03:57:22 UTC ( 1 year, 2 months ago )
File names E95WPGLT.zip
JLodER4b.zip
Virus xXYyrdyG.zip
smRPv2it.zip
RSMkuGx1.zip
VObWJSCo.zip
dLCQQWB8.zip
unknown-1
j2SHQq2h.zip
Psh6kQS_.zip
m_698NGM.zip
8e96db988264a84d931cb2bf1923e6ed
z4sPVVgy.zip
EX_eGndV.zip
cPIxCX{9.zip
33ca10b6dfc1435bab28be089eb8e5cd
164d62ced3c6a3b86c4ef271d85e2de2
FXOWlZoU.zip
A54GkyI2.zip
sYrWvmXt.zip
HjFqLBNQ.zip
KMpVtzgB.zip
lYW7p5y7.zip
W6YJAOk6.zip
eYliPjbz.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!