× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 078c868bc72c1906d8e5e1b8bf205dc578fe2c71ef7d700b2146bd7f7b61c969
File name: RimhillEx.zip
Detection ratio: 0 / 60
Analysis date: 2019-01-10 12:53:14 UTC ( 1 week ago )
Antivirus Result Update
Acronis 20190110
Ad-Aware 20190110
AegisLab 20190110
AhnLab-V3 20190109
Alibaba 20180921
ALYac 20190110
Antiy-AVL 20190110
Arcabit 20190110
Avast 20190110
Avast-Mobile 20190110
AVG 20190110
Avira (no cloud) 20190110
Babable 20180918
Baidu 20190110
BitDefender 20190110
Bkav 20190108
CAT-QuickHeal 20190110
ClamAV 20190110
CMC 20190110
Comodo 20190110
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20190110
Cyren 20190110
DrWeb 20190110
eGambit 20190110
Emsisoft 20190110
Endgame 20181108
ESET-NOD32 20190110
F-Prot 20190110
F-Secure 20190110
Fortinet 20190110
GData 20190110
Ikarus 20190110
Sophos ML 20181128
Jiangmin 20190110
K7AntiVirus 20190110
K7GW 20190110
Kaspersky 20190110
Kingsoft 20190110
Malwarebytes 20190110
MAX 20190110
McAfee 20190110
McAfee-GW-Edition 20190110
Microsoft 20190110
eScan 20190110
NANO-Antivirus 20190110
Palo Alto Networks (Known Signatures) 20190110
Panda 20190109
Qihoo-360 20190110
Rising 20190110
SentinelOne (Static ML) 20181223
Sophos AV 20190110
SUPERAntiSpyware 20190109
Symantec 20190110
TACHYON 20190110
Tencent 20190110
TheHacker 20190106
Trapmine 20190103
TrendMicro 20190110
TrendMicro-HouseCall 20190110
Trustlook 20190110
VBA32 20190109
ViRobot 20190110
Webroot 20190110
Yandex 20181229
Zillya 20190109
ZoneAlarm by Check Point 20190110
Zoner 20190110
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
876501
Highest datetime
2017-02-24 22:48:32
Lowest datetime
2017-02-24 22:48:32
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xb4d7106b

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
876501

ZipCompressedSize
796280

FileTypeExtension
zip

ZipFileName
RimhillExSetup.exe

ZipBitFlag
0

ZipModifyDate
2017:02:24 22:48:32

File identification
MD5 85a930f745a0825397c70aa1ca1b05ba
SHA1 afb3873af1e38487542acf663dfa30ca41ceaa80
SHA256 078c868bc72c1906d8e5e1b8bf205dc578fe2c71ef7d700b2146bd7f7b61c969
ssdeep
24576:CuNJccbtlGfztBVXSN4jd1LB7DhaGWV43A6h:CuHPGfZYWd//8VSJ

File size 777.8 KB ( 796450 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2017-02-24 21:50:09 UTC ( 1 year, 10 months ago )
Last submission 2019-01-10 12:53:14 UTC ( 1 week ago )
File names RimhillEx.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!