× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0f91792b86c6c015023bf5b904a01fef3740097383523806561f3a5a35e04c7e
File name: 40692
Detection ratio: 0 / 61
Analysis date: 2018-01-04 01:40:23 UTC ( 1 year ago )
Antivirus Result Update
Ad-Aware 20171225
AegisLab 20180104
AhnLab-V3 20180103
Alibaba 20180103
ALYac 20180103
Antiy-AVL 20180103
Arcabit 20180103
Avast 20180103
Avast-Mobile 20180103
AVG 20180103
Avira (no cloud) 20180103
AVware 20180103
Baidu 20180103
BitDefender 20180104
Bkav 20180103
CAT-QuickHeal 20180103
ClamAV 20180103
CMC 20180103
Comodo 20180104
CrowdStrike Falcon (ML) 20171016
Cybereason 20171103
Cylance 20180104
Cyren 20180104
DrWeb 20180103
eGambit 20180104
Emsisoft 20180104
Endgame 20171130
ESET-NOD32 20180103
F-Prot 20180104
F-Secure 20180104
Fortinet 20180103
GData 20180104
Sophos ML 20170914
Jiangmin 20180103
K7AntiVirus 20180103
K7GW 20180104
Kaspersky 20180103
Kingsoft 20180104
Malwarebytes 20180104
MAX 20180103
McAfee 20180102
McAfee-GW-Edition 20180104
Microsoft 20180104
eScan 20180104
NANO-Antivirus 20180104
nProtect 20180104
Palo Alto Networks (Known Signatures) 20180104
Panda 20180103
Qihoo-360 20180104
Rising 20180104
SentinelOne (Static ML) 20171224
Sophos AV 20180104
SUPERAntiSpyware 20180104
Symantec 20180104
Tencent 20180104
TheHacker 20180103
TotalDefense 20180103
TrendMicro 20180103
TrendMicro-HouseCall 20180103
Trustlook 20180104
VBA32 20180103
VIPRE 20180103
ViRobot 20180103
Webroot 20180104
WhiteArmor 20171226
Yandex 20171229
Zillya 20180103
ZoneAlarm by Check Point 20180103
Zoner 20180103
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
6
Uncompressed size
403623
Highest datetime
2018-01-03 22:41:14
Lowest datetime
2016-03-26 18:58:16
Contained files by extension
xml
4
txt
1
dll
1
Contained files by type
XML
4
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x08143e1f

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
216375

ZipCompressedSize
7190

FileTypeExtension
zip

ZipFileName
gangModData/MemberPool.xml

ZipBitFlag
0

ZipModifyDate
2018:01:02 15:15:09

File identification
MD5 f2f941f4b4b0c36faeb77085f2669190
SHA1 28e0603fdc23cbfcd6bfced3c111bcc0dd58fddf
SHA256 0f91792b86c6c015023bf5b904a01fef3740097383523806561f3a5a35e04c7e
ssdeep
1536:lcbzQFckvGKzC4sCfhjfFaz26q8ZZ7theG8x5Dff8HoJpjqgoZP:l9FOGC4sCfhAJjeDx5DcHoJUgoZP

File size 62.9 KB ( 64361 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2018-01-04 01:40:23 UTC ( 1 year ago )
Last submission 2018-01-04 01:40:23 UTC ( 1 year ago )
File names 40692
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!