× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 12535ec7f3bf9452040a3721ddd3e8302f925eb3f7caa54300b8bc3561512d2d
File name: Ghostpress.zip
Detection ratio: 1 / 59
Analysis date: 2018-10-11 13:35:34 UTC ( 3 months, 1 week ago ) View latest
Antivirus Result Update
Cylance Unsafe 20181011
Ad-Aware 20181011
AegisLab 20181011
AhnLab-V3 20181011
Alibaba 20180921
ALYac 20181011
Antiy-AVL 20181011
Arcabit 20181011
Avast 20181011
Avast-Mobile 20181011
AVG 20181011
Avira (no cloud) 20181011
Babable 20180918
Baidu 20181011
BitDefender 20181011
Bkav 20181011
CAT-QuickHeal 20181010
ClamAV 20181011
CMC 20181011
Comodo 20181011
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cyren 20181011
DrWeb 20181011
eGambit 20181011
Emsisoft 20181011
Endgame 20180730
ESET-NOD32 20181011
F-Prot 20181011
F-Secure 20181011
Fortinet 20181011
GData 20181011
Ikarus 20181011
Sophos ML 20180717
Jiangmin 20181011
K7AntiVirus 20181011
K7GW 20181011
Kaspersky 20181011
Kingsoft 20181011
Malwarebytes 20181011
MAX 20181011
McAfee 20181011
McAfee-GW-Edition 20181011
Microsoft 20181011
eScan 20181011
NANO-Antivirus 20181011
Palo Alto Networks (Known Signatures) 20181011
Panda 20181011
Qihoo-360 20181011
Rising 20181011
SentinelOne (Static ML) 20181011
Sophos AV 20181011
SUPERAntiSpyware 20181011
Symantec 20181010
Symantec Mobile Insight 20181001
TACHYON 20181011
Tencent 20181011
TheHacker 20181008
TrendMicro 20181010
TrendMicro-HouseCall 20181010
Trustlook 20181011
VBA32 20181011
VIPRE 20181011
ViRobot 20181011
Webroot 20181011
Yandex 20181010
Zillya 20181010
ZoneAlarm by Check Point 20181011
Zoner 20181010
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
1242054
Highest datetime
2017-03-09 18:47:22
Lowest datetime
2017-03-08 14:13:24
Contained files by extension
pdf
1
exe
1
Contained files by type
PDF
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x4e404d9a

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
103790

ZipCompressedSize
99902

FileTypeExtension
zip

ZipFileName
Help.pdf

ZipBitFlag
0

ZipModifyDate
2017:03:08 14:13:24

Compressed bundles
File identification
MD5 dd6cc2749facc3b955e0db6ccc1f6928
SHA1 0faef75115098e956722609f61e5cfa5e6c0f276
SHA256 12535ec7f3bf9452040a3721ddd3e8302f925eb3f7caa54300b8bc3561512d2d
ssdeep
12288:RpYtFwYHLvu0ketb9GOL0ZsvMJHx3JXlm4o0BRayD1Shaq9idr7NiNOVZa5Z:spHS0ketxGA0ZsMxNxZdDGFur7sNIZG

File size 675.1 KB ( 691299 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip via-tor

VirusTotal metadata
First submission 2017-03-09 18:56:24 UTC ( 1 year, 10 months ago )
Last submission 2018-12-28 07:31:23 UTC ( 3 weeks, 4 days ago )
File names VirusShare_dd6cc2749facc3b955e0db6ccc1f6928
Ghostpress.zip
Ghostpress.zip
Ghostpress-1.zip
VirusShare_dd6cc2749facc3b955e0db6ccc1f6928
Ghostpress (1).zip
dl.php
output.110148114.txt
Ghostpress (1).zip
_lUVe.ocx
Ghostpress ANTIKEYLOGGER.zip
Ghostpress 1.3.zip
ghostpress_1.3.422.zip
Ghostpress - Free AntiKeylogger.zip
aa
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!