× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1b8a0ee0ad1e9349ea8c6a20929759a1f22395a4d71f3e2c158f28edd99e0b28
File name: document.zip
Detection ratio: 4 / 57
Analysis date: 2015-03-12 13:54:24 UTC ( 2 years, 9 months ago ) View latest
Antivirus Result Update
AVG FakeAlert 20150312
Qihoo-360 HEUR/QVM02.0.Malware.Gen 20150312
Sophos AV Mal/Generic-S 20150312
Tencent Win32.Trojan.Downloader-pdf.Auto 20150312
Ad-Aware 20150312
AegisLab 20150312
Yandex 20150311
AhnLab-V3 20150312
Alibaba 20150312
ALYac 20150312
Antiy-AVL 20150312
Avast 20150312
Avira (no cloud) 20150312
AVware 20150312
Baidu-International 20150312
BitDefender 20150312
Bkav 20150312
ByteHero 20150312
CAT-QuickHeal 20150312
ClamAV 20150312
CMC 20150312
Comodo 20150312
Cyren 20150312
DrWeb 20150312
Emsisoft 20150312
ESET-NOD32 20150312
F-Prot 20150312
F-Secure 20150312
Fortinet 20150312
GData 20150312
Ikarus 20150312
Jiangmin 20150311
K7AntiVirus 20150312
K7GW 20150312
Kaspersky 20150312
Kingsoft 20150312
Malwarebytes 20150312
McAfee 20150312
McAfee-GW-Edition 20150312
Microsoft 20150312
eScan 20150312
NANO-Antivirus 20150312
Norman 20150312
nProtect 20150312
Panda 20150311
Rising 20150312
SUPERAntiSpyware 20150312
Symantec 20150312
TheHacker 20150310
TotalDefense 20150312
TrendMicro 20150312
TrendMicro-HouseCall 20150312
VBA32 20150312
VIPRE 20150312
ViRobot 20150312
Zillya 20150312
Zoner 20150311
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
26112
Highest datetime
2015-03-12 14:29:58
Lowest datetime
2015-03-12 14:29:58
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
788

ZipCRC
0x6590b02b

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
26112

ZipCompressedSize
10858

FileTypeExtension
zip

ZipFileName
document.exe

ZipBitFlag
0

ZipModifyDate
2015:03:12 14:29:29

File identification
MD5 d6ed1476d4465635821fa036ee360433
SHA1 4f17ca286f923fa16fc7ab00891223c2bc715603
SHA256 1b8a0ee0ad1e9349ea8c6a20929759a1f22395a4d71f3e2c158f28edd99e0b28
ssdeep
192:b0a6AGP6PIKjzZkP2TtKLXLxUBTnGTTJFv1EQmAncanQeygUElvuGKCMmc6z:boARwqzZa2ILV+T+TJFGhkcaQdAugMIz

File size 10.7 KB ( 10980 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe attachment zip via-tor

VirusTotal metadata
First submission 2015-03-12 12:29:51 UTC ( 2 years, 9 months ago )
Last submission 2015-07-01 10:31:16 UTC ( 2 years, 5 months ago )
File names document.zip
ba91737fe26c748034ca933f049732bf
document.zip
7c8eae4d4f4677c1d4d70286190189d6
2015_03_12_16_36_19.000954
be95ac8832a6a408bcfce125babf8814
f4b9b1b0a0711141615d2be0236f5738
d8f962df58bd89d3b752a126e2ed2ae8
document-3.zip
virus4.zip
d6ace3ca7de51c92e3094a1c7f5fc8bc
61646ae8ceb582cbac010f96d544b0fe
attachment.zip
f4ef8b7e070fd7a7212de3f593f31662
decba38058cd5d1a4a46336ff824233b
3c9411b14496ea17311449941e246d1d
65741316e52a044bcb4886f2811577a6
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!