× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 24eb11fd46915d470c3c18e769df28414f160c66c0c9504f59f1f422555af138
File name: my_resume_pdf.zip
Detection ratio: 45 / 57
Analysis date: 2016-12-07 19:11:31 UTC ( 2 years, 5 months ago )
Antivirus Result Update
Ad-Aware Trojan.Injector.BLQ 20161207
AegisLab Troj.W32.Generic!c 20161207
AhnLab-V3 Trojan/Win32.MDA.R155309 20161207
ALYac Trojan.Injector.BLQ 20161207
Antiy-AVL Trojan[Backdoor]/Win32.Androm 20161207
Arcabit Trojan.Injector.BLQ 20161207
Avast Win32:Malware-gen 20161207
AVG Inject2.CHSF 20161207
Avira (no cloud) TR/Crypt.Xpack.21728 20161207
AVware Trojan.Win32.Generic!BT 20161207
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9992 20161207
BitDefender Trojan.Injector.BLQ 20161207
Bkav W32.RansomCryptodefE.Trojan 20161207
CAT-QuickHeal TrojanPWS.Zbot.A4 20161207
Comodo UnclassifiedMalware 20161207
Cyren W32/Injector.VWIP-2019 20161207
DrWeb Trojan.Encoder.1158 20161207
Emsisoft Trojan.Injector.BLQ (B) 20161207
ESET-NOD32 a variant of Win32/Injector.CCLF 20161207
F-Prot W32/Injector.SX 20161207
F-Secure Trojan.Injector.BLQ 20161207
Fortinet W32/Injector.CDLM!tr 20161207
GData Trojan.Injector.BLQ 20161207
Ikarus Trojan.Win32.Boaxxe 20161207
Sophos ML ransom.win32.crowti.a 20161202
Jiangmin Backdoor/Androm.jml 20161207
K7AntiVirus Trojan ( 7000000c1 ) 20161207
K7GW Trojan ( 004c7e1e1 ) 20161207
Kaspersky HEUR:Trojan.Win32.Generic 20161207
Malwarebytes Trojan.Agent.QAZGen 20161207
McAfee Generic-FAWK!7D231A2CEBFC 20161205
McAfee-GW-Edition BehavesLike.PWSZbot.dc 20161207
Microsoft Ransom:Win32/Crowti.A 20161207
NANO-Antivirus Trojan.Win32.Androm.dsqryv 20161207
Panda Trj/Genetic.gen 20161207
Rising Trojan.Generic-1tNUJaM8yjN (cloud) 20161207
Sophos AV Mal/Zbot-TW 20161207
Tencent Win32.Trojan.Generic.Hupu 20161207
TrendMicro TROJ_CR.FA87E374 20161207
TrendMicro-HouseCall TROJ_CR.FA87E374 20161207
VBA32 Hoax.Blocker 20161207
VIPRE Trojan.Win32.Generic!BT 20161207
ViRobot Trojan.Win32.Agent.184320.CZ[h] 20161207
Yandex Trojan.Cryptodef! 20161206
Zillya Backdoor.Injector.Win32.3 20161207
Alibaba 20161207
ClamAV 20161207
CMC 20161207
CrowdStrike Falcon (ML) 20161024
Kingsoft 20161207
eScan 20161207
nProtect 20161207
Qihoo-360 20161207
SUPERAntiSpyware 20161207
Symantec 20161207
TheHacker 20161130
TotalDefense 20161207
Trustlook 20161207
WhiteArmor 20161207
Zoner 20161207
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
270336
Highest datetime
2015-06-09 20:54:50
Lowest datetime
2015-06-09 20:54:50
Contained files by extension
scr
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x0613034f

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
270336

ZipCompressedSize
208934

FileTypeExtension
zip

ZipFileName
my_resume_pdf_id_3551-5411-241.scr

ZipBitFlag
0

ZipModifyDate
2015:06:09 20:54:25

Compressed bundles
File identification
MD5 29e28ae8cca81d223ef3fd24ca1d3d68
SHA1 1c68299115ea968e14f9fefefbdd514a79d88252
SHA256 24eb11fd46915d470c3c18e769df28414f160c66c0c9504f59f1f422555af138
ssdeep
6144:2R0NPjMpAbXGvmqVMLUdH0s0rQS0y+0akZ:QsjPHqKUdH0jQSWc

File size 204.2 KB ( 209136 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2015-06-09 19:21:32 UTC ( 3 years, 11 months ago )
Last submission 2016-12-07 19:11:31 UTC ( 2 years, 5 months ago )
File names my_resume_pdf.zip
my_resume_pdf.zip";filename*=UTF-8''my_resume_pdf.zip
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V0610.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!