× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 25464b9176cf9aa00109f3d526b026a09975772bfd7bfb85490beb2d8805a9ba
File name: [T.O.M]The Swapper Türkçe Yama.rar
Detection ratio: 1 / 55
Analysis date: 2015-07-03 08:36:09 UTC ( 3 years, 7 months ago )
Antivirus Result Update
Rising PE:Trojan.Win32.Bicololo.q!1075358304 20150702
Ad-Aware 20150703
AegisLab 20150703
Yandex 20150630
AhnLab-V3 20150702
Alibaba 20150630
ALYac 20150703
Antiy-AVL 20150703
Arcabit 20150630
Avast 20150703
AVG 20150703
Avira (no cloud) 20150703
AVware 20150703
Baidu-International 20150703
BitDefender 20150703
Bkav 20150703
ByteHero 20150703
CAT-QuickHeal 20150703
ClamAV 20150703
Comodo 20150703
Cyren 20150703
DrWeb 20150703
Emsisoft 20150703
ESET-NOD32 20150703
F-Prot 20150703
F-Secure 20150703
Fortinet 20150703
GData 20150702
Ikarus 20150703
Jiangmin 20150702
K7AntiVirus 20150703
K7GW 20150703
Kaspersky 20150703
Kingsoft 20150703
Malwarebytes 20150703
McAfee 20150703
McAfee-GW-Edition 20150702
Microsoft 20150703
eScan 20150703
NANO-Antivirus 20150703
nProtect 20150703
Panda 20150702
Qihoo-360 20150703
Sophos AV 20150703
SUPERAntiSpyware 20150703
Symantec 20150702
Tencent 20150703
TheHacker 20150702
TrendMicro 20150703
TrendMicro-HouseCall 20150703
VBA32 20150703
VIPRE 20150703
ViRobot 20150703
Zillya 20150703
Zoner 20150703
The file being studied is a compressed stream! More specifically, it is a RAR file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
3185002
Highest datetime
2014-09-24 09:17:19
Lowest datetime
2014-09-24 01:37:11
Contained files by extension
txt
1
exe
1
Contained files by type
unknwon
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/x-rar-compressed

ModifyDate
2014:09:24 01:37:05

FileType
RAR

PackingMethod
Normal

CompressedSize
3041494

FileTypeExtension
rar

OperatingSystem
Win32

ArchivedFileName
The Swappe T?rk?e Yama.exe

UncompressedSize
3184681

File identification
MD5 9b46815c3034c6767c3549777b24b162
SHA1 ff0130ad050f523f01542f9628eaaba9c1d437a8
SHA256 25464b9176cf9aa00109f3d526b026a09975772bfd7bfb85490beb2d8805a9ba
ssdeep
49152:AGP/mgM6kPx/JR4z4OsjVeaz7SKu3bub/WtrqF/hQmYNjuT6FAHMo+T:lXmgM6k5/w4OEVeaz7Slrk8rWhQmYju4

File size 2.9 MB ( 3041835 bytes )
File type RAR
Magic literal
RAR archive data, v1d, os: Win32

TrID RAR Archive (83.3%)
REALbasic Project (16.6%)
Tags
contains-pe rar

VirusTotal metadata
First submission 2015-07-03 08:36:09 UTC ( 3 years, 7 months ago )
Last submission 2015-07-03 08:36:09 UTC ( 3 years, 7 months ago )
File names [T.O.M]The Swapper Türkçe Yama.rar
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!