× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 25af317b2757c63e994e5994a398d6a4bfd09e23e1d2d3903fc846855c5dbb77
File name: pautomation-portable.zip
Detection ratio: 2 / 60
Analysis date: 2019-02-05 23:19:59 UTC ( 2 weeks ago )
Antivirus Result Update
Cylance Unsafe 20190206
Jiangmin Trojan/Agent.hghn 20190205
Acronis 20190130
Ad-Aware 20190205
AegisLab 20190205
AhnLab-V3 20190205
Alibaba 20180921
ALYac 20190205
Antiy-AVL 20190205
Arcabit 20190205
Avast 20190205
Avast-Mobile 20190205
AVG 20190205
Avira (no cloud) 20190205
Babable 20180918
Baidu 20190202
BitDefender 20190205
Bkav 20190201
CAT-QuickHeal 20190205
ClamAV 20190205
CMC 20190205
Comodo 20190205
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cyren 20190205
DrWeb 20190206
eGambit 20190206
Emsisoft 20190206
Endgame 20181108
ESET-NOD32 20190205
F-Prot 20190205
F-Secure 20190205
Fortinet 20190205
GData 20190206
Ikarus 20190205
Sophos ML 20181128
K7AntiVirus 20190205
K7GW 20190205
Kaspersky 20190205
Kingsoft 20190206
Malwarebytes 20190205
MAX 20190206
McAfee 20190205
McAfee-GW-Edition 20190205
Microsoft 20190205
eScan 20190205
NANO-Antivirus 20190205
Palo Alto Networks (Known Signatures) 20190206
Panda 20190205
Qihoo-360 20190206
Rising 20190205
SentinelOne (Static ML) 20190203
Sophos AV 20190205
SUPERAntiSpyware 20190130
Symantec 20190205
TACHYON 20190205
Tencent 20190206
TheHacker 20190203
Trapmine 20190123
TrendMicro 20190205
TrendMicro-HouseCall 20190205
Trustlook 20190206
VBA32 20190205
VIPRE 20190205
ViRobot 20190205
Webroot 20190206
Yandex 20190204
Zillya 20190204
ZoneAlarm by Check Point 20190205
Zoner 20190205
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
382
Uncompressed size
2909948
Highest datetime
2010-04-05 21:15:48
Lowest datetime
2005-08-24 11:32:10
Contained files by extension
gt
119
g
110
ico
88
pa
25
exe
9
dll
7
lng
7
chm
2
frm
2
gf
2
gi
2
bin
1
aps
1
htm
1
rtf
1
dat
1
ge
1
rc
1
TXT
1
RES
1
Contained files by type
unknown
363
Portable Executable
16
script
2
RTF
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x3ca38c58

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
17

ZipCompressedSize
17

FileTypeExtension
zip

ZipFileName
autoload.dat

ZipBitFlag
0

ZipModifyDate
2010:04:05 21:15:48

File identification
MD5 f707e0d9d51ea191bbeb4b50caea141a
SHA1 ef8dac0fae55637c4f0ea2705037aee567b9dc88
SHA256 25af317b2757c63e994e5994a398d6a4bfd09e23e1d2d3903fc846855c5dbb77
ssdeep
24576:5uq5R3C9gIAdnyRvQ9H0BDcSJg1mPKS2wm4K2x6Vo4AJL4x:w2yGIAdnyBQ9H0BQunSS2wyo420

File size 1.2 MB ( 1228132 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2010-10-29 19:43:23 UTC ( 8 years, 3 months ago )
Last submission 2018-11-01 13:13:11 UTC ( 3 months, 2 weeks ago )
File names 3PE6RH2p3.xlsm
pautomation-portable.zip
E4RIVU0W.gif
aa
pautomation-portable.zip
file-3582839_zip
pautomation-portable.zip
pautomation-portable (1).zip
automation-portable.zip
output.23614491.txt
pautomation-portable.zip
pautomation-portable271.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!