× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 282c44c12dadacb9bf3ff129e3cde23a58db68fefe1e3b4fb980a09973e0787c
File name: PBDownForce_0_3_3_1.zip
Detection ratio: 13 / 40
Analysis date: 2010-02-17 09:13:57 UTC ( 7 years, 9 months ago ) View latest
Antivirus Result Update
AntiVir TR/VTool.Obfuscator.XY.61 20100216
Avast Win32:Malware-gen 20100216
F-Secure Suspicious:W32/Riskware!Online 20100217
GData Win32:Malware-gen 20100217
Ikarus Generic.Hupigon 20100217
K7AntiVirus Packed.Win32.Black.d 20100215
Kaspersky Packed.Win32.Black.d 20100217
McAfee+Artemis Artemis!D8F05FAF3075 20100216
Microsoft VirTool:Win32/Obfuscator.XY 20100217
Sophos AV Mal/Behav-270 20100217
Sunbelt Trojan.Win32.Generic!BT 20100217
Symantec Suspicious.Insight 20100217
TheHacker Trojan/Black.d 20100217
a-squared 20100217
AhnLab-V3 20100216
Antiy-AVL 20100217
Authentium 20100217
AVG 20100216
BitDefender 20100217
CAT-QuickHeal 20100217
ClamAV 20100217
Comodo 20100217
DrWeb 20100217
eSafe 20100216
eTrust-Vet 20100217
F-Prot 20100216
Fortinet 20100215
Jiangmin 20100217
McAfee 20100216
NOD32 20100216
Norman 20100216
nProtect 20100217
Panda 20100216
PCTools 20100217
Prevx 20100217
Rising 20100211
TrendMicro 20100217
VBA32 20100216
ViRobot 20100217
VirusBuster 20100216
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
5
Uncompressed size
5547870
Highest datetime
2009-04-24 18:02:58
Lowest datetime
2007-02-10 13:37:00
Contained files by extension
exe
1
Contained files by type
unknown
3
Portable Executable
1
JPG
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xc156114f

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
25

ZipCompressedSize
21

FileTypeExtension
zip

ZipFileName
config

ZipBitFlag
0

ZipModifyDate
2009:04:24 17:53:18

File identification
MD5 2dd708fd19786c2245d8112bf0b1e1a1
SHA1 a130696659388c151d251c46392ede97dc07c45a
SHA256 282c44c12dadacb9bf3ff129e3cde23a58db68fefe1e3b4fb980a09973e0787c
ssdeep
98304:XEVyraBBX5i1v91SRqE7CWqVVh2yQilxibBcyLeOWLO6WDONc/udTZQm3Ib:0/1Y1v3SRqE7CMN2yLkDLdR0

File size 5.2 MB ( 5450341 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe aspack zip via-tor

VirusTotal metadata
First submission 2009-05-03 00:11:29 UTC ( 8 years, 6 months ago )
Last submission 2017-08-05 19:03:07 UTC ( 3 months, 2 weeks ago )
File names PBDownForce_0_3_3_1.zip
PBDownForce_0_3_3_1_2.zip
ForFpTeam.zip
PBDownForce_0_3_3_1 (2).zip
a130696659388c151d251c46392ede97dc07c45a.bin
PBDownForce_0_3_3_1 Hard Disk ID changer.zip
PBDownForce.zip
pbdownforce_0_3_3_1.zip
JNWm1.zip
file-3271205_zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!