× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2b0b4d90d5feb2e36f365b7b49300ba6b8e8b59f07bbb51c4e3fad1d1c8857aa
File name: keyfinderthing3.zip
Detection ratio: 2 / 55
Analysis date: 2015-12-24 21:19:42 UTC ( 3 years, 5 months ago ) View latest
Antivirus Result Update
Ikarus Trojan.SuspectCRC 20151224
Rising PE:Malware.Generic/QRS!1.9E2D [F] 20151224
Ad-Aware 20151224
AegisLab 20151224
Yandex 20151224
AhnLab-V3 20151224
Alibaba 20151208
ALYac 20151224
Antiy-AVL 20151224
Arcabit 20151224
Avast 20151224
AVG 20151224
Avira (no cloud) 20151224
AVware 20151224
Baidu-International 20151224
BitDefender 20151224
Bkav 20151224
ByteHero 20151224
CAT-QuickHeal 20151224
ClamAV 20151224
CMC 20151217
Comodo 20151224
Cyren 20151224
DrWeb 20151224
Emsisoft 20151224
ESET-NOD32 20151224
F-Prot 20151224
F-Secure 20151224
Fortinet 20151224
GData 20151224
Jiangmin 20151224
K7AntiVirus 20151224
K7GW 20151224
Kaspersky 20151224
Malwarebytes 20151224
McAfee 20151224
McAfee-GW-Edition 20151224
Microsoft 20151224
eScan 20151224
NANO-Antivirus 20151224
nProtect 20151224
Panda 20151224
Qihoo-360 20151224
Sophos AV 20151224
SUPERAntiSpyware 20151224
Symantec 20151224
Tencent 20151224
TheHacker 20151223
TrendMicro 20151224
TrendMicro-HouseCall 20151224
VBA32 20151224
VIPRE 20151219
ViRobot 20151224
Zillya 20151224
Zoner 20151224
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
897860
Highest datetime
2015-05-01 13:59:04
Lowest datetime
2015-05-01 13:59:04
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xbd61bff8

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
897860

ZipCompressedSize
814813

FileTypeExtension
zip

ZipFileName
KeyFinderThing.exe

ZipBitFlag
0

ZipModifyDate
2015:05:01 13:59:04

File identification
MD5 b661eb65285950e6674940bd4448e152
SHA1 eccae72815544ca2bdcd4898ffd646c8467cd2d8
SHA256 2b0b4d90d5feb2e36f365b7b49300ba6b8e8b59f07bbb51c4e3fad1d1c8857aa
ssdeep
12288:3EygzlITnWCV3XED+eh9Q73T4Up15dvWvrJlXFe0/GEtNtpxtSI7Gvq+db:7aIaC9XEx63k2DBk1HektgvTb

File size 795.8 KB ( 814947 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2015-05-03 12:50:16 UTC ( 4 years ago )
Last submission 2018-08-04 17:47:34 UTC ( 9 months, 3 weeks ago )
File names 677436
keyfinderthing3.zip
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspici.C51D39CD.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!