× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2d7b321428bd172b6eeb07df4f8c723487884961da1691410e0d5b0b51151138
File name: vpclcy.x
Detection ratio: 4 / 55
Analysis date: 2014-08-27 17:47:03 UTC ( 4 years, 5 months ago ) View latest
Antivirus Result Update
AntiVir TR/Crypt.ZPACK.Gen2 20140827
Avast Win32:Malware-gen 20140827
F-Prot W32/CVE130074.B.gen!Eldorado 20140827
Ikarus Exploit.CVE-2013-0074 20140827
Ad-Aware 20140827
AegisLab 20140827
Yandex 20140827
AhnLab-V3 20140827
Antiy-AVL 20140827
AVG 20140827
AVware 20140827
Baidu-International 20140827
BitDefender 20140827
Bkav 20140827
ByteHero 20140827
CAT-QuickHeal 20140827
ClamAV 20140826
CMC 20140827
Commtouch 20140827
Comodo 20140827
DrWeb 20140827
Emsisoft 20140827
ESET-NOD32 20140827
F-Secure 20140827
Fortinet 20140827
GData 20140827
Jiangmin 20140826
K7AntiVirus 20140826
K7GW 20140826
Kaspersky 20140827
Kingsoft 20140827
Malwarebytes 20140827
McAfee 20140827
McAfee-GW-Edition 20140827
Microsoft 20140827
eScan 20140827
NANO-Antivirus 20140827
Norman 20140827
nProtect 20140827
Panda 20140827
Qihoo-360 20140827
Rising 20140827
Sophos AV 20140827
SUPERAntiSpyware 20140827
Symantec 20140827
Tencent 20140827
TheHacker 20140826
TotalDefense 20140827
TrendMicro 20140827
TrendMicro-HouseCall 20140827
VBA32 20140827
VIPRE 20140827
ViRobot 20140827
Zillya 20140826
Zoner 20140826
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
68437
Highest datetime
2014-07-29 19:31:28
Lowest datetime
2014-07-29 19:29:38
Contained files by extension
dll
1
Contained files by type
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x9a2da7e3

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
341

ZipCompressedSize
200

FileTypeExtension
zip

ZipFileName
AppManifest.xaml

ZipBitFlag
0

ZipModifyDate
2014:07:29 19:29:38

PCAP parents
File identification
MD5 0c5993134e076a7a4a3b64bac95d4bf6
SHA1 3b3db9f11c0e551da321bb38a8816c9896664019
SHA256 2d7b321428bd172b6eeb07df4f8c723487884961da1691410e0d5b0b51151138
ssdeep
768:bdvIJcOWelSyZqaHksY1wktsxxWfIegTwwypSXgkH3eZ468D6M88rCAiEjJg:5vIJcSsaHksAVfIeowwypdkH3e2Og2

File size 52.3 KB ( 53561 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID Silverlight Application Package (73.6%)
ZIP compressed archive (21.0%)
PrintFox/Pagefox bitmap (var. P) (5.2%)
Tags
exploit cve-2013-0074 contains-pe zip

VirusTotal metadata
First submission 2014-08-22 23:15:04 UTC ( 4 years, 5 months ago )
Last submission 2014-09-19 14:49:56 UTC ( 4 years, 5 months ago )
File names vpclcy.x
2014-08-22-silverlight-exploit.xap
2014-08-22-unknown-EK-silverlight-exploit.xap
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!