× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 31beb1b9dcfddc2d630ec3100126cc447945083a6902ccf7667db87577f9ac0e
File name: 141489603685329-vtar1.3.zip
Detection ratio: 0 / 60
Analysis date: 2017-07-08 20:49:16 UTC ( 1 year, 3 months ago )
Antivirus Result Update
Ad-Aware 20170708
AegisLab 20170708
AhnLab-V3 20170708
Alibaba 20170708
ALYac 20170708
Antiy-AVL 20170708
Arcabit 20170708
Avast 20170708
AVG 20170708
Avira (no cloud) 20170708
AVware 20170708
Baidu 20170707
BitDefender 20170708
Bkav 20170706
CAT-QuickHeal 20170708
ClamAV 20170708
CMC 20170707
Comodo 20170708
CrowdStrike Falcon (ML) 20170420
Cylance 20170708
Cyren 20170708
DrWeb 20170708
Emsisoft 20170708
Endgame 20170706
ESET-NOD32 20170708
F-Prot 20170708
F-Secure 20170708
Fortinet 20170629
GData 20170708
Ikarus 20170708
Sophos ML 20170607
Jiangmin 20170708
K7AntiVirus 20170707
K7GW 20170708
Kaspersky 20170708
Kingsoft 20170708
Malwarebytes 20170708
MAX 20170708
McAfee 20170708
McAfee-GW-Edition 20170708
Microsoft 20170708
eScan 20170708
NANO-Antivirus 20170708
nProtect 20170708
Palo Alto Networks (Known Signatures) 20170708
Panda 20170708
Qihoo-360 20170708
Rising 20170708
SentinelOne (Static ML) 20170516
Sophos AV 20170708
SUPERAntiSpyware 20170708
Symantec 20170708
Symantec Mobile Insight 20170707
Tencent 20170708
TheHacker 20170707
TotalDefense 20170708
TrendMicro-HouseCall 20170708
Trustlook 20170708
VBA32 20170707
VIPRE 20170708
ViRobot 20170708
Webroot 20170708
WhiteArmor 20170706
Yandex 20170707
Zillya 20170707
ZoneAlarm by Check Point 20170708
Zoner 20170708
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
5
Uncompressed size
3805804
Highest datetime
2004-02-19 17:51:02
Lowest datetime
2004-02-18 09:56:48
Contained files by extension
txt
3
xml
1
exe
1
Contained files by type
unknown
4
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xe3dbb0ec

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
3726848

ZipCompressedSize
1629436

FileTypeExtension
zip

ZipFileName
vtar.exe

ZipBitFlag
0

ZipModifyDate
2004:02:19 17:51:01

File identification
MD5 dbf6afea173123c2eb230a9c57a5bd69
SHA1 bb0ba5a608ef18a57ccd0e39a18456ff5bf6680e
SHA256 31beb1b9dcfddc2d630ec3100126cc447945083a6902ccf7667db87577f9ac0e
ssdeep
49152:1IQgZse+8pvAtua2MQgYrqihpKVQkKg+y:WQgZcY6uZewLkKg+y

File size 1.6 MB ( 1646972 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2014-11-08 19:42:41 UTC ( 3 years, 11 months ago )
Last submission 2014-12-26 09:53:11 UTC ( 3 years, 9 months ago )
File names 141489603685329-vtar1.3.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!