× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 342a144d6422fc048ac38bb0c292e9e7bd68d57075f5c76547f62d23f3831e34
File name: 342A144D6422FC048AC38BB0C292E9E7BD68D57075F5C76547F62D23F3831E34
Detection ratio: 29 / 63
Analysis date: 2018-12-15 04:52:23 UTC ( 5 months, 1 week ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Delphiless.Exp 20181214
ALYac Gen:Variant.Graftor.534575 20181215
Arcabit Trojan.Graftor.D8282F 20181215
Avast Win32:Trojan-gen 20181215
AVG Win32:Trojan-gen 20181215
AVware Trojan.Zip.Bredozp.b (v) 20180925
BitDefender Trojan.Zmutzy.804 20181215
Comodo Heur.Dual.Extensions@1z141z3 20181215
Cyren W32/Injector.JIWV-1775 20181215
DrWeb Trojan.Nanocore.23 20181215
Emsisoft Gen:Variant.Strictor.179296 (B) 20181215
ESET-NOD32 a variant of Win32/Injector.ECIU 20181214
F-Prot W32/Injector.HJW 20181215
F-Secure Gen:Variant.Strictor.179296 20181215
Fortinet W32/Kryptik.GLZZ!tr 20181215
GData Gen:Variant.Strictor.179296 (5x) 20181215
Sophos ML heuristic 20181128
K7AntiVirus Spyware ( 005435701 ) 20181214
K7GW Spyware ( 005435701 ) 20181215
Kaspersky HEUR:Backdoor.Win32.NanoBot.gen 20181215
MAX malware (ai score=94) 20181215
McAfee Trojan-FQIO!41BBB0B3E00A 20181214
McAfee-GW-Edition Trojan-FQIO!9D1BA5D4E00F 20181214
Microsoft Trojan:Win32/Fuerboos.C!cl 20181214
Rising Malware.Heuristic!ET#95% (RDM+:cmRtazqDLtuy0d71JMsOrjGctx5q) 20181214
TrendMicro TrojanSpy.Win32.LOKI.SMAL01.hp 20181214
TrendMicro-HouseCall TrojanSpy.Win32.LOKI.SMAL01.hp 20181214
VIPRE Trojan.Zip.Bredozp.b (v) 20181214
ZoneAlarm by Check Point HEUR:Backdoor.Win32.NanoBot.gen 20181215
Ad-Aware 20181215
AegisLab 20181214
Alibaba 20180921
Antiy-AVL 20181215
Avast-Mobile 20181214
Avira (no cloud) 20181215
Babable 20180918
Baidu 20181207
Bkav 20181214
CAT-QuickHeal 20181214
ClamAV 20181215
CMC 20181215
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181215
eGambit 20181215
Endgame 20181108
Ikarus 20181215
Jiangmin 20181215
Kingsoft 20181215
Malwarebytes 20181215
eScan 20181214
NANO-Antivirus 20181214
Palo Alto Networks (Known Signatures) 20181215
Panda 20181214
Qihoo-360 20181215
SentinelOne (Static ML) 20181011
Sophos AV 20181214
SUPERAntiSpyware 20181212
Symantec 20181214
Symantec Mobile Insight 20181212
TACHYON 20181214
Tencent 20181215
TheHacker 20181213
TotalDefense 20181214
Trapmine 20181205
Trustlook 20181215
VBA32 20181214
ViRobot 20181214
Webroot 20181215
Yandex 20181214
Zillya 20181213
Zoner 20181215
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
5
Uncompressed size
3349504
Highest datetime
2018-12-14 19:53:38
Lowest datetime
2018-12-14 19:53:20
Contained files by extension
exe
5
Contained files by type
Portable Executable
5
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x2cf656d1

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
704512

ZipCompressedSize
436293

FileTypeExtension
zip

ZipFileName
1. Specifications of part one of RFQ MTV 8.pdf.exe

ZipBitFlag
0

ZipModifyDate
2018:12:14 19:53:20

File identification
MD5 a98d7b9e349a0606fe638e3bf8a9a804
SHA1 6512b40ae0fc5fdec2ceb669857e8ada85f1aff2
SHA256 342a144d6422fc048ac38bb0c292e9e7bd68d57075f5c76547f62d23f3831e34
ssdeep
49152:+NtIz5f341dLELNtIz5f38NtIz5f3S1dLEy:9hieYhLh8ey

File size 1.9 MB ( 2012837 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2018-12-15 04:52:23 UTC ( 5 months, 1 week ago )
Last submission 2018-12-15 04:52:23 UTC ( 5 months, 1 week ago )
File names JAP-ProjectFiles-URGENT%20REQUEST%20FOR%20QUOTATION%20-%20RFQ_MTV-89462%20-%20Company-Profile-JAP-hotels-01212%20-%20specification-for-up-to-date-project-information.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!