× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 34476012ca370b0c903fcd27b822e897bb6e4ef6d0414f6233b59a292077336b
File name: ransomware.tar
Detection ratio: 41 / 57
Analysis date: 2017-04-21 16:41:18 UTC ( 1 year, 6 months ago )
Antivirus Result Update
AegisLab Troj.W32.Generic!c 20170421
AhnLab-V3 Trojan/Win32.Dropper.C301649 20170421
Antiy-AVL Trojan/Win32.SGeneric 20170421
Arcabit Generic.Ransom.LeChiffre.E84B2FBD 20170421
Avast Win32:Androp [Drp] 20170421
AVG Inject2.AALG 20170421
Avira (no cloud) TR/Dropper.Gen2 20170421
Baidu Multi.Threats.InArchive 20170421
BitDefender Trojan.GenericKDZ.25046 20170421
CAT-QuickHeal Worm.Gamarue.I5 20170421
ClamAV Doc.Macro.GenericHeuristic-5913589-1 20170421
Comodo UnclassifiedMalware 20170421
Cyren W32/Dorkbot.X.gen!Eldorado 20170421
DrWeb Trojan.Encoder.514 20170421
Emsisoft Trojan.GenericKDZ.25046 (B) 20170421
ESET-NOD32 a variant of Win32/Injector.BBUL 20170421
F-Prot W32/Dorkbot.X.gen!Eldorado 20170421
F-Secure Trojan.GenericKDZ.25046 20170421
Fortinet W32/Injector.AHE!tr 20170421
GData Trojan.GenericKDZ.25046 20170421
Ikarus Trojan.Crypt3 20170421
Sophos ML worm.win32.dorkbot.i 20170413
Jiangmin Trojan.Generic.jbqe 20170421
Kaspersky HEUR:Trojan.Win32.Generic 20170421
McAfee Generic.dx!0B2D40AADC21 20170421
McAfee-GW-Edition Ransomware-FCO!FCE023BE1FB2 20170421
Microsoft Ransom:Win32/Crowti.C 20170421
eScan Trojan.GenericKDZ.25046 20170421
NANO-Antivirus Trojan.Win32.Kryptik.dahgii 20170421
Panda Trj/Genetic.gen 20170421
Qihoo-360 virus.office.obfuscated.1 20170421
Rising Trojan.Generic (cloud:f1n0gmVYjzJ) 20170421
Sophos AV Troj/Ransom-AHE 20170421
Symantec Trojan.Gen.8!cloud 20170421
TrendMicro TROJ_SPNR.06DG14 20170421
TrendMicro-HouseCall TROJ_SPNR.06DG14 20170421
VBA32 Trojan-Downloader.MSWord.Agent.aau 20170421
Yandex Trojan.Kryptik!bUC+7yHEz1A 20170421
Zillya Trojan.Kryptik.Win32.575307 20170421
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20170421
Zoner Trojan.Filecoder.CO 20170421
Ad-Aware 20170421
Alibaba 20170421
ALYac 20170421
AVware 20170421
Bkav 20170421
CMC 20170421
CrowdStrike Falcon (ML) 20170130
Endgame 20170419
K7AntiVirus 20170421
K7GW 20170421
Kingsoft 20170421
Malwarebytes 20170421
nProtect 20170421
Palo Alto Networks (Known Signatures) 20170421
SentinelOne (Static ML) 20170330
SUPERAntiSpyware 20170421
Symantec Mobile Insight 20170420
Tencent 20170421
TheHacker 20170420
Trustlook 20170421
VIPRE 20170421
ViRobot 20170421
Webroot 20170421
WhiteArmor 20170409
The file being studied is a compressed stream! More specifically, it is a TAR file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
11
Uncompressed size
2726950
Highest datetime
2099-10-23 21:31:44
Lowest datetime
2016-02-17 18:26:24
Contained files by extension
exe
9
doc
1
Contained files by type
Portable Executable
9
Microsoft Office
1
ExifTool file metadata
MIMEType
application/x-tar

FileType
TAR

Warning
Unsupported file type

FileTypeExtension
tar

Compressed bundles
File identification
MD5 186b6a5495016fcefb1beff2139d09fd
SHA1 797f9cf87d10bf94795928599f56fff91f7793af
SHA256 34476012ca370b0c903fcd27b822e897bb6e4ef6d0414f6233b59a292077336b
ssdeep
49152:pwxnHFzcKcNcEoxm4piHTj4+FMEBADNCGcBEH:pY6KKcmlLBADNEBU

File size 2.6 MB ( 2734080 bytes )
File type TAR
Magic literal
POSIX tar archive (GNU)

TrID TAR - Tape ARchive (100.0%)
Tags
contains-pe tar upx

VirusTotal metadata
First submission 2017-04-21 15:20:57 UTC ( 1 year, 6 months ago )
Last submission 2017-04-21 16:41:18 UTC ( 1 year, 6 months ago )
File names ransomware.tar
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!