× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3b95c862047b8b88c7a13997c4691b0bd1555bd4d0dfe512bc64308ffbc9d3dc
File name: Unobtanium-Bluechist-FORUM.zip
Detection ratio: 2 / 60
Analysis date: 2017-06-19 07:52:44 UTC ( 4 days, 9 hours ago )
Antivirus Result Update
AhnLab-V3 Trojan/Win32.HDC.C488350 20170619
Sophos Bitcoin Miner (PUA) 20170619
Ad-Aware 20170619
AegisLab 20170618
Alibaba 20170619
ALYac 20170619
Antiy-AVL 20170619
Arcabit 20170619
Avast 20170619
AVG 20170619
Avira (no cloud) 20170619
AVware 20170619
Baidu 20170619
BitDefender 20170619
Bkav 20170619
CAT-QuickHeal 20170619
ClamAV 20170619
CMC 20170618
Comodo 20170619
CrowdStrike Falcon (ML) 20170420
Cyren 20170619
DrWeb 20170619
Emsisoft 20170619
Endgame 20170615
ESET-NOD32 20170619
F-Prot 20170619
F-Secure 20170619
Fortinet 20170619
GData 20170619
Ikarus 20170619
Invincea 20170607
Jiangmin 20170619
K7AntiVirus 20170619
K7GW 20170619
Kaspersky 20170619
Kingsoft 20170619
Malwarebytes 20170619
McAfee 20170619
McAfee-GW-Edition 20170619
Microsoft 20170618
eScan 20170619
NANO-Antivirus 20170619
nProtect 20170619
Palo Alto Networks (Known Signatures) 20170619
Panda 20170618
Qihoo-360 20170619
Rising 20170619
SentinelOne (Static ML) 20170516
SUPERAntiSpyware 20170619
Symantec 20170619
Symantec Mobile Insight 20170614
Tencent 20170619
TheHacker 20170618
TotalDefense 20170619
TrendMicro 20170619
TrendMicro-HouseCall 20170619
Trustlook 20170619
VBA32 20170616
VIPRE 20170619
ViRobot 20170619
Webroot 20170619
WhiteArmor 20170616
Yandex 20170616
Zillya 20170617
ZoneAlarm by Check Point 20170619
Zoner 20170619
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
5
Uncompressed size
41943096
Highest datetime
2015-07-17 20:35:06
Lowest datetime
2015-07-17 20:28:18
Contained files by extension
exe
4
Contained files by type
Portable Executable
4
directory
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Unobtanium-blueschist/

ZipBitFlag
0

ZipModifyDate
2015:07:17 20:35:03

File identification
MD5 edf501604f5837540426ddce0b85cbe5
SHA1 8cd58d92eaf77e54edffd08c4e066445dde90b90
SHA256 3b95c862047b8b88c7a13997c4691b0bd1555bd4d0dfe512bc64308ffbc9d3dc
ssdeep
393216:0HQ/LmFPxklbQDMVtyn2o1mwyCrEigtaaIhWFTS4xpNfdHn:0ZR6NQDUsrykgtDIhWFmkpb

File size 16.6 MB ( 17414853 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2015-07-18 04:15:30 UTC ( 1 year, 11 months ago )
Last submission 2017-06-07 15:40:59 UTC ( 2 weeks, 2 days ago )
File names Unobtanium-Bluechist.zip
Unobtanium-Bluechist-FORUM.zip
Unobtanium-Blueschist.zip
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V1006.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!