× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 46b516f3d01189017aa5617fe86492e14c9933a39ce280c812649991dabdfb15
File name: 542cf539cb42739e43bccb1e8d3113840dfeb7a6 47 collector abdullah.am...
Detection ratio: 40 / 62
Analysis date: 2017-09-27 01:46:57 UTC ( 3 weeks, 2 days ago )
Antivirus Result Update
AegisLab Troj.Generic!c 20170927
AhnLab-V3 Trojan/Win64.BitCoinMiner.R204504 20170926
ALYac Trojan.Generic.22255873 20170927
Antiy-AVL Trojan/Win32.TSGeneric 20170927
Arcabit Trojan.Generic.D1539901 20170927
Avast Win64:Malware-gen 20170927
AVG Win64:Malware-gen 20170927
AVware Trojan.Win32.Generic!BT 20170927
BitDefender Application.Miner.AN 20170927
CAT-QuickHeal Trojan.IGENERIC 20170926
Comodo TrojWare.Win32.TrojanDropper.Dexel.A 20170926
Cyren W64/Trojan.LZLV-8842 20170927
DrWeb Tool.BtcMine.998 20170927
Emsisoft Application.Miner.AN (B) 20170927
ESET-NOD32 a variant of Win64/BitCoinMiner.CR potentially unsafe 20170926
F-Prot W64/BitCoinMiner.J 20170927
F-Secure Application.Miner.AN 20170927
Fortinet Adware/BitCoinMiner 20170927
GData Application.Miner.AN 20170927
Ikarus Trojan.Win64.CoinMiner 20170926
Sophos ML heuristic 20170914
Jiangmin rch.ck 20170927
K7AntiVirus Unwanted-Program ( 00510fb41 ) 20170926
K7GW Unwanted-Program ( 00510fb41 ) 20170926
Kaspersky not-a-virus:HEUR:RiskTool.Win32.BitCoinMiner.gen 20170927
Malwarebytes Trojan.BitCoinMiner 20170926
MAX malware (ai score=87) 20170926
McAfee RDN/Generic PUP.x 20170926
McAfee-GW-Edition BehavesLike.PUP.gc 20170926
NANO-Antivirus Riskware.Win64.BtcMine.erqurd 20170926
Panda Trj/CI.A 20170926
Sophos AV Mal/Generic-S 20170926
Symantec Trojan.Gen.NPE 20170926
TrendMicro TROJ_GE.4D4DFE43 20170926
TrendMicro-HouseCall TROJ_GE.4D4DFE43 20170926
VBA32 Hoax.Blocker 20170926
ViRobot Trojan.Win64.S.Bitcoinminer.787968 20170926
Webroot W32.Bitcoinminer.Gen 20170927
Yandex Trojan.Vobfus!sGfMdH9CTgw 20170908
ZoneAlarm by Check Point not-a-virus:HEUR:RiskTool.Win32.BitCoinMiner.gen 20170926
Ad-Aware 20170927
Alibaba 20170911
Avast-Mobile 20170926
Avira (no cloud) 20170927
Baidu 20170926
ClamAV 20170927
CMC 20170926
CrowdStrike Falcon (ML) 20170804
Cylance 20170927
Endgame 20170821
Kingsoft 20170927
Microsoft 20170927
eScan 20170927
nProtect 20170927
Palo Alto Networks (Known Signatures) 20170927
Qihoo-360 20170927
Rising 20170927
SentinelOne (Static ML) 20170806
SUPERAntiSpyware 20170927
Symantec Mobile Insight 20170927
Tencent 20170927
TheHacker 20170925
TotalDefense 20170926
Trustlook 20170927
VIPRE 20170926
WhiteArmor 20170829
Zillya 20170926
Zoner 20170927
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
4
Uncompressed size
1091706
Highest datetime
2017-09-03 12:23:50
Lowest datetime
2017-07-06 09:26:30
Contained files by extension
exe
2
bat
1
Contained files by type
Portable Executable
2
directory
1
unknown
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Sys64/

ZipBitFlag
0

ZipModifyDate
2017:09:03 12:23:25

Compressed bundles
File identification
MD5 2562a401c7502fabc9f0cb05c98af5c5
SHA1 542cf539cb42739e43bccb1e8d3113840dfeb7a6
SHA256 46b516f3d01189017aa5617fe86492e14c9933a39ce280c812649991dabdfb15
ssdeep
12288:+7qQbDNg0rCLv/s6wwvN5q/LPy2qbz/Ijc1Zne:+V68CLv/RBvN50Pyd5Ze

File size 469.0 KB ( 480277 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2017-09-14 20:38:41 UTC ( 1 month ago )
Last submission 2017-09-25 14:04:32 UTC ( 3 weeks, 4 days ago )
File names 2562a401c7502fabc9f0cb05c98af5c5
542cf539cb42739e43bccb1e8d3113840dfeb7a6 47 collector abdullah.ameerali@comodo.com 2562a401c7502fabc9f0cb05c98af5c5
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!