× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4d701af57626260bfb5fd17227121c7033ca11c610094649892b22994456773f
File name: gdbnt.zip
Detection ratio: 0 / 54
Analysis date: 2015-12-17 02:22:04 UTC ( 3 years, 2 months ago ) View latest
Antivirus Result Update
Ad-Aware 20151216
AegisLab 20151216
Yandex 20151214
AhnLab-V3 20151216
Alibaba 20151208
Antiy-AVL 20151217
Arcabit 20151217
Avast 20151217
AVG 20151217
Avira (no cloud) 20151217
AVware 20151216
Baidu-International 20151216
BitDefender 20151217
Bkav 20151215
ByteHero 20151217
CAT-QuickHeal 20151216
ClamAV 20151217
CMC 20151216
Comodo 20151216
Cyren 20151217
DrWeb 20151217
Emsisoft 20151217
ESET-NOD32 20151217
F-Prot 20151217
F-Secure 20151217
Fortinet 20151217
GData 20151217
Ikarus 20151217
Jiangmin 20151216
K7AntiVirus 20151216
K7GW 20151216
Kaspersky 20151217
Malwarebytes 20151217
McAfee 20151217
McAfee-GW-Edition 20151216
Microsoft 20151216
eScan 20151216
NANO-Antivirus 20151217
nProtect 20151216
Panda 20151215
Qihoo-360 20151217
Rising 20151216
SUPERAntiSpyware 20151217
Symantec 20151216
Tencent 20151217
TheHacker 20151215
TotalDefense 20151216
TrendMicro 20151217
TrendMicro-HouseCall 20151217
VBA32 20151216
VIPRE 20151216
ViRobot 20151217
Zillya 20151216
Zoner 20151217
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
2684528
Highest datetime
2013-05-23 09:18:54
Lowest datetime
2013-05-23 09:18:54
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x4f4d1572

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
2684528

ZipCompressedSize
2657851

FileTypeExtension
zip

ZipFileName
Setup.exe

ZipBitFlag
0x0002

ZipModifyDate
2013:05:23 09:18:54

Execution parents
Compressed bundles
File identification
MD5 f924ac8244835f0f0762a2385f0954ca
SHA1 f9baeec7a8ce9cab6d777e924b61aea3fc58cede
SHA256 4d701af57626260bfb5fd17227121c7033ca11c610094649892b22994456773f
ssdeep
49152:HV4XJ/9gd1zLAVzUSWogC/AGcqLJCVKk7Hb0TOUsWiqyyH6PMB1Fk5qkA:HV4Xp9gdWUSW/kPcq9oDkfyyHNFsqkA

File size 2.5 MB ( 2657967 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2013-05-24 17:05:42 UTC ( 5 years, 9 months ago )
Last submission 2019-01-29 12:09:57 UTC ( 2 weeks, 6 days ago )
File names output.11418010.txt
GetDataBack.zip
gdbnt.zip
output.11418736.txt
11418737
11418736
gdbnt-4.3.3.zip
gdbnt.zip
file-5559690_
GetDataBack for NTFS 4.33.zip
gdbnt(1).zip
1389201002-gdbnt.zip
gdbnt getdata back 432.zip
GetDataBack for NTFS.zip
gdbnt433.zip
download.php
getdataback-ntfs_4-33_fr_43511.zip
11418010
GetDataBack NTFS 4.33.zip
getdataback-ntfs_4-32_fr_43511.zip
GetDataBack for NTFS V4.32.zip
gdbnt (1).zip
gdbnt-.zip
getdataback_dbnt433.zip
myfile
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!