× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4d701af57626260bfb5fd17227121c7033ca11c610094649892b22994456773f
File name: gdbnt.zip
Detection ratio: 0 / 60
Analysis date: 2019-02-08 23:39:07 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Acronis 20190208
Ad-Aware 20190208
AegisLab 20190208
AhnLab-V3 20190208
Alibaba 20180921
ALYac 20190208
Antiy-AVL 20190208
Arcabit 20190208
Avast 20190208
Avast-Mobile 20190208
AVG 20190208
Avira (no cloud) 20190208
Baidu 20190202
BitDefender 20190208
Bkav 20190201
CAT-QuickHeal 20190208
ClamAV 20190208
CMC 20190208
Comodo 20190208
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190209
Cyren 20190208
DrWeb 20190208
eGambit 20190209
Emsisoft 20190208
Endgame 20181108
ESET-NOD32 20190209
F-Prot 20190208
F-Secure 20190209
Fortinet 20190208
GData 20190209
Ikarus 20190208
Sophos ML 20181128
Jiangmin 20190208
K7AntiVirus 20190208
K7GW 20190208
Kaspersky 20190208
Kingsoft 20190209
Malwarebytes 20190209
MAX 20190209
McAfee 20190209
McAfee-GW-Edition 20190208
Microsoft 20190209
eScan 20190208
NANO-Antivirus 20190209
Palo Alto Networks (Known Signatures) 20190209
Panda 20190208
Qihoo-360 20190209
Rising 20190208
SentinelOne (Static ML) 20190203
Sophos AV 20190208
SUPERAntiSpyware 20190206
Symantec 20190208
Symantec Mobile Insight 20190207
TACHYON 20190208
Tencent 20190209
TheHacker 20190203
TotalDefense 20190206
Trapmine 20190123
TrendMicro 20190208
TrendMicro-HouseCall 20190208
Trustlook 20190209
VBA32 20190208
ViRobot 20190208
Webroot 20190209
Yandex 20190208
Zillya 20190208
ZoneAlarm by Check Point 20190208
Zoner 20190208
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
2684528
Highest datetime
2013-05-23 09:18:54
Lowest datetime
2013-05-23 09:18:54
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x4f4d1572

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
2684528

ZipCompressedSize
2657851

FileTypeExtension
zip

ZipFileName
Setup.exe

ZipBitFlag
0x0002

ZipModifyDate
2013:05:23 09:18:54

Execution parents
Compressed bundles
File identification
MD5 f924ac8244835f0f0762a2385f0954ca
SHA1 f9baeec7a8ce9cab6d777e924b61aea3fc58cede
SHA256 4d701af57626260bfb5fd17227121c7033ca11c610094649892b22994456773f
ssdeep
49152:HV4XJ/9gd1zLAVzUSWogC/AGcqLJCVKk7Hb0TOUsWiqyyH6PMB1Fk5qkA:HV4Xp9gdWUSW/kPcq9oDkfyyHNFsqkA

File size 2.5 MB ( 2657967 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2013-05-24 17:05:42 UTC ( 5 years, 10 months ago )
Last submission 2019-01-29 12:09:57 UTC ( 1 month, 2 weeks ago )
File names output.11418010.txt
GetDataBack.zip
gdbnt.zip
output.11418736.txt
11418737
11418736
gdbnt-4.3.3.zip
gdbnt.zip
file-5559690_
GetDataBack for NTFS 4.33.zip
gdbnt(1).zip
1389201002-gdbnt.zip
gdbnt getdata back 432.zip
GetDataBack for NTFS.zip
gdbnt433.zip
download.php
getdataback-ntfs_4-33_fr_43511.zip
11418010
GetDataBack NTFS 4.33.zip
getdataback-ntfs_4-32_fr_43511.zip
GetDataBack for NTFS V4.32.zip
gdbnt (1).zip
gdbnt-.zip
getdataback_dbnt433.zip
myfile
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!