× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5144431e4346fe03a13986e28da71d8ea03fc054b6293c4cb0ffac037cc1f1b2
File name: 1 (2).exe
Detection ratio: 38 / 55
Analysis date: 2016-12-10 14:45:56 UTC ( 6 months, 2 weeks ago )
Antivirus Result Update
Ad-Aware Trojan.Generic.19840211 20161210
AegisLab Troj.W32.Generic!c 20161210
AhnLab-V3 Malware/Win32.Generic.C1683942 20161210
ALYac Trojan.Generic.19840211 20161210
Antiy-AVL Trojan[:HEUR]/Win32.AGeneric 20161210
Arcabit Trojan.Generic.D12EBCD3 20161210
Avast Win32:Malware-gen 20161210
AVG PSW.Banker7.YQM 20161210
Avira (no cloud) TR/Agent.yeeey 20161210
AVware Trojan.Win32.Generic!BT 20161210
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9874 20161207
BitDefender Trojan.Generic.19840211 20161210
CAT-QuickHeal TrojanSpy.Banker 20161210
Comodo TrojWare.Win32.Banker.~ADLB 20161210
Cyren W32/Trojan.HEXO-1588 20161210
Emsisoft Trojan.Generic.19840211 (B) 20161210
ESET-NOD32 a variant of Win32/Spy.Banker.ADLB 20161210
F-Secure Trojan.Generic.19840211 20161210
Fortinet W32/Generic.AC.3828420 20161210
GData Trojan.Generic.19840211 20161210
Ikarus Trojan.Agent 20161210
Invincea trojan.win32.zonsterarch.bw 20161202
Jiangmin Trojan.Generic.angqy 20161210
K7AntiVirus Spyware ( 004ff1551 ) 20161210
K7GW Spyware ( 004ff1551 ) 20161210
Kaspersky HEUR:Trojan.Win32.Generic 20161210
Malwarebytes Trojan.Delf 20161210
McAfee GenericRXAQ-PX!1A92EEDAFC10 20161210
McAfee-GW-Edition GenericRXAQ-PX!1A92EEDAFC10 20161210
Microsoft TrojanSpy:Win32/Banker 20161210
eScan Trojan.Generic.19840211 20161210
NANO-Antivirus Trojan.Win32.Agent.eiyuyn 20161210
Panda Trj/GdSda.A 20161210
Rising Malware.Heuristic!ET-Af71m7yGPRU (cloud) 20161210
Sophos Mal/Generic-S 20161210
VIPRE Trojan.Win32.Generic!BT 20161210
ViRobot Trojan.Win32.Z.Agent.3906048[h] 20161210
Yandex Trojan.Agent!oZZ6b4JX/Fc 20161209
Alibaba 20161209
Bkav 20161210
ClamAV 20161210
CMC 20161210
CrowdStrike Falcon (ML) 20161024
DrWeb 20161210
F-Prot 20161210
Kingsoft 20161210
nProtect 20161210
Qihoo-360 20161210
SUPERAntiSpyware 20161210
Symantec 20161210
Tencent 20161210
TheHacker 20161130
TrendMicro-HouseCall 20161210
Trustlook 20161210
VBA32 20161209
WhiteArmor 20161207
Zillya 20161209
Zoner 20161210
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
3906048
Highest datetime
2016-11-24 20:31:34
Lowest datetime
2016-11-24 20:31:34
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x3ce4a29c

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
3906048

ZipCompressedSize
1936675

FileTypeExtension
zip

ZipFileName
gfs2

ZipBitFlag
0

ZipModifyDate
2016:11:24 20:31:17

File identification
MD5 92935ec0ee4a7bb127cd2fe83296e93f
SHA1 818ef4fdcd5825993dcf05593ee7b4f88461f53a
SHA256 5144431e4346fe03a13986e28da71d8ea03fc054b6293c4cb0ffac037cc1f1b2
ssdeep
49152:pZBaIyeDX+sA6CaNo38eGQelKoT3K6t5yAT1ga6FkgCA8k8eWnKrU:9jjA674tXelKoTaA/T1gaKkS8k8J

File size 1.8 MB ( 1936781 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2016-11-26 11:41:25 UTC ( 7 months ago )
Last submission 2016-12-10 14:45:56 UTC ( 6 months, 2 weeks ago )
File names 1 (2).exe
92935ec0ee4a7bb127cd2fe83296e93f.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!