× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 63bd77f23cc0f38313f6a0d1039daca13b90d471ad45d29744d9ff8fe509d801
File name: PO N0. 22741.zip
Detection ratio: 20 / 55
Analysis date: 2015-07-28 09:08:59 UTC ( 2 years, 2 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.2599923 20150728
Arcabit Trojan.Generic.D27ABF3 20150728
Avast Win32:Trojan-gen 20150728
AVG MSIL8.BGGC 20150728
Avira (no cloud) TR/Injector.607232.7 20150728
Baidu-International Trojan.MSIL.Injector.LBI 20150728
BitDefender Trojan.GenericKD.2599834 20150728
DrWeb Trojan.PWS.Stealer.1932 20150728
Emsisoft Trojan.GenericKD.2599923 (B) 20150728
ESET-NOD32 a variant of MSIL/Injector.LBI 20150728
Fortinet MSIL/LBI!tr 20150728
GData Trojan.GenericKD.2599923 20150728
Ikarus Trojan.MSIL.Injector 20150728
K7AntiVirus Trojan ( 004c97981 ) 20150728
K7GW Trojan ( 004c97981 ) 20150728
Kaspersky Trojan.Win32.Pakes.aozk 20150728
eScan Trojan.GenericKD.2599923 20150728
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20150728
Sophos AV Troj/MSIL-DVR 20150728
Tencent Win32.Trojan.Inject.Auto 20150728
AegisLab 20150728
Yandex 20150727
AhnLab-V3 20150728
Alibaba 20150728
ALYac 20150728
Antiy-AVL 20150728
AVware 20150728
Bkav 20150727
ByteHero 20150728
CAT-QuickHeal 20150728
ClamAV 20150728
Comodo 20150728
Cyren 20150728
F-Prot 20150728
F-Secure 20150728
Jiangmin 20150727
Kingsoft 20150728
Malwarebytes 20150728
McAfee 20150728
McAfee-GW-Edition 20150728
Microsoft 20150728
NANO-Antivirus 20150727
nProtect 20150727
Panda 20150727
Rising 20150722
SUPERAntiSpyware 20150728
Symantec 20150728
TheHacker 20150727
TrendMicro 20150728
TrendMicro-HouseCall 20150728
VBA32 20150727
VIPRE 20150728
ViRobot 20150728
Zillya 20150728
Zoner 20150728
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
607232
Highest datetime
2015-07-28 04:59:10
Lowest datetime
2015-07-28 04:59:10
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xb93bbb4c

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
607232

ZipCompressedSize
555308

FileTypeExtension
zip

ZipFileName
felix tday.exe

ZipBitFlag
0

ZipModifyDate
2015:07:28 04:59:05

File identification
MD5 7914cd4edf644022b30f3ddddd2f4ba4
SHA1 818a88206623982b2ebe55d544d39221bed7ac37
SHA256 63bd77f23cc0f38313f6a0d1039daca13b90d471ad45d29744d9ff8fe509d801
ssdeep
12288:f+A0Ry9U3qB6+dAf3VxqsVT4XG+xEcnz2j88lE:f+A08eqBDdAflxqsF+Bn+HlE

File size 542.5 KB ( 555470 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2015-07-27 22:09:17 UTC ( 2 years, 2 months ago )
Last submission 2015-08-03 13:39:54 UTC ( 2 years, 2 months ago )
File names 78c83287ec80d4ff404d6f1532c55064
TT Copy.zip
PO N0. 22741.zip
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V0728.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!