× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 65724f46774f01dd6907f56f0ac036f2e2ada0217e7c649f3461c4420f157e9a
File name: 38f51efb4ab4e7179b14e571a5ac461b
Detection ratio: 38 / 55
Analysis date: 2017-01-10 12:43:46 UTC ( 1 month, 2 weeks ago )
Antivirus Result Update
ALYac Trojan.GenericKD.3770197 20170110
AVG Downloader.Generic_c.ANIZ 20170110
Ad-Aware Trojan.GenericKD.3770197 20170110
AegisLab Suspar.Gen!c 20170110
AhnLab-V3 JS/Obfus.S172 20170110
Antiy-AVL Trojan/Generic.ASMalwRG.94 20170110
Arcabit Trojan.Generic.D398755 20170110
Avast JS:Downloader-DVI [Trj] 20170110
Avira (no cloud) HEUR/Suspar.Gen 20170110
Baidu JS.Trojan-Downloader.Nemucod.pe 20170110
BitDefender Trojan.GenericKD.3770197 20170110
CAT-QuickHeal JS.Locky.JO 20170110
ClamAV Txt.Malware.Agent-1845646 20170110
Comodo TrojWare.Win32.TrojanDownloader.Nemucod.~BQM 20170110
Cyren JS/Locky.BF 20170110
DrWeb JS.DownLoader.2817 20170110
ESET-NOD32 JS/TrojanDownloader.Nemucod.BQM 20170110
Emsisoft Trojan.GenericKD.3770197 (B) 20170110
F-Prot JS/Locky.BF 20170110
F-Secure Trojan.GenericKD.3770197 20170110
Fortinet JS/Nemucod.BQM!tr 20170110
GData Trojan.GenericKD.3770197 20170110
Ikarus Trojan-Downloader.VBS.Agent 20170110
K7AntiVirus Trojan ( 004dfe6d1 ) 20170110
K7GW Trojan ( 004dfe6d1 ) 20170110
Kaspersky Trojan-Downloader.JS.Agent.ned 20170110
McAfee JS/Nemucod.pj 20170108
McAfee-GW-Edition JS/Nemucod.pj 20170110
eScan Trojan.GenericKD.3770197 20170110
Microsoft TrojanDownloader:JS/Nemucod.AAS 20170110
NANO-Antivirus Trojan.Script.Agent.ekbmtd 20170110
Panda Generic Malware 20170109
Rising Trojan.Obfus/JS!1.A601-iGEqIiNerZN (cloud) 20170110
Sophos Mal/DrodZp-A 20170110
Tencent Js.Trojan-downloader.Agent.Anfu 20170110
TrendMicro JS_NEMUCOD.SMXD1 20170110
ViRobot JS.S.Downloader.12441.A[h] 20170110
Zillya Downloader.Nemucod.JS.70 20170109
AVware 20170110
Alibaba 20170110
Bkav 20170110
CMC 20170110
CrowdStrike Falcon (ML) 20161024
Invincea 20161216
Jiangmin 20170110
Kingsoft 20170110
Malwarebytes 20170110
Qihoo-360 20170110
SUPERAntiSpyware 20170110
TheHacker 20170108
TrendMicro-HouseCall 20170110
Trustlook 20170110
VBA32 20170109
VIPRE 20170110
WhiteArmor 20170109
Yandex 20170109
Zoner 20170110
nProtect 20170110
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Contained files
Compression metadata
Contained files
1
Uncompressed size
12441
Highest datetime
2016-11-25 12:40:56
Lowest datetime
2016-11-25 12:40:56
Contained files by extension
js
1
Contained files by type
unknown
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xcce62b4f

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
12441

ZipCompressedSize
2779

FileTypeExtension
zip

ZipFileName
HQn82z5jv3s.js

ZipBitFlag
0

ZipModifyDate
2016:11:25 12:40:28

File identification
MD5 e9cae89d83c6b8677ed0e3ca04a07a88
SHA1 8413a2b5236f5894ef3f72a84dfd5a6fbd59f727
SHA256 65724f46774f01dd6907f56f0ac036f2e2ada0217e7c649f3461c4420f157e9a
ssdeep
48:98CTJchDov/JM53B55eru3/RZaEfyXh8Qh/uKxLQ42ghvX+GDR9EqUH3/6eHPed:ZJcdova5R5TZZaEf+iQh1Qe77E5HyeE

File size 2.8 KB ( 2905 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
zip

VirusTotal metadata
First submission 2016-11-25 10:14:31 UTC ( 3 months ago )
Last submission 2017-01-10 12:43:46 UTC ( 1 month, 2 weeks ago )
File names 6ad3ecb4bd9f424500a374797cf9e370
67ffd55c53c4622638897e3b357aa0b6
e576ee1863c4c1657d089a6593961920
8d3e086608c5ade8c4ca8408a71cdedd
1c05bbe21cba027f1bce95f38b3acd2a
b05c1cfa693aad21a434f9e2110777a3
a57ebb9308bb025f0e7001ffeb78a4a3
f3ca4ca58489bca0ba00e54d3ef4e7f8
5d49cdbc83645e879c9d5a149d8da3dad78c6d58
83d38042f7da397b0015b858dc9c988c
c2f798b9b618cd4b8e6037e14388c220
83c786445d5386b321773413d3c4b5fb
3ec7c17206d3fc005bb9032aafccab64
38f51efb4ab4e7179b14e571a5ac461b
payment_makotoy.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!