× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6ac5d6274333cc29ee5d6d5c0b4d68eca1bdd6a879620d3491ad8c0be5689479
File name: KillEmAll.zip
Detection ratio: 2 / 56
Analysis date: 2016-12-20 16:41:14 UTC ( 4 weeks ago )
Antivirus Result Update
DrWeb Trojan.KillProc.38636 20161220
F-Secure Trojan-Downloader:W32/Kavala.B 20161220
ALYac 20161220
AVG 20161220
AVware 20161220
Ad-Aware 20161220
AegisLab 20161220
AhnLab-V3 20161220
Alibaba 20161220
Antiy-AVL 20161220
Arcabit 20161220
Avast 20161220
Avira (no cloud) 20161220
Baidu 20161207
BitDefender 20161220
Bkav 20161220
CAT-QuickHeal 20161220
CMC 20161220
ClamAV 20161220
Comodo 20161220
CrowdStrike Falcon (ML) 20161024
Cyren 20161220
ESET-NOD32 20161220
Emsisoft 20161220
F-Prot 20161220
Fortinet 20161220
GData 20161220
Ikarus 20161220
Invincea 20161216
Jiangmin 20161220
K7AntiVirus 20161220
K7GW 20161220
Kaspersky 20161220
Kingsoft 20161220
Malwarebytes 20161220
McAfee 20161220
McAfee-GW-Edition 20161220
eScan 20161220
Microsoft 20161220
NANO-Antivirus 20161220
Panda 20161220
Qihoo-360 20161220
Rising 20161220
SUPERAntiSpyware 20161220
Sophos 20161220
Symantec 20161220
Tencent 20161220
TheHacker 20161219
TrendMicro 20161220
TrendMicro-HouseCall 20161220
Trustlook 20161220
VBA32 20161220
VIPRE 20161220
ViRobot 20161220
WhiteArmor 20161212
Yandex 20161220
Zillya 20161220
Zoner 20161220
nProtect 20161220
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
437616
Highest datetime
2013-05-05 09:26:56
Lowest datetime
2013-05-05 09:26:56
Contained files by extension
scr
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x886c85f5

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
437616

ZipCompressedSize
138675

FileTypeExtension
zip

ZipFileName
KillEmAll.scr

ZipBitFlag
0x0002

ZipModifyDate
2013:05:05 09:26:28

File identification
MD5 2f8a829268c15fa7f52ba2106c29b8a9
SHA1 94492f8e0dff5cd0ad3727e3c5a09452744128ae
SHA256 6ac5d6274333cc29ee5d6d5c0b4d68eca1bdd6a879620d3491ad8c0be5689479
ssdeep
3072:UcMcKtAWbsEEKTd0ZRGutr5DEC2pEOApLfbd0450DSr2oX7Db:/1KtAWbsE1d6BrtECoIjdcOjX7/

File size 135.5 KB ( 138799 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2013-05-13 11:43:33 UTC ( 3 years, 8 months ago )
Last submission 2016-12-20 16:41:14 UTC ( 4 weeks ago )
File names 15_KillEmAll 2-18-13 (from Foolish IT).zip
KillEmAll.zip
KillEmAll3.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!