× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6ac5d6274333cc29ee5d6d5c0b4d68eca1bdd6a879620d3491ad8c0be5689479
File name: KillEmAll.zip
Detection ratio: 2 / 56
Analysis date: 2016-09-03 20:30:47 UTC ( 3 weeks, 6 days ago )
Antivirus Result Update
DrWeb Trojan.KillProc.38636 20160903
F-Secure Trojan-Downloader:W32/Kavala.B 20160903
ALYac 20160903
AVG 20160903
AVware 20160903
Ad-Aware 20160903
AegisLab 20160903
AhnLab-V3 20160903
Alibaba 20160901
Antiy-AVL 20160903
Arcabit 20160903
Avast 20160903
Avira (no cloud) 20160903
Baidu 20160903
BitDefender 20160903
Bkav 20160901
CAT-QuickHeal 20160902
CMC 20160901
ClamAV 20160903
Comodo 20160903
Cyren 20160903
ESET-NOD32 20160903
Emsisoft 20160903
F-Prot 20160903
Fortinet 20160903
GData 20160903
Ikarus 20160903
Invincea 20160830
Jiangmin 20160903
K7AntiVirus 20160903
K7GW 20160903
Kaspersky 20160903
Kingsoft 20160903
Malwarebytes 20160903
McAfee 20160903
McAfee-GW-Edition 20160903
eScan 20160903
Microsoft 20160903
NANO-Antivirus 20160903
Panda 20160903
Qihoo-360 20160903
Rising 20160903
SUPERAntiSpyware 20160903
Sophos 20160903
Symantec 20160903
Tencent 20160903
TheHacker 20160903
TrendMicro 20160903
TrendMicro-HouseCall 20160903
VBA32 20160902
VIPRE 20160831
ViRobot 20160903
Yandex 20160902
Zillya 20160902
Zoner 20160903
nProtect 20160903
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
437616
Highest datetime
2013-05-05 09:26:56
Lowest datetime
2013-05-05 09:26:56
Contained files by extension
scr
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x886c85f5

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
437616

ZipCompressedSize
138675

FileTypeExtension
zip

ZipFileName
KillEmAll.scr

ZipBitFlag
0x0002

ZipModifyDate
2013:05:05 09:26:28

File identification
MD5 2f8a829268c15fa7f52ba2106c29b8a9
SHA1 94492f8e0dff5cd0ad3727e3c5a09452744128ae
SHA256 6ac5d6274333cc29ee5d6d5c0b4d68eca1bdd6a879620d3491ad8c0be5689479
ssdeep
3072:UcMcKtAWbsEEKTd0ZRGutr5DEC2pEOApLfbd0450DSr2oX7Db:/1KtAWbsE1d6BrtECoIjdcOjX7/

File size 135.5 KB ( 138799 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2013-05-13 11:43:33 UTC ( 3 years, 4 months ago )
Last submission 2016-09-03 20:30:47 UTC ( 3 weeks, 6 days ago )
File names 15_KillEmAll 2-18-13 (from Foolish IT).zip
KillEmAll.zip
KillEmAll3.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!