× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6ac5d6274333cc29ee5d6d5c0b4d68eca1bdd6a879620d3491ad8c0be5689479
File name: KillEmAll.zip
Detection ratio: 1 / 55
Analysis date: 2015-08-02 11:59:46 UTC ( 1 month ago )
Antivirus Result Update
F-Secure Trojan-Downloader:W32/Kavala.B 20150802
ALYac 20150802
AVG 20150802
AVware 20150802
Ad-Aware 20150802
AegisLab 20150802
Agnitum 20150801
AhnLab-V3 20150802
Alibaba 20150803
Antiy-AVL 20150802
Arcabit 20150802
Avast 20150802
Avira 20150802
Baidu-International 20150802
BitDefender 20150802
Bkav 20150801
ByteHero 20150802
CAT-QuickHeal 20150801
ClamAV 20150802
Comodo 20150802
Cyren 20150802
DrWeb 20150802
ESET-NOD32 20150802
Emsisoft 20150802
F-Prot 20150802
Fortinet 20150802
GData 20150802
Ikarus 20150802
Jiangmin 20150731
K7AntiVirus 20150802
K7GW 20150730
Kaspersky 20150802
Kingsoft 20150802
Malwarebytes 20150802
McAfee 20150802
McAfee-GW-Edition 20150802
MicroWorld-eScan 20150802
Microsoft 20150802
NANO-Antivirus 20150802
Panda 20150802
Qihoo-360 20150803
Rising 20150731
SUPERAntiSpyware 20150802
Sophos 20150802
Symantec 20150802
Tencent 20150802
TheHacker 20150802
TrendMicro 20150802
TrendMicro-HouseCall 20150802
VBA32 20150731
VIPRE 20150802
ViRobot 20150802
Zillya 20150802
Zoner 20150802
nProtect 20150731
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
437616
Highest datetime
2013-05-05 09:26:56
Lowest datetime
2013-05-05 09:26:56
Contained files by extension
scr
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x886c85f5

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
437616

ZipCompressedSize
138675

FileTypeExtension
zip

ZipFileName
KillEmAll.scr

ZipBitFlag
0x0002

ZipModifyDate
2013:05:05 09:26:28

File identification
MD5 2f8a829268c15fa7f52ba2106c29b8a9
SHA1 94492f8e0dff5cd0ad3727e3c5a09452744128ae
SHA256 6ac5d6274333cc29ee5d6d5c0b4d68eca1bdd6a879620d3491ad8c0be5689479
ssdeep
3072:UcMcKtAWbsEEKTd0ZRGutr5DEC2pEOApLfbd0450DSr2oX7Db:/1KtAWbsE1d6BrtECoIjdcOjX7/

File size 135.5 KB ( 138799 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2013-05-13 11:43:33 UTC ( 2 years, 3 months ago )
Last submission 2015-08-02 11:59:46 UTC ( 1 month ago )
File names 15_KillEmAll 2-18-13 (from Foolish IT).zip
KillEmAll.zip
KillEmAll3.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!