× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6beffff03253e8e316e3d6f86426300ce145e47fc9b2fd65692e80dd05a29868
File name: 0d0a07d32295b94fd665ac39d4755014a00381c6b06c2b4a6aeffa0344ac956a ...
Detection ratio: 37 / 57
Analysis date: 2017-07-14 08:35:29 UTC ( 6 months, 1 week ago )
Antivirus Result Update
AegisLab Troj.Downloader.W32.Dofoil.brhe!c 20170714
AhnLab-V3 Trojan/Win32.Kovter.R156317 20170714
Antiy-AVL Trojan/Win32.SGeneric 20170714
Arcabit Trojan.Zusy.D245A9 20170714
Avast Win32:Malware-gen 20170714
AVG Win32:Malware-gen 20170714
Avira (no cloud) TR/Crypt.ZPACK.3300 20170713
AVware Trojan.Win32.Generic!BT 20170714
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20170714
BitDefender Gen:Variant.Zusy.148905 20170714
CAT-QuickHeal Trojan.Generic.B4 20170714
ClamAV Win.Trojan.Agent-1307418 20170714
Comodo UnclassifiedMalware 20170714
DrWeb Trojan.DownLoader14.19037 20170714
Emsisoft Gen:Variant.Zusy.148905 (B) 20170714
ESET-NOD32 Win32/Kovter.C 20170714
F-Secure Gen:Variant.Zusy.148905 20170714
Fortinet W32/Kovter.C!tr 20170629
GData Gen:Variant.Zusy.148905 20170714
Ikarus Trojan.Win32.Kovter 20170714
Jiangmin TrojanDownloader.Dofoil.ajv 20170714
K7AntiVirus Riskware ( 0040eff71 ) 20170714
K7GW Riskware ( 0040eff71 ) 20170714
Kaspersky HEUR:Trojan.Win32.Generic 20170714
MAX malware (ai score=83) 20170714
McAfee GenericR-DWS!6CA41538AE9C 20170714
McAfee-GW-Edition BehavesLike.Downloader.fc 20170714
Microsoft Trojan:Win32/Kovter!rfn 20170714
Panda Trj/Genetic.gen 20170713
Rising Trojan.Generic (cloud:cPNyyd1J3VE) 20170714
Sophos AV Troj/Kovter-Z 20170714
TrendMicro TROJ_KOVTER.XA 20170714
TrendMicro-HouseCall TROJ_KOVTER.XA 20170714
VBA32 TrojanDownloader.Dofoil 20170713
VIPRE Trojan.Win32.Generic!BT 20170714
Yandex Trojan.Kovter!4IR+n0/Kvc8 20170713
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20170714
Ad-Aware 20170714
Alibaba 20170714
ALYac 20170714
Bkav 20170713
CMC 20170713
CrowdStrike Falcon (ML) 20170710
Cylance 20170714
Cyren 20170714
Endgame 20170713
F-Prot 20170714
Sophos ML 20170607
Kingsoft 20170714
Malwarebytes 20170714
eScan 20170714
nProtect 20170714
Palo Alto Networks (Known Signatures) 20170714
Qihoo-360 20170714
SentinelOne (Static ML) 20170516
SUPERAntiSpyware 20170714
Symantec 20170714
Symantec Mobile Insight 20170713
Tencent 20170714
TheHacker 20170712
Trustlook 20170714
ViRobot 20170714
Webroot 20170714
WhiteArmor 20170713
Zillya 20170713
Zoner 20170714
The file being studied is a compressed stream! More specifically, it is a GZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Decompressed file content
Compression metadata
Contained files
1
Uncompressed size
520247
Highest datetime
Lowest datetime
ExifTool file metadata
MIMEType
application/x-gzip

ExtraFlags
Maximum Compression

ModifyDate
0000:00:00 00:00:00

Compression
Deflated

FileType
GZIP

Flags
(none)

FileTypeExtension
gz

OperatingSystem
Unix

File identification
MD5 79e2c87a8bb280a6e4941aff0a51bebc
SHA1 dd7f6067b0fb66fed8a8a8d3428851b97ed5b909
SHA256 6beffff03253e8e316e3d6f86426300ce145e47fc9b2fd65692e80dd05a29868
ssdeep
6144:8G2eCmAuMkXbU7anuWQsXlqdI+6+WbpCrct+ciw0nJYy2X2:8NeCnu3LKau3sXlqdI+62jCLTX2

File size 322.2 KB ( 329935 bytes )
File type GZIP
Magic literal
gzip compressed data, from Unix, max compression

TrID GZipped data (100.0%)
Tags
gzip contains-pe

VirusTotal metadata
First submission 2017-07-14 08:35:29 UTC ( 6 months, 1 week ago )
Last submission 2017-07-14 08:35:29 UTC ( 6 months, 1 week ago )
File names 0d0a07d32295b94fd665ac39d4755014a00381c6b06c2b4a6aeffa0344ac956a (1).bin.gz
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!