× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6c3dd6138bb486574ce6301e7e0fcae3788db246f2fa3853cc61c2f09de4c32a
File name: db2679fc1d230c9205ed616e6ac19afc222ad0095a6ec4fa44ea78a493f3b15c.zip
Detection ratio: 49 / 59
Analysis date: 2017-05-31 13:18:39 UTC ( 7 months, 3 weeks ago )
Antivirus Result Update
AegisLab Troj.Ransom.W32.Cryptodef.cbt!c 20170531
AhnLab-V3 Trojan/Win32.MDA.R131617 20170531
ALYac Trojan.Ransom.LeChiffre 20170531
Antiy-AVL Trojan/Win32.Inject 20170531
Arcabit Generic.Ransom.LeChiffre.E84B2FBD 20170531
AVG Inject2.BLDB 20170531
Avira (no cloud) TR/Crypt.Xpack.134829 20170531
AVware LooksLike.Macro.Malware.k (v) 20170531
BitDefender Trojan.GenericKD.2079697 20170531
Bkav W32.Cloda9c.Trojan.e8ca 20170531
CAT-QuickHeal Ransom.CryptoWall.WR5 20170531
ClamAV Win.Trojan.CryptoWall-3 20170531
Comodo TrojWare.Win32.Lethic.KDA 20170531
Cyren W32/Backdoor.GTAF-7108 20170531
DrWeb BackDoor.IRC.NgrBot.42 20170531
Emsisoft Trojan.GenericKD.2079697 (B) 20170531
ESET-NOD32 Win32/Filecoder.CryptoWall.D 20170531
F-Prot W32/Backdoor2.HWZQ 20170531
F-Secure Trojan.GenericKD.2079697 20170531
Fortinet W32/Kryptik.CVDS!tr 20170531
GData Trojan.GenericKD.2079697 20170531
Ikarus Trojan-Ransom.CryptoWall3 20170531
Sophos ML trojan.win32.lethic.k 20170519
Jiangmin Trojan.Leshiy.a 20170531
K7AntiVirus Trojan ( 004c33551 ) 20170531
K7GW Trojan ( 004c33551 ) 20170531
Kaspersky Trojan.Win32.Agent.ieuv 20170531
Malwarebytes Trojan.Agent.0BGen 20170531
McAfee Ransom-CWall 20170531
McAfee-GW-Edition BehavesLike.Virut.tc 20170531
Microsoft Worm:Win32/Dorkbot.I 20170531
eScan Trojan.GenericKD.2079697 20170531
NANO-Antivirus Trojan.Win32.Crypted.dmhznz 20170531
Panda Trj/WLT.B 20170530
Qihoo-360 virus.office.obfuscated.1 20170531
Rising Trojan.Generic (cloud:RYp1EzEeHTG) 20170531
Sophos AV Troj/Ransom-APP 20170531
TheHacker Trojan/Filecoder.co 20170528
TotalDefense Win32/Tnega.DJPGPRC 20170531
TrendMicro TROJ_CRYPTWALL.F 20170531
TrendMicro-HouseCall TROJ_CRYPTWALL.F 20170531
VBA32 SScope.Trojan.Agent.2315 20170531
VIPRE Trojan.Win32.CryptoWall.gen 20170531
ViRobot W97M.S.Downlodaer.43008[h] 20170531
Webroot W32.Trojan.Gen 20170531
Yandex Trojan.Cryptodef! 20170530
Zillya Backdoor.Androm.Win32.14627 20170531
ZoneAlarm by Check Point Trojan.Win32.Agent.ieuv 20170531
Zoner Trojan.Filecoder.CO 20170531
Ad-Aware 20170531
Alibaba 20170531
Baidu 20170527
CMC 20170531
CrowdStrike Falcon (ML) 20170420
Endgame 20170515
Kingsoft 20170531
nProtect 20170531
Palo Alto Networks (Known Signatures) 20170531
SentinelOne (Static ML) 20170516
SUPERAntiSpyware 20170531
Symantec 20170531
Symantec Mobile Insight 20170531
Tencent 20170531
Trustlook 20170531
WhiteArmor 20170524
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
10
Uncompressed size
2726950
Highest datetime
2099-10-23 23:31:44
Lowest datetime
2016-02-17 19:26:24
Contained files by extension
exe
9
doc
1
Contained files by type
Portable Executable
9
Microsoft Office
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xb695ce61

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
256512

ZipCompressedSize
136321

FileTypeExtension
zip

ZipFileName
ransomware/ransomware4.exe

ZipBitFlag
0

ZipModifyDate
2099:10:23 23:31:22

File identification
MD5 eef4c29837e7de152129eccd32c96edd
SHA1 40e65103f79b31e022a41dc1ebc053f0ed777804
SHA256 6c3dd6138bb486574ce6301e7e0fcae3788db246f2fa3853cc61c2f09de4c32a
ssdeep
49152:Ru1mtqLko8fSQRBoQxzYCQT4rnkRUVnTWXJFD:A3LV8fSQrlzYInRnTWP

File size 1.6 MB ( 1632009 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2017-05-31 13:18:39 UTC ( 7 months, 3 weeks ago )
Last submission 2017-05-31 13:18:39 UTC ( 7 months, 3 weeks ago )
File names db2679fc1d230c9205ed616e6ac19afc222ad0095a6ec4fa44ea78a493f3b15c.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!