× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 745a29734e00f669d4b90b1197dad7b7f7e1781ba2e910b78430f5f643ee8e00
File name: Kunden_Kreditvertrag_ID_00299487366292974.zip
Detection ratio: 52 / 60
Analysis date: 2017-03-19 09:39:18 UTC ( 3 months, 1 week ago )
Antivirus Result Update
Ad-Aware Trojan.AgentWDCR.QD 20170319
AegisLab W32.W.Cridex.pox!c 20170319
AhnLab-V3 Spyware/Win32.Zbot.R153506 20170318
ALYac Trojan.AgentWDCR.QD 20170319
Antiy-AVL Worm/Win32.Cridex 20170319
Arcabit Trojan.AgentWDCR.QD 20170319
Avast Win32:Cridex-AD [Trj] 20170319
AVG Luhe.Fiha.A 20170319
Avira (no cloud) WORM/Cridex.E.562 20170318
AVware Worm.Win32.Cridex.ac (v) 20170319
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20170318
BitDefender Trojan.AgentWDCR.QD 20170319
Bkav W32.eHeur.Malware03 20170318
CAT-QuickHeal Worm.Cridex 20170318
Comodo UnclassifiedMalware 20170319
Cyren W32/Trojan.EHYM-2903 20170319
DrWeb Trojan.Necurs.97 20170319
Emsisoft Trojan.AgentWDCR.QD (B) 20170319
ESET-NOD32 Win32/Cridex.AA 20170319
F-Prot W32/Trojan2.OCUJ 20170319
F-Secure Trojan.AgentWDCR.QD 20170319
Fortinet W32/Kryptik.BSHF!tr 20170319
GData Trojan.AgentWDCR.QD 20170319
Ikarus Worm.Cridex 20170319
Invincea trojan.win32.emotet.a 20170203
Jiangmin Worm/Cridex.ht 20170319
K7AntiVirus Trojan ( 004939511 ) 20170319
K7GW Trojan ( 004939511 ) 20170319
Kaspersky Worm.Win32.Cridex.pox 20170319
Kingsoft VIRUS_UNKNOWN 20170319
Malwarebytes Spyware.Zbot 20170319
McAfee Generic.sh 20170319
McAfee-GW-Edition Generic.sh 20170319
Microsoft Worm:Win32/Cridex.E 20170319
NANO-Antivirus Trojan.Win32.Cridex.ctibbt 20170319
Panda Trj/WLT.A 20170319
Qihoo-360 Win32/Trojan.894 20170319
Rising Worm.Win32.Cridex.ai (classic) 20170319
Sophos Mal/Emotet-A 20170319
Symantec SecurityRisk.gen1 20170318
Tencent Win32.Worm.Cridex.Lkxh 20170319
TheHacker Trojan/Cridex.aa 20170318
TotalDefense Win32/Cridex.LA 20170319
TrendMicro WORM_CRIDEX.NU 20170319
TrendMicro-HouseCall WORM_CRIDEX.NU 20170319
VBA32 Worm.Cridex 20170317
VIPRE Worm.Win32.Cridex.ac (v) 20170319
Webroot W32.Malware.Gen 20170319
Yandex Trojan.Kazy!7mHNeHPi/Ck 20170318
Zillya Worm.Cridex.Win32.365 20170317
ZoneAlarm by Check Point Worm.Win32.Cridex.pox 20170319
Zoner I-Worm.Cridex.AA 20170319
Alibaba 20170228
ClamAV 20170319
CMC 20170317
CrowdStrike Falcon (ML) 20170130
Endgame 20170317
eScan 20170319
nProtect 20170319
Palo Alto Networks (Known Signatures) 20170319
SentinelOne (Static ML) 20170315
SUPERAntiSpyware 20170319
Trustlook 20170319
ViRobot 20170319
WhiteArmor 20170315
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
167936
Highest datetime
2014-01-16 21:28:40
Lowest datetime
2014-01-16 21:28:40
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x42a77123

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
167936

ZipCompressedSize
108041

FileTypeExtension
zip

ZipFileName
Kunden_Kreditvertrag_ID_00299487366292974_Monat_Januar_2014_FinanzGruppe_Volksbanken_Raiffeisenbanken.exe

ZipBitFlag
0

ZipModifyDate
2014:01:16 21:28:20

Compressed bundles
File identification
MD5 a09dd5c454693a0cc9d877dff371b9fc
SHA1 de06a520ddfbeb972c29dac995422c7e91b00424
SHA256 745a29734e00f669d4b90b1197dad7b7f7e1781ba2e910b78430f5f643ee8e00
ssdeep
3072:9GiToxIkMLjXDuHtO22eTAyeOkQOMJJlmCiUalNmG5:8QgqjTuHv5AydkQOMJTqUal/

File size 105.8 KB ( 108349 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2014-01-16 20:17:25 UTC ( 3 years, 5 months ago )
Last submission 2017-03-19 09:39:18 UTC ( 3 months, 1 week ago )
File names aa
file-6483770_zip
Kunden_Kreditvertrag_ID_00299487366292974.zip
Kunden_Kreditvertrag_ID_002994873662929741.zip
Kunden_Kreditvertrag_ID_00299487366292974(1).zip
19533959
2773f3c8d4e6116ff171b372364b170dc86d4dea
output.19533959.txt
19533000
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!