× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7533064a1a5e9e0c8eb470cfa730ba8e85862760cd63fb3a3cee25845f7725f7
File name: d8b36ac5502391dcb0f27b424e2e39d0
Detection ratio: 41 / 56
Analysis date: 2016-11-22 10:06:54 UTC ( 2 years, 3 months ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Kazy.402393 20161122
AhnLab-V3 Trojan/Win32.ZBot.R123718 20161122
ALYac Gen:Variant.Kazy.402393 20161122
Antiy-AVL Trojan[:HEUR]/Win32.AGeneric 20161122
Arcabit Trojan.Kazy.D623D9 20161122
Avast Sf:Crypt-BT [Trj] 20161122
AVG Zbot.NSJ 20161122
Avira (no cloud) TR/Crypt.XPACK.Gen2 20161122
AVware Trojan.Win32.Zbot.n (v) 20161122
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9996 20161122
BitDefender Gen:Variant.Kazy.402393 20161122
Comodo TrojWare.Win32.Spy.Zbot.ADL 20161122
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20161024
DrWeb Trojan.PWS.Panda.9215 20161122
Emsisoft Gen:Variant.Kazy.402393 (B) 20161122
ESET-NOD32 a variant of Win32/Spy.Zbot.ACB 20161122
F-Secure Gen:Variant.Kazy.402393 20161122
Fortinet W32/Zbot.HX!tr 20161122
GData Gen:Variant.Kazy.402393 20161122
Ikarus Trojan-Spy.Agent 20161122
Sophos ML generic.a 20161018
Jiangmin Trojan/Generic.bdxpk 20161122
K7AntiVirus Spyware ( 004b89a11 ) 20161122
K7GW Spyware ( 004b89a11 ) 20161122
Kaspersky HEUR:Trojan.Win32.Generic 20161122
McAfee GenericATG-FAOU!D8B36AC55023 20161122
McAfee-GW-Edition BehavesLike.Win32.VTFlooder.ch 20161122
Microsoft PWS:Win32/Zbot!VM 20161122
eScan Gen:Variant.Kazy.402393 20161122
NANO-Antivirus Virus.Win32.Gen.ccmw 20161122
Panda Trj/CI.A 20161121
Qihoo-360 Win32/Trojan.c5f 20161122
Sophos AV Mal/Generic-S 20161122
SUPERAntiSpyware Trojan.Agent/Gen-MalPE 20161122
Symantec Heur.AdvML.B 20161122
Tencent Win32.Trojan.Generic.Wtnf 20161122
TrendMicro Cryp_Xin1 20161122
TrendMicro-HouseCall Cryp_Xin1 20161122
VBA32 BScope.Trojan-Spy.Zbot 20161121
VIPRE Trojan.Win32.Zbot.n (v) 20161122
Yandex Trojan.Agent!Shg7iO9SnLU 20161121
AegisLab 20161122
Alibaba 20161122
Bkav 20161121
CAT-QuickHeal 20161122
ClamAV 20161122
CMC 20161122
Cyren 20161122
F-Prot 20161122
Kingsoft 20161122
Malwarebytes 20161122
nProtect 20161122
Rising 20161122
TheHacker 20161122
TotalDefense 20161122
Trustlook 20161122
ViRobot 20161122
Zillya 20161122
Zoner 20161122
The file being studied is a Portable Executable file! More specifically, it is a DOS EXE file.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-08-27 19:30:29
Entry Point 0x00014572
Number of sections 4
PE sections
Overlays
MD5 f64d54d1f0f76357368e18d9b8d8b93d
File type data
Offset 162304
Size 512
Entropy 7.58
PE imports
LoadLibraryA
CharLowerW
File identification
MD5 d8b36ac5502391dcb0f27b424e2e39d0
SHA1 2240b1952c1862bc3c7158a63dda8a2e69f500d4
SHA256 7533064a1a5e9e0c8eb470cfa730ba8e85862760cd63fb3a3cee25845f7725f7
ssdeep
3072:ks46CtdNXo35BmJfOWSHi3BjO+nuITXdXDSet7TDfLdJ8BORiaeqIJsmyv1vvF25:stXY7cfXYi3lFuIb8et7TDmb1J7yvFv6

authentihash 37cbe02182e5103f23cfabc0393c0dd8c7af9d38d5abb242809034b915409cea
imphash 96ea4187ea9ca574f2730ed8154049ff
File size 159.0 KB ( 162816 bytes )
File type DOS EXE
Magic literal
MS-DOS executable

TrID Win32 Executable (generic) (42.5%)
DOS Executable Borland Pascal 7.0x (19.2%)
Generic Win/DOS Executable (18.8%)
DOS Executable Generic (18.8%)
VXD Driver (0.2%)
Tags
mz overlay

VirusTotal metadata
First submission 2016-11-22 10:06:54 UTC ( 2 years, 3 months ago )
Last submission 2016-11-22 10:06:54 UTC ( 2 years, 3 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!