× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7bf9a672cfbd615e365a563a545266d89c22784027585e7db73aaa4621b756d9
File name: file-2640158_zip
Detection ratio: 18 / 43
Analysis date: 2011-08-17 10:01:08 UTC ( 5 years, 11 months ago ) View latest
Antivirus Result Update
AntiVir TR/Crypt.ZPACK.Gen 20110817
AVG Win32/Heri 20110816
BitDefender Gen:Trojan.Heur.BDT.bqW@b8J!Mvci 20110817
CAT-QuickHeal (Suspicious) - DNAScan 20110817
Commtouch W32/Oficla.AT.gen!Eldorado 20110817
Comodo TrojWare.Win32.Trojan.XPack.~gen1 20110817
F-Prot W32/Oficla.AT.gen!Eldorado 20110816
F-Secure Gen:Trojan.Heur.BDT.bqW@b8J!Mvci 20110817
Fortinet W32/FraudLoad.OR!tr.dldr 20110817
GData Gen:Trojan.Heur.BDT.bqW@b8J!Mvci 20110817
Kaspersky HEUR:Trojan.Win32.Generic 20110817
McAfee Generic Downloader.ha 20110817
Microsoft TrojanDownloader:Win32/Chepvil.N 20110817
NOD32 a variant of Win32/Kryptik.RAM 20110817
Panda Suspicious file 20110816
Sophos AV Mal/ChepVil-A 20110817
VBA32 BScope.Dropper.Pij.gen 20110817
VIPRE Trojan.Win32.Generic.pak!cobra 20110817
AhnLab-V3 20110817
Antiy-AVL 20110817
Avast 20110817
Avast5 20110817
ClamAV 20110817
DrWeb 20110817
Emsisoft 20110817
eSafe 20110816
eTrust-Vet 20110817
Ikarus 20110817
Jiangmin 20110816
K7AntiVirus 20110816
McAfee-GW-Edition 20110817
Norman 20110816
nProtect 20110817
PCTools 20110817
Prevx 20110817
Rising 20110817
SUPERAntiSpyware 20110817
Symantec 20110817
TheHacker 20110816
TrendMicro 20110817
TrendMicro-HouseCall 20110817
ViRobot 20110817
VirusBuster 20110816
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
29696
Highest datetime
2011-08-17 09:10:36
Lowest datetime
2011-08-17 09:10:36
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x4b12c5e3

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
29696

ZipCompressedSize
12919

FileTypeExtension
zip

ZipFileName
Ticket-064-2011.exe

ZipBitFlag
0x0002

ZipModifyDate
2011:08:17 09:10:18

File identification
MD5 1c2b06a9fbbea641ae09529e52f29b96
SHA1 fbd90ab904767aef73e1e62feb653e8cf55895d1
SHA256 7bf9a672cfbd615e365a563a545266d89c22784027585e7db73aaa4621b756d9
ssdeep
384:rwzvPqZu7MIxO/LPF/K+m/bWQn5RFjbO0dyN6Lhu+:ra4cMIM/LN/Kx/6MRF7uK8+

File size 12.7 KB ( 13055 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2011-08-17 08:24:23 UTC ( 5 years, 11 months ago )
Last submission 2011-08-30 17:38:04 UTC ( 5 years, 11 months ago )
File names oschoice.exe
7bf9a672cfbd615e365a563a545266d89c22784027585e7db73aaa4621b756d9.bin
2427061621-9-256_1.zip
Ticket-064-211.txt
base64.bin
Ticket-064-211.exe
Ticket-064-211
Ticket-064-211.zip
test
Ticket-064-211.xxx
file-2640158_zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!