× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 85c36d088508775615ec77f94a8740a222574ffead9d61dea5b5973098be7d09
File name: 24d0.vir.DNvir.bz2
Detection ratio: 39 / 57
Analysis date: 2017-05-15 14:07:44 UTC ( 2 months, 2 weeks ago )
Antivirus Result Update
AegisLab Troj.Ransom.W32.Wanna.toNz 20170515
AhnLab-V3 Trojan/Win32.WannaCryptor.R200572 20170515
ALYac Trojan.Ransom.WannaCryptor 20170515
Antiy-AVL Trojan[Ransom]/Win32.Scatter 20170515
Arcabit Trojan.Generic.D4D2151 20170515
Avast Win32:WanaCry-A [Trj] 20170515
AVG Ransom_r.CGA 20170515
Avira (no cloud) BDS/Agent.ilyda 20170515
Baidu Win32.Worm.Rbot.a 20170503
BitDefender Trojan.GenericKD.5054801 20170515
CAT-QuickHeal Ransom.WannaCrypt.A4 20170515
ClamAV Win.Trojan.Agent-6313931-0 20170515
Comodo TrojWare.Win32.Ransom.WannaCryptor.B 20170515
Cyren W32/Trojan.AHAZ-1193 20170515
DrWeb Trojan.Encoder.11432 20170515
Emsisoft Trojan.GenericKD.5054801 (B) 20170515
ESET-NOD32 Win32/Exploit.CVE-2017-0147.A 20170515
F-Prot W32/WannaCrypt.D 20170515
F-Secure Trojan.GenericKD.5054801 20170515
Fortinet W32/WannaCryptor.D!tr 20170515
GData Trojan.GenericKD.5054801 20170515
Ikarus Trojan-Ransom.WanaCrypt 20170515
Sophos ML virtool.win32.injector.eg 20170413
Jiangmin Trojan.WanaCry.i 20170515
K7AntiVirus Exploit ( 0050d7a31 ) 20170515
K7GW Exploit ( 0050d7a31 ) 20170515
Kaspersky Trojan-Ransom.Win32.Wanna.m 20170515
McAfee Ransom-O 20170515
McAfee-GW-Edition Ransom-O 20170515
Microsoft Ransom:Win32/WannaCrypt 20170515
eScan Trojan.GenericKD.5054801 20170515
NANO-Antivirus Trojan.Win32.Wanna.eoqegc 20170515
Panda Trj/RansomCrypt.K 20170515
Rising Ransom.FileCryptor!8.1A7 (cloud:pN1yUsg5xNU) 20170515
Sophos AV Troj/Ransom-EMG 20170515
TrendMicro WORM_WCRY.A 20170515
TrendMicro-HouseCall WORM_WCRY.A 20170515
VBA32 Trojan.Filecoder 20170515
ZoneAlarm by Check Point Trojan-Ransom.Win32.Wanna.m 20170515
Ad-Aware 20170515
Alibaba 20170515
AVware 20170515
Bkav 20170515
CMC 20170515
CrowdStrike Falcon (ML) 20170130
Endgame 20170503
Kingsoft 20170515
Malwarebytes 20170515
nProtect 20170515
Palo Alto Networks (Known Signatures) 20170515
Qihoo-360 20170515
SentinelOne (Static ML) 20170330
SUPERAntiSpyware 20170515
Symantec 20170515
Symantec Mobile Insight 20170514
Tencent 20170515
TheHacker 20170514
Trustlook 20170515
VIPRE 20170515
ViRobot 20170515
Webroot 20170515
WhiteArmor 20170512
Yandex 20170512
Zillya 20170511
Zoner 20170515
The file being studied is a compressed stream! More specifically, it is a BZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
3723264
Highest datetime
Lowest datetime
ExifTool file metadata
MIMEType
application/bzip2

FileType
BZ2

Warning
Unsupported file type

FileTypeExtension
bz2

File identification
MD5 4826b0328e7b6b7a07b08f093f7e43a0
SHA1 acbdb8ab166d2df2f817ecba528f69d1ea1f7d68
SHA256 85c36d088508775615ec77f94a8740a222574ffead9d61dea5b5973098be7d09
ssdeep
98304:kL4JwmkxLAsKvVyQDEh/Ze2yGMwEi4tWi3L:CajusLvYQDEh/HEWc

File size 3.5 MB ( 3641597 bytes )
File type BZIP
Magic literal
bzip2 compressed data, block size = 900k

TrID bzip2 compressed archive (100.0%)
Tags
bzip exploit cve-2017-0147 contains-pe

VirusTotal metadata
First submission 2017-05-15 14:07:44 UTC ( 2 months, 2 weeks ago )
Last submission 2017-05-15 14:07:44 UTC ( 2 months, 2 weeks ago )
File names 24d0.vir.DNvir.bz2
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!