× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 87f1f85e1dc0635d963927163570e2f8171c5d59db90fdc7f1e8a67ae31e5796
File name: 442731
Detection ratio: 1 / 57
Analysis date: 2016-03-22 15:02:03 UTC ( 3 years ago ) View latest
Antivirus Result Update
TheHacker Trojan/Dm.amr 20160321
Ad-Aware 20160322
AegisLab 20160322
Yandex 20160316
AhnLab-V3 20160322
Alibaba 20160322
ALYac 20160322
Antiy-AVL 20160322
Arcabit 20160322
Avast 20160322
AVG 20160321
Avira (no cloud) 20160322
AVware 20160322
Baidu 20160322
Baidu-International 20160322
BitDefender 20160322
Bkav 20160322
ByteHero 20160322
CAT-QuickHeal 20160322
ClamAV 20160319
CMC 20160322
Comodo 20160322
Cyren 20160322
DrWeb 20160322
Emsisoft 20160322
ESET-NOD32 20160322
F-Prot 20160322
F-Secure 20160322
Fortinet 20160322
GData 20160322
Ikarus 20160322
Jiangmin 20160322
K7AntiVirus 20160322
K7GW 20160322
Kaspersky 20160322
Malwarebytes 20160322
McAfee 20160322
McAfee-GW-Edition 20160322
Microsoft 20160322
eScan 20160322
NANO-Antivirus 20160322
nProtect 20160322
Panda 20160321
Qihoo-360 20160322
Rising 20160322
Sophos AV 20160322
SUPERAntiSpyware 20160322
Symantec 20160322
Tencent 20160322
TotalDefense 20160322
TrendMicro 20160322
TrendMicro-HouseCall 20160322
VBA32 20160322
VIPRE 20160322
ViRobot 20160322
Zillya 20160322
Zoner 20160322
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
4
Uncompressed size
4703862
Highest datetime
2013-10-01 06:52:54
Lowest datetime
2008-10-02 13:24:34
Contained files by extension
rtf
2
txt
1
exe
1
Contained files by type
RTF
2
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xa1d42549

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
55625

ZipCompressedSize
5973

FileTypeExtension
zip

ZipFileName
readme.rtf

ZipBitFlag
0

ZipModifyDate
2012:10:06 17:56:16

File identification
MD5 70be4e3e252ba44201e4a845eb525561
SHA1 e546e160be49cd205e7524eb4e0e2e1e450f19fa
SHA256 87f1f85e1dc0635d963927163570e2f8171c5d59db90fdc7f1e8a67ae31e5796
ssdeep
98304:eS9/Z8aCPzAq0Qzk7ccLxrBzbyImxoYyayd:3ZgPz0QshL/zbyPxo5/

File size 3.9 MB ( 4071182 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2013-12-16 15:23:39 UTC ( 5 years, 3 months ago )
Last submission 2016-03-21 00:21:50 UTC ( 3 years ago )
File names setup_7.zip
141480493651593-setup_7.zip
MDlW4bW1y.mht
aa
uo3jV2QR0.fon
1441326483-setup_7.zip
setup_7.zip
442731
邮件发送工具
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!