× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8e4ac71e32cfa66547eb3576135de893ca9e03ea93b276683d89bf219856b8e4
File name: d891b7452186ff6ab2cacf6b311f57144db8852c
Detection ratio: 3 / 54
Analysis date: 2016-01-31 12:42:07 UTC ( 3 years, 3 months ago )
Antivirus Result Update
AegisLab Packer.Generic!c 20160130
TrendMicro PAK_Generic.005 20160130
TrendMicro-HouseCall PAK_Generic.005 20160130
Ad-Aware 20160130
Yandex 20160129
AhnLab-V3 20160129
Alibaba 20160129
ALYac 20160130
Antiy-AVL 20160130
Arcabit 20160130
Avast 20160130
AVG 20160130
Avira (no cloud) 20160130
Baidu-International 20160129
BitDefender 20160130
Bkav 20160129
ByteHero 20160131
CAT-QuickHeal 20160129
ClamAV 20160130
CMC 20160130
Comodo 20160130
Cyren 20160129
DrWeb 20160130
Emsisoft 20160130
ESET-NOD32 20160130
F-Prot 20160129
F-Secure 20160129
Fortinet 20160130
GData 20160130
Ikarus 20160129
Jiangmin 20160129
K7AntiVirus 20160129
K7GW 20160129
Kaspersky 20160129
Malwarebytes 20160130
McAfee 20160130
McAfee-GW-Edition 20160130
Microsoft 20160130
eScan 20160130
NANO-Antivirus 20160130
nProtect 20160129
Panda 20160129
Qihoo-360 20160131
Rising 20160129
Sophos AV 20160130
SUPERAntiSpyware 20160130
Symantec 20160129
TheHacker 20160130
TotalDefense 20160129
VBA32 20160128
VIPRE 20160130
ViRobot 20160129
Zillya 20160130
Zoner 20160130
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
3
Uncompressed size
48627
Highest datetime
2003-06-07 18:04:12
Lowest datetime
2003-06-07 14:28:36
Contained files by extension
pdf
1
exe
1
diz
1
Contained files by type
unknown
1
Portable Executable
1
PDF
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x461150f3

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
124

ZipCompressedSize
100

FileTypeExtension
zip

ZipFileName
file_id.diz

ZipBitFlag
0x0002

ZipModifyDate
2003:06:07 14:28:18

Compressed bundles
File identification
MD5 a826a592ee6b2f66d788e98b653c5a51
SHA1 334c4ff883f55813fbc864770ff9b582cb44c4a1
SHA256 8e4ac71e32cfa66547eb3576135de893ca9e03ea93b276683d89bf219856b8e4
ssdeep
768:t50kl5jHYs8eAoHrrgpeuy7tG5ApkDqTSEvKuF34RRMlyrM8KfZNvg:t5bDTAcrrasSPEvK643M8ys

File size 45.2 KB ( 46265 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2008-11-07 19:26:07 UTC ( 10 years, 6 months ago )
Last submission 2015-08-30 03:54:58 UTC ( 3 years, 8 months ago )
File names output.1292393.txt
1292527
output.1292527.txt
1356242762-padpdf.zip
d891b7452186ff6ab2cacf6b311f57144db8852c
1292393
padpdf.zip
334c4ff883f55813fbc864770ff9b582cb44c4a1.bin
vVGh7jK.caj
76gzD4e.drv
aa
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!