× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8f2e21cfe08e653ef01013db1e61ed760f46d255d1ba40dd583c1f876a334447
File name: PO_201808120834.Pdf.zip
Detection ratio: 46 / 62
Analysis date: 2018-08-29 00:18:26 UTC ( 2 months, 2 weeks ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Delphiless.Exp 20180828
ALYac Trojan.GenericKD.40417699 20180829
Antiy-AVL Trojan/Win32.Fuerboos 20180829
Arcabit Trojan.Generic.D268B9A3 20180828
Avast Win32:Dropper-gen [Drp] 20180828
AVG Win32:Dropper-gen [Drp] 20180828
Avira (no cloud) HIDDENEXT/Worm.Gen 20180829
AVware Trojan.Zip.Bredozp.b (v) 20180823
BitDefender Trojan.GenericKD.40417699 20180828
CAT-QuickHeal Trojan.Fuerboos 20180828
Comodo Heur.Dual.Extensions 20180828
Cylance Unsafe 20180829
Cyren W32/Trojan.ZCBR-9091 20180828
DrWeb Trojan.PWS.Stealer.23680 20180828
Emsisoft Trojan.GenericKD.40417699 (B) 20180828
ESET-NOD32 a variant of Win32/Injector.DZXZ 20180828
F-Prot W32/Heuristic-300!Eldorado 20180828
F-Secure Trojan.GenericKD.40417699 20180829
Fortinet W32/Injector.EAAL!tr 20180828
GData Trojan.GenericKD.40417699 20180828
Ikarus Trojan.Crypt 20180828
Sophos ML heuristic 20180717
Jiangmin Backdoor.MSIL.aqdi 20180829
K7AntiVirus Riskware ( 0040eff71 ) 20180828
K7GW Riskware ( 0040eff71 ) 20180828
Kaspersky Backdoor.Win32.Androm.qgqg 20180829
Malwarebytes Trojan.MalPack.DLF 20180828
MAX malware (ai score=97) 20180829
McAfee Packed-FIU!0122C3A15F90 20180828
McAfee-GW-Edition BehavesLike.Fareit.fc 20180828
Microsoft Trojan:Win32/Skeeyah.A!rfn 20180828
NANO-Antivirus Trojan.Win32.Inject.fgvwvp 20180828
Panda Trj/GdSda.A 20180828
Qihoo-360 Win32/Backdoor.0c0 20180829
Rising Trojan.Injector!1.AFE3 (CLOUD) 20180828
Sophos AV Mal/DrodZp-A 20180828
Symantec Trojan.Gen.NPE 20180829
Tencent Win32.Backdoor.Androm.Ssgs 20180829
TrendMicro TrojanS.500F8E1F 20180828
TrendMicro-HouseCall Suspicious_GEN.F47V0821 20180828
VBA32 Trojan.Fuerboos 20180828
VIPRE Trojan.Zip.Bredozp.b (v) 20180828
ViRobot Trojan.Win32.Z.Fuerboos.779264 20180828
Zillya Trojan.GenericKD.Win32.159905 20180828
ZoneAlarm by Check Point Backdoor.Win32.Androm.qgqg 20180828
Zoner Trojan.Barys 20180828
Ad-Aware 20180829
AegisLab 20180828
Alibaba 20180713
Avast-Mobile 20180828
Babable 20180822
Baidu 20180828
Bkav 20180828
ClamAV 20180828
CMC 20180828
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
eGambit 20180829
Endgame 20180730
Kingsoft 20180829
eScan 20180828
Palo Alto Networks (Known Signatures) 20180829
SentinelOne (Static ML) 20180701
SUPERAntiSpyware 20180828
Symantec Mobile Insight 20180822
TACHYON 20180828
TheHacker 20180824
TotalDefense 20180828
Trustlook 20180829
Webroot 20180829
Yandex 20180827
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
779264
Highest datetime
2018-08-21 13:56:46
Lowest datetime
2018-08-21 13:56:46
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x1aa35979

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
779264

ZipCompressedSize
396169

FileTypeExtension
zip

ZipFileName
PO_201808120834.Pdf.exe

ZipBitFlag
0

ZipModifyDate
2018:08:21 13:56:46

File identification
MD5 5406d2e7e2197d2f3aaa8da9c2ec616e
SHA1 a8a39daab50e879d98cc25c6812e061b18bd037b
SHA256 8f2e21cfe08e653ef01013db1e61ed760f46d255d1ba40dd583c1f876a334447
ssdeep
6144:b6PeKrP6kIR+vQBXCWWoivI+SFcK+YEAWY9cDxHcmE3ZkoH5xb3Hf2eW0ffx5WWI:86kIyQFCWW9Q+DRDO9HXb3VWWfxY

File size 387.0 KB ( 396313 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2018-08-21 13:09:40 UTC ( 2 months, 3 weeks ago )
Last submission 2018-08-21 13:09:40 UTC ( 2 months, 3 weeks ago )
File names PO_201808120834.Pdf.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!