× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9eab349eb2d6f84ddd80347d0dd04c0ce341c8378c16d283445fde8720460ab9
File name: adraw.zip
Detection ratio: 0 / 57
Analysis date: 2015-10-04 23:00:55 UTC ( 3 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware 20151004
AegisLab 20151004
Yandex 20151004
AhnLab-V3 20151004
Alibaba 20150927
ALYac 20151004
Antiy-AVL 20151004
Arcabit 20151004
Avast 20151004
AVG 20151004
Avira (no cloud) 20151004
AVware 20151004
Baidu-International 20151004
BitDefender 20151004
Bkav 20151003
ByteHero 20151005
CAT-QuickHeal 20151003
ClamAV 20151002
CMC 20151002
Comodo 20151004
Cyren 20151004
DrWeb 20151004
Emsisoft 20151004
ESET-NOD32 20151004
F-Prot 20150929
F-Secure 20151003
Fortinet 20151004
GData 20151004
Ikarus 20151004
Jiangmin 20151003
K7AntiVirus 20151004
K7GW 20151004
Kaspersky 20151004
Kingsoft 20151005
Malwarebytes 20151004
McAfee 20151005
McAfee-GW-Edition 20151004
Microsoft 20151004
eScan 20151004
NANO-Antivirus 20151004
nProtect 20151002
Panda 20151004
Qihoo-360 20151005
Rising 20151004
Sophos AV 20151004
SUPERAntiSpyware 20151003
Symantec 20151004
Tencent 20151005
TheHacker 20151002
TotalDefense 20151004
TrendMicro 20151004
TrendMicro-HouseCall 20151004
VBA32 20151003
VIPRE 20151004
ViRobot 20151004
Zillya 20151004
Zoner 20151004
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
2901419
Highest datetime
2009-02-16 10:37:38
Lowest datetime
2009-02-16 10:37:38
Contained files by extension
txt
1
exe
1
Contained files by type
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xf9fdfb17

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
2900782

ZipCompressedSize
2877554

FileTypeExtension
zip

ZipFileName
setup.exe

ZipBitFlag
0

ZipModifyDate
2009:02:16 10:37:38

File identification
MD5 d0c4f199be290e2e499f34cf7f3d4a06
SHA1 f23899472e24b38e82a5419af125f4c5a13e764a
SHA256 9eab349eb2d6f84ddd80347d0dd04c0ce341c8378c16d283445fde8720460ab9
ssdeep
49152:oQJM/O1F5EBiFQh7HCQKGIBuhQexMwbZA0d/4s5UjDl85CL2Uelkc6:8OnAiFQFqceexMwlAKdcF+lkc6

File size 2.7 MB ( 2878185 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe armadillo zip

VirusTotal metadata
First submission 2009-09-03 04:55:06 UTC ( 9 years, 6 months ago )
Last submission 2017-01-01 13:14:49 UTC ( 2 years, 2 months ago )
File names 34950
1282225861-adraw.zip
dc021e5436f0f85b0bd7d6fec8e833d4d2254f1d
adraw.zip
adraw.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!