× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b9b0b40d36f01504be4f32cf936d9b6eaf0311b3eed867090e6d7476bc857381
File name: VirusShare_9e419738c7d18894c2f3d4c588140772
Detection ratio: 2 / 60
Analysis date: 2018-08-25 20:31:27 UTC ( 3 months, 2 weeks ago )
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9557 20180820
Cylance Unsafe 20180825
Ad-Aware 20180825
AegisLab 20180825
AhnLab-V3 20180825
Alibaba 20180713
ALYac 20180825
Antiy-AVL 20180825
Arcabit 20180825
Avast 20180825
Avast-Mobile 20180824
AVG 20180825
Avira (no cloud) 20180825
AVware 20180823
Babable 20180822
BitDefender 20180825
Bkav 20180824
CAT-QuickHeal 20180825
ClamAV 20180825
CMC 20180825
Comodo 20180825
CrowdStrike Falcon (ML) 20180723
Cybereason 20180308
Cyren 20180825
DrWeb 20180825
eGambit 20180825
Emsisoft 20180825
Endgame 20180730
ESET-NOD32 20180825
F-Prot 20180825
F-Secure 20180825
Fortinet 20180825
GData 20180825
Sophos ML 20180717
Jiangmin 20180825
K7AntiVirus 20180825
K7GW 20180825
Kaspersky 20180825
Kingsoft 20180825
Malwarebytes 20180825
MAX 20180825
McAfee 20180825
McAfee-GW-Edition 20180825
Microsoft 20180825
eScan 20180825
NANO-Antivirus 20180825
Palo Alto Networks (Known Signatures) 20180825
Panda 20180825
Qihoo-360 20180825
Rising 20180825
SentinelOne (Static ML) 20180701
Sophos AV 20180825
SUPERAntiSpyware 20180825
Symantec 20180825
Symantec Mobile Insight 20180822
TACHYON 20180825
Tencent 20180825
TheHacker 20180824
TotalDefense 20180825
TrendMicro 20180825
TrendMicro-HouseCall 20180825
Trustlook 20180825
VBA32 20180824
VIPRE 20180825
ViRobot 20180825
Webroot 20180825
Yandex 20180824
Zillya 20180824
ZoneAlarm by Check Point 20180825
Zoner 20180824
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
40
Uncompressed size
1523706
Highest datetime
2009-01-06 03:21:36
Lowest datetime
2003-03-02 17:18:34
Contained files by extension
ini
29
txt
5
exe
2
zip
1
chm
1
dll
1
TXT
1
Contained files by type
unknown
36
Portable Executable
3
ZIP
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xb174a500

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
381952

ZipCompressedSize
273340

FileTypeExtension
zip

ZipFileName
Lfe.exe

ZipBitFlag
0x0002

ZipModifyDate
2009:01:06 02:45:26

File identification
MD5 9e419738c7d18894c2f3d4c588140772
SHA1 0ed8f346098b9b2d7fc82ab1412558c09f644c54
SHA256 b9b0b40d36f01504be4f32cf936d9b6eaf0311b3eed867090e6d7476bc857381
ssdeep
24576:UD2MEm0AAjRkMRIgg60i9/s7KcPpevYV1JjkM9rCY9UG9hLH1HhTlAN:USMb0AqRCli9/hhvYaM9h9U2hLHnTmN

File size 1.2 MB ( 1271001 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip software-collection

VirusTotal metadata
First submission 2009-01-12 16:34:11 UTC ( 9 years, 11 months ago )
Last submission 2018-07-22 14:27:07 UTC ( 4 months, 2 weeks ago )
File names Lame-Front-End_1.3.zip
Lame-Front-End.zip
aa
59656530
VirusShare_9e419738c7d18894c2f3d4c588140772
output.59656530.txt
U1xDTN2SWA.ocx
VirusShare_9e419738c7d18894c2f3d4c588140772
ffc824dad0155ad2304fd09e6806127738f7267f
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!