× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a2d314f8e52b329d6d5740aee9d2081dbd3b1c667f9a29b043ec93ead92dddf1
File name: holiline302setup.zip
Detection ratio: 0 / 56
Analysis date: 2014-12-19 10:36:08 UTC ( 2 years, 11 months ago ) View latest
Antivirus Result Update
Ad-Aware 20141219
AegisLab 20141219
Yandex 20141217
AhnLab-V3 20141218
ALYac 20141219
Antiy-AVL 20141219
Avast 20141219
AVG 20141219
Avira (no cloud) 20141219
AVware 20141219
Baidu-International 20141219
BitDefender 20141219
Bkav 20141219
ByteHero 20141219
CAT-QuickHeal 20141219
ClamAV 20141219
CMC 20141218
Comodo 20141219
Cyren 20141219
DrWeb 20141219
Emsisoft 20141219
ESET-NOD32 20141219
F-Prot 20141219
F-Secure 20150103
Fortinet 20141219
GData 20141219
Ikarus 20141219
Jiangmin 20141218
K7AntiVirus 20141218
K7GW 20141219
Kaspersky 20141219
Kingsoft 20141219
Malwarebytes 20141219
McAfee 20141219
McAfee-GW-Edition 20150104
Microsoft 20141219
eScan 20141219
NANO-Antivirus 20141219
Norman 20141219
nProtect 20141219
Panda 20141218
Qihoo-360 20150104
Rising 20141218
Sophos AV 20141219
SUPERAntiSpyware 20141219
Symantec 20141219
Tencent 20141219
TheHacker 20141219
TotalDefense 20150104
TrendMicro 20141219
TrendMicro-HouseCall 20141219
VBA32 20141218
VIPRE 20141219
ViRobot 20141219
Zillya 20141218
Zoner 20141219
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
6753950
Highest datetime
2014-12-19 13:33:06
Lowest datetime
2014-12-19 13:33:06
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xcb6624a6

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
6753950

ZipCompressedSize
6737075

FileTypeExtension
zip

ZipFileName
holiline302setup.exe

ZipBitFlag
0

ZipModifyDate
2014:12:19 13:33:03

File identification
MD5 9c7dec2a3a31080b76aa9b447472dd24
SHA1 a7a4b0303ece84927fb9cd2ceca7501343963d94
SHA256 a2d314f8e52b329d6d5740aee9d2081dbd3b1c667f9a29b043ec93ead92dddf1
ssdeep
196608:Uj/wErkkR7s+592opm55NZQn6V5vfeKjZKMYEQ:KYskI719k55NS6V5vf2f

File size 6.4 MB ( 6737213 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
nsis contains-pe zip

VirusTotal metadata
First submission 2014-12-19 10:36:08 UTC ( 2 years, 11 months ago )
Last submission 2015-10-19 03:32:50 UTC ( 2 years, 1 month ago )
File names holilinelatest.zip
holilinelatest.zip
holiline302setup.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!