× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: aaa17473064ac0eb9a55824ec47252fef31f06f654bd6ca5ff3374ef213d19a5
File name: DHL PARCEL DOC ATLAS SHIP 38838__pdf__pdf.zip
Detection ratio: 8 / 56
Analysis date: 2016-04-04 10:00:49 UTC ( 1 year, 6 months ago )
Antivirus Result Update
AegisLab Uds.Dangerousobject.Multi!c 20160404
Baidu Win32.Trojan.WisdomEyes.151026.9950.9999 20160404
Cyren W32/MSIL_Injector.CE.gen!Eldorado 20160404
ESET-NOD32 a variant of MSIL/Kryptik.FPA 20160404
F-Prot W32/MSIL_Injector.CE.gen!Eldorado 20160404
Fortinet MSIL/Kryptik.FPA!tr 20160404
Rising PE:Malware.Generic/QRS!1.9E2D [F] 20160404
Tencent Win32.Trojan.Inject.Auto 20160404
Ad-Aware 20160404
AhnLab-V3 20160404
Alibaba 20160401
ALYac 20160404
Antiy-AVL 20160404
Arcabit 20160404
Avast 20160404
AVG 20160404
Avira (no cloud) 20160403
AVware 20160404
Baidu-International 20160404
BitDefender 20160404
Bkav 20160402
CAT-QuickHeal 20160404
ClamAV 20160402
CMC 20160401
Comodo 20160404
DrWeb 20160404
Emsisoft 20160404
F-Secure 20160404
GData 20160404
Ikarus 20160404
Jiangmin 20160404
K7AntiVirus 20160404
K7GW 20160404
Kaspersky 20160404
Kingsoft 20160404
Malwarebytes 20160404
McAfee 20160404
McAfee-GW-Edition 20160404
Microsoft 20160404
eScan 20160404
NANO-Antivirus 20160404
nProtect 20160404
Panda 20160403
Qihoo-360 20160404
Sophos AV 20160404
SUPERAntiSpyware 20160404
Symantec 20160331
TheHacker 20160403
TrendMicro 20160404
TrendMicro-HouseCall 20160404
VBA32 20160404
VIPRE 20160404
ViRobot 20160404
Yandex 20160316
Zillya 20160403
Zoner 20160404
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
643800
Highest datetime
2016-04-04 06:09:40
Lowest datetime
2016-04-04 06:09:40
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xb42ccd8e

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
643800

ZipCompressedSize
426759

FileTypeExtension
zip

ZipFileName
DHP PARCEL DOC 38838__pdf__pdf.exe

ZipBitFlag
0

ZipModifyDate
2016:04:04 06:09:20

File identification
MD5 fa198253073226f41702d051700b7175
SHA1 9aa808b1e0fdc922a3a00a0cef6eff5ce1601193
SHA256 aaa17473064ac0eb9a55824ec47252fef31f06f654bd6ca5ff3374ef213d19a5
ssdeep
12288:ZdxudVpQ1ergJVwlicAAj+yQJNmpNO2tchVmrVFKp:Z7CXkOgJqVj+yAc7+/SV8p

File size 416.9 KB ( 426925 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2016-04-04 10:00:49 UTC ( 1 year, 6 months ago )
Last submission 2016-04-04 10:00:49 UTC ( 1 year, 6 months ago )
File names DHL PARCEL DOC ATLAS SHIP 38838__pdf__pdf.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!