× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: aeffd5219863cb9406d03738732220d71482edeb46b1c98e41c06e707e751e3f
File name: u.zip
Detection ratio: 15 / 59
Analysis date: 2019-02-15 07:26:26 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Antiy-AVL RiskWare[RiskTool]/Win32.AGeneric 20190215
Cylance Unsafe 20190215
Cyren W32/GenPua.48FE7B7C!Olympus 20190215
DrWeb Tool.UltraSurf.17 20190215
ESET-NOD32 a variant of Win32/UltraReach.AG potentially unsafe 20190215
Fortinet Riskware/Generic 20190215
Ikarus PUA.UltraReach 20190214
Jiangmin RiskTool.Generic.mmf 20190215
Kaspersky not-a-virus:HEUR:RiskTool.Win32.Generic 20190215
McAfee Artemis!48FE7B7C67BC 20190215
Microsoft PUA:Win32/Presenoker 20190215
NANO-Antivirus Riskware.Win32.UltraSurf.fmwbzd 20190215
Rising PUA.Presenoker!8.F608/N3#79% (RDM+:cmRtazojuz+sNeBwtiUi1v47vwTP) 20190215
VBA32 BScope.Trojan.Downloader 20190214
ZoneAlarm by Check Point not-a-virus:HEUR:RiskTool.Win32.Generic 20190215
Acronis 20190213
Ad-Aware 20190215
AegisLab 20190215
AhnLab-V3 20190214
Alibaba 20180921
ALYac 20190215
Arcabit 20190214
Avast 20190215
Avast-Mobile 20190214
AVG 20190215
Avira (no cloud) 20190215
Babable 20180918
Baidu 20190215
BitDefender 20190215
Bkav 20190215
CAT-QuickHeal 20190214
ClamAV 20190214
CMC 20190214
Comodo 20190215
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
eGambit 20190215
Emsisoft 20190215
Endgame 20181108
F-Prot 20190215
F-Secure 20190215
GData 20190215
Sophos ML 20181128
K7AntiVirus 20190215
K7GW 20190215
Kingsoft 20190215
Malwarebytes 20190215
MAX 20190215
McAfee-GW-Edition 20190215
eScan 20190215
Palo Alto Networks (Known Signatures) 20190215
Panda 20190214
Qihoo-360 20190215
SentinelOne (Static ML) 20190203
Sophos AV 20190215
SUPERAntiSpyware 20190213
Symantec 20190215
Symantec Mobile Insight 20190207
TACHYON 20190215
Tencent 20190215
TheHacker 20190212
Trapmine 20190123
TrendMicro-HouseCall 20190215
Trustlook 20190215
ViRobot 20190215
Webroot 20190215
Yandex 20190215
Zillya 20190214
Zoner 20190215
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
3682952
Highest datetime
2019-02-12 00:13:24
Lowest datetime
2019-02-12 00:13:24
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x35f729b8

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
3682952

ZipCompressedSize
3600857

FileTypeExtension
zip

ZipFileName
u1902.exe

ZipBitFlag
0

ZipModifyDate
2019:02:12 00:13:24

Execution parents
File identification
MD5 ae3a28953440346b20faa79632eaf927
SHA1 bd36c949019300ef4d2015c5421b80b277dad49b
SHA256 aeffd5219863cb9406d03738732220d71482edeb46b1c98e41c06e707e751e3f
ssdeep
49152:M96rGdEXpU7Tic/phot/uDB4TS9+VGmfGWPKCob7UyCp3mfE/MOu01rP72/Jodty:CJ+Xm37zdYu+L+PwTMwrPS/GlwRzpJfd

File size 3.4 MB ( 3600973 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2019-02-14 23:28:44 UTC ( 1 month, 1 week ago )
Last submission 2019-03-02 23:47:14 UTC ( 3 weeks, 2 days ago )
File names u.zip
288975_stp.DAT
ultrasurf1902.zip
u (1).zip
u.zip
UltraSurf.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!