× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b0adafa88c30a6f05b678cddfd2c4841a1816c3dbb5cf774ee8d8bedb2f9902a
File name: Function Caller - DLL.zip
Detection ratio: 2 / 58
Analysis date: 2017-03-15 01:56:55 UTC ( 4 months, 1 week ago )
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20170314
Sophos ML trojan.win32.swrort.a 20170203
Ad-Aware 20170315
AegisLab 20170315
AhnLab-V3 20170314
Alibaba 20170228
ALYac 20170315
Antiy-AVL 20170315
Arcabit 20170315
Avast 20170315
AVG 20170315
Avira (no cloud) 20170315
AVware 20170315
BitDefender 20170315
Bkav 20170314
CAT-QuickHeal 20170314
ClamAV 20170314
CMC 20170314
Comodo 20170315
CrowdStrike Falcon (ML) 20170130
Cyren 20170315
DrWeb 20170314
Emsisoft 20170315
Endgame 20170222
ESET-NOD32 20170315
F-Prot 20170315
F-Secure 20170315
Fortinet 20170315
GData 20170315
Ikarus 20170314
Jiangmin 20170315
K7AntiVirus 20170314
K7GW 20170314
Kaspersky 20170315
Kingsoft 20170315
Malwarebytes 20170315
McAfee 20170315
McAfee-GW-Edition 20170315
Microsoft 20170315
eScan 20170315
NANO-Antivirus 20170315
nProtect 20170315
Palo Alto Networks (Known Signatures) 20170315
Panda 20170314
Qihoo-360 20170315
Rising 20170314
Sophos AV 20170315
SUPERAntiSpyware 20170315
Symantec 20170314
Tencent 20170315
TheHacker 20170315
TrendMicro 20170314
Trustlook 20170315
VBA32 20170314
VIPRE 20170314
ViRobot 20170314
Webroot 20170315
WhiteArmor 20170303
Yandex 20170312
Zillya 20170314
ZoneAlarm by Check Point 20170315
Zoner 20170315
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
29
Uncompressed size
1972068
Highest datetime
2017-03-14 17:17:42
Lowest datetime
2017-02-13 02:40:26
Contained files by extension
obj
2
cpp
2
pdb
2
log
1
suo
1
h
1
ilk
1
dll
1
sln
1
idb
1
vs/
1
Contained files by type
unknown
20
directory
7
Portable Executable
1
Microsoft Office
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
.vs/

ZipBitFlag
0

ZipModifyDate
2017:03:13 01:03:05

File identification
MD5 30db6d07b3827b2490e773a7b8e3190d
SHA1 7143026851132fc1fd6f93f973acfd449bf93bc3
SHA256 b0adafa88c30a6f05b678cddfd2c4841a1816c3dbb5cf774ee8d8bedb2f9902a
ssdeep
6144:1QlArYVJdM47o4FI5hlEPDUZHCQBvNFhji3uLs6puQeDiGPowm1D0nZuktC59:1eAoJdfs4FITlEPDmlBFfjOuLs6pteD0

File size 372.7 KB ( 381609 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2017-03-15 01:56:55 UTC ( 4 months, 1 week ago )
Last submission 2017-03-15 01:56:55 UTC ( 4 months, 1 week ago )
File names Function Caller - DLL.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!