× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b578e0eee0853b990cd2a1e05cce276be64485be943ddda149d29e6a64b2aa30
File name: F3D9B2CB51E81D12FF3D5FAACA231041.zip
Detection ratio: 4 / 58
Analysis date: 2017-08-18 21:20:28 UTC ( 1 year, 3 months ago )
Antivirus Result Update
Arcabit Trojan.Generic.D4DD96A 20170818
Fortinet W32/Filecoder_Jaff.A!tr 20170818
NANO-Antivirus Trojan.Win32.Scatter.epvmhq 20170818
TrendMicro-HouseCall Suspicious_GEN.F47V0518 20170818
Ad-Aware 20170818
AegisLab 20170818
AhnLab-V3 20170818
Alibaba 20170818
ALYac 20170818
Antiy-AVL 20170818
Avast 20170818
AVG 20170818
Avira (no cloud) 20170818
AVware 20170818
Baidu 20170817
BitDefender 20170818
CAT-QuickHeal 20170818
ClamAV 20170818
CMC 20170818
Comodo 20170818
CrowdStrike Falcon (ML) 20170804
Cylance 20170818
Cyren 20170818
DrWeb 20170818
Emsisoft 20170818
Endgame 20170721
ESET-NOD32 20170818
F-Prot 20170818
F-Secure 20170818
GData 20170818
Ikarus 20170818
Sophos ML 20170818
Jiangmin 20170818
K7AntiVirus 20170818
K7GW 20170817
Kaspersky 20170818
Kingsoft 20170818
Malwarebytes 20170818
MAX 20170818
McAfee 20170818
McAfee-GW-Edition 20170818
Microsoft 20170818
eScan 20170818
nProtect 20170818
Palo Alto Networks (Known Signatures) 20170818
Panda 20170818
Qihoo-360 20170818
SentinelOne (Static ML) 20170806
Sophos AV 20170818
SUPERAntiSpyware 20170818
Symantec 20170818
Symantec Mobile Insight 20170818
Tencent 20170818
TheHacker 20170817
TotalDefense 20170818
TrendMicro 20170818
Trustlook 20170818
VBA32 20170818
VIPRE 20170818
ViRobot 20170818
Webroot 20170818
WhiteArmor 20170817
Yandex 20170818
Zillya 20170817
ZoneAlarm by Check Point 20170818
Zoner 20170818
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
This compressed bundle is encrypted. The encryption password is infected.
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
163840
Highest datetime
2017-05-17 14:42:24
Lowest datetime
2017-05-17 14:42:24
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x7224e9ca

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
163840

ZipCompressedSize
112847

FileTypeExtension
zip

ZipFileName
F3D9B2CB51E81D12FF3D5FAACA231041

ZipBitFlag
0x0001

ZipModifyDate
2017:05:17 14:42:12

File identification
MD5 4b418c96d52e695c10d86f5692f5f044
SHA1 5a64760e932f51d9ded692cc8ce1530b8c1e223e
SHA256 b578e0eee0853b990cd2a1e05cce276be64485be943ddda149d29e6a64b2aa30
ssdeep
3072:iMikOLncuWCRr+MZliyYuAEobdPOxyRPV+Z3q9L0Oqt0D:iMikivh5+5unobdOxyRPVAquG

File size 110.4 KB ( 113009 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
encrypted contains-pe zip

VirusTotal metadata
First submission 2017-05-18 02:53:12 UTC ( 1 year, 6 months ago )
Last submission 2017-08-18 21:20:28 UTC ( 1 year, 3 months ago )
File names F3D9B2CB51E81D12FF3D5FAACA231041.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!