× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b5b9599ab593e94ee1e870334e72b433470acca3a1d8f4a9132900880553970d
File name: 435906
Detection ratio: 0 / 58
Analysis date: 2016-03-27 06:15:11 UTC ( 2 years, 10 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160326
AegisLab 20160327
Yandex 20160316
AhnLab-V3 20160326
Alibaba 20160323
ALYac 20160327
Antiy-AVL 20160327
Arcabit 20160326
Avast 20160327
AVG 20160327
Avira (no cloud) 20160326
AVware 20160327
Baidu 20160325
Baidu-International 20160326
BitDefender 20160327
Bkav 20160327
ByteHero 20160327
CAT-QuickHeal 20160326
ClamAV 20160326
CMC 20160322
Comodo 20160327
Cyren 20160327
DrWeb 20160327
Emsisoft 20160327
ESET-NOD32 20160327
F-Prot 20160327
F-Secure 20160327
Fortinet 20160327
GData 20160327
Ikarus 20160326
Jiangmin 20160327
K7AntiVirus 20160327
K7GW 20160323
Kaspersky 20160327
Kingsoft 20160327
Malwarebytes 20160327
McAfee 20160327
McAfee-GW-Edition 20160327
Microsoft 20160327
eScan 20160327
NANO-Antivirus 20160327
nProtect 20160325
Panda 20160326
Qihoo-360 20160327
Rising 20160327
Sophos AV 20160327
SUPERAntiSpyware 20160326
Symantec 20160327
Tencent 20160327
TheHacker 20160325
TotalDefense 20160327
TrendMicro 20160327
TrendMicro-HouseCall 20160327
VBA32 20160326
VIPRE 20160326
ViRobot 20160327
Zillya 20160326
Zoner 20160327
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
20
Uncompressed size
9233150
Highest datetime
2009-11-03 09:06:44
Lowest datetime
2009-10-21 09:15:22
Contained files by extension
pyd
8
dll
6
xml
1
exe
1
chm
1
Contained files by type
Portable Executable
14
unknown
3
directory
2
ZIP
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Device Doctor Portable/

ZipBitFlag
0

ZipModifyDate
2009:11:03 09:06:44

Execution parents
Compressed bundles
File identification
MD5 75559a9d5b88490e4296befcca4f51ab
SHA1 95e06c29c762a6ebb5236a7d5d35477d14e89978
SHA256 b5b9599ab593e94ee1e870334e72b433470acca3a1d8f4a9132900880553970d
ssdeep
98304:kITDP4PAqlXpU4nxs9Z4zteI7wvobct+p7jedEv79LzAyWqFBk5DOdQL5n:kITrFqlZtxiNIkvuZlDJAcDk5DOdQNn

File size 5.1 MB ( 5350489 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip upx software-collection

VirusTotal metadata
First submission 2009-11-12 09:28:42 UTC ( 9 years, 3 months ago )
Last submission 2018-06-18 21:01:15 UTC ( 8 months ago )
File names Device Doctor Portable 1.0.0.1.zip
file
test.exe
output.8868203.txt
devicedoctorportable.zip
8868203
DeviceDoctorPortable.zip
file-2954879_zip
device-doctor-portable-1.0.0.1 [1].exe
1322526182-DeviceDoctorPortable.zip
DeviceDoctorPortable.zip
59550_DeviceDoctorPortable.zip
file-631067_zip
435906
file
f0651cc5204697e29e0808a099e6dd123520430e
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!