× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: cb0cfdcfa1508b42d53f9fb9b6c23181c5332ce2519d3356412677270a21b9f6
File name: 409093
Detection ratio: 0 / 55
Analysis date: 2016-01-16 23:47:08 UTC ( 2 years, 10 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160117
AegisLab 20160117
Yandex 20160117
AhnLab-V3 20160117
Alibaba 20160115
ALYac 20160118
Antiy-AVL 20160117
Arcabit 20160118
Avast 20160118
AVG 20160118
Avira (no cloud) 20160117
AVware 20160111
Baidu-International 20160117
BitDefender 20160118
Bkav 20160116
ByteHero 20160118
CAT-QuickHeal 20160116
ClamAV 20160117
CMC 20160111
Comodo 20160117
Cyren 20160117
DrWeb 20160117
Emsisoft 20160117
ESET-NOD32 20160118
F-Prot 20160117
F-Secure 20160116
Fortinet 20160117
GData 20160117
Ikarus 20160117
Jiangmin 20160117
K7AntiVirus 20160117
K7GW 20160117
Kaspersky 20160117
Malwarebytes 20160117
McAfee 20160117
McAfee-GW-Edition 20160117
Microsoft 20160117
eScan 20160117
NANO-Antivirus 20160118
nProtect 20160115
Panda 20160117
Qihoo-360 20160118
Rising 20160117
Sophos AV 20160117
SUPERAntiSpyware 20160117
Symantec 20160117
TheHacker 20160116
TotalDefense 20160117
TrendMicro 20160118
TrendMicro-HouseCall 20160118
VBA32 20160117
VIPRE 20160118
ViRobot 20160117
Zillya 20160117
Zoner 20160117
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
11
Uncompressed size
2744079
Highest datetime
2007-03-08 10:57:08
Lowest datetime
2001-09-05 04:23:24
Contained files by extension
cab
2
txt
2
bin
1
exe
1
inx
1
hdr
1
ini
1
ex_
1
Contained files by type
unknown
9
directory
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xd84d03de

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
467496

ZipCompressedSize
466947

FileTypeExtension
zip

ZipFileName
Disk1/data1.cab

ZipBitFlag
0

ZipModifyDate
2007:03:08 10:56:58

Execution parents
File identification
MD5 aa4a77001e6bfecf3a727b07905fe770
SHA1 5d188883b66ab1420ce950ed038d258c16062eff
SHA256 cb0cfdcfa1508b42d53f9fb9b6c23181c5332ce2519d3356412677270a21b9f6
ssdeep
49152:JZhnW2YwpgUpNEHvzvjAx2n7izVDcIvq+qJ8WznU0lRCU7ouK:JiTwpFEHvzvj1k2Iv9qJ8WrUERCM1K

File size 2.4 MB ( 2529812 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2009-03-24 23:03:24 UTC ( 9 years, 8 months ago )
Last submission 2016-03-17 00:35:41 UTC ( 2 years, 8 months ago )
File names 409093
sothinkfreemenubuilder.zip
1406412423-sothink-free-menu-builder.zip
sothink-free-menu-builder.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!