× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ce5451b569a070fcddf1b5d7cc8089a40acf714e58937175bdbfb81cf2e6779e
File name: my_new_photo3482374823749823.zip
Detection ratio: 35 / 57
Analysis date: 2015-04-04 00:28:49 UTC ( 4 years ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.2268260 20150404
ALYac Trojan.Agent.BIUR 20150403
Avast Win32:Malware-gen 20150403
AVG MSIL7.BHRZ 20150404
Avira (no cloud) TR/Samca.9214945 20150404
AVware Trojan.Win32.Generic!BT 20150403
Baidu-International Trojan.Win32.Fsysna.boqb 20150403
BitDefender Trojan.GenericKD.2268260 20150403
Cyren W32/Backdoor.EYWQ-8999 20150403
DrWeb Trojan.DownLoader12.54522 20150403
Emsisoft Trojan.GenericKD.2268260 (B) 20150403
ESET-NOD32 Win32/Agent.QKJ 20150403
F-Secure Trojan.GenericKD.2268260 20150404
Fortinet MSIL/Injector.IXA!tr 20150404
GData Trojan.GenericKD.2268260 20150403
Ikarus Trojan.MSIL.Agent 20150403
K7AntiVirus Trojan ( 004bbd301 ) 20150403
K7GW Trojan ( 004bbd301 ) 20150403
Kaspersky Trojan.Win32.Fsysna.boqb 20150404
Malwarebytes Trojan.MSIL.ED 20150403
McAfee BackDoor-FCPD!E4729110F2D1 20150404
McAfee-GW-Edition BackDoor-FCPD!E4729110F2D1 20150403
Microsoft TrojanDownloader:Win32/Recslurp.B 20150403
eScan Trojan.GenericKD.2268260 20150404
nProtect Trojan.GenericKD.2268260 20150403
Panda Generic Suspicious 20150401
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20150404
Sophos AV Troj/MSIL-CIN 20150403
Symantec Trojan.Smoaler 20150404
Tencent Win32.Trojan.Inject.Auto 20150404
TotalDefense Win32/Tnega.GQDcLOB 20150403
TrendMicro TROJ_IN.C1063177 20150404
TrendMicro-HouseCall Suspicious_GEN.F47V0402 20150403
VIPRE Trojan.Win32.Generic!BT 20150404
ViRobot Trojan.Win32.S.Agent.90112.EWV[h] 20150403
AegisLab 20150404
Yandex 20150403
AhnLab-V3 20150403
Alibaba 20150404
Antiy-AVL 20150403
Bkav 20150403
ByteHero 20150404
CAT-QuickHeal 20150403
ClamAV 20150403
CMC 20150403
Comodo 20150403
F-Prot 20150401
Jiangmin 20150403
Kingsoft 20150404
NANO-Antivirus 20150403
Norman 20150403
Rising 20150403
SUPERAntiSpyware 20150403
TheHacker 20150403
VBA32 20150403
Zillya 20150403
Zoner 20150403
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
90112
Highest datetime
2015-04-02 06:47:26
Lowest datetime
2015-04-02 06:47:26
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x5cbe0e06

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
90112

ZipCompressedSize
64373

FileTypeExtension
zip

ZipFileName
my_new_photo3482374823749823.exe

ZipBitFlag
0

ZipModifyDate
2015:04:02 06:47:13

File identification
MD5 71c6bffc6a959355b5d1fe6ca75fdaf3
SHA1 0f9fa55af5f265a286bff15d4dc4f79603974f9b
SHA256 ce5451b569a070fcddf1b5d7cc8089a40acf714e58937175bdbfb81cf2e6779e
ssdeep
1536:TIIHTpw1Z7//a3zcEU/ws8gUa4jbxEFwo6+Bar0NmFmuETHRa:srh/6zlcx7tFrBa14um0

File size 63.1 KB ( 64571 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe attachment zip

VirusTotal metadata
First submission 2015-04-02 11:50:53 UTC ( 4 years ago )
Last submission 2018-01-11 06:23:45 UTC ( 1 year, 3 months ago )
File names 0002_.b64.zip
0F9FA55AF5F265A286BFF15D4DC4F79603974F9B
my_new_photo3482374823749823.zip
71eed2dbeab3dd6670cd012ca45a1675
d73b0e63db93ca30baac19091a354e10
43e2f91b17a8fbc8f1e9c7ebbef66303
my_new_photo3482374823749823.zip.sample
8d95800ede490fe912e506a2e5e6c52f
ce5451b569a070fcddf1b5d7cc8089a40acf714e58937175bdbfb81cf2e6779e.APK.log
e5726c629662cdf399910ea68d9b13d5
attachment.zip
040270029f539856964683ddd33880eb
3H9_tfkl.zip.part
cdad0549ff6570c08dc8a9e8ca2eff5a
SYQ2780ebcd1_my_new_photo3482374823749823.zip
0f9fa55af5f265a286bff15d4dc4f79603974f9b.zip
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!