× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: d19914f3f6a2eb3952a48d1a443f4bbdc056b3ab907c88525a87fdf1c3fccf56
File name: zbetcheckin_tracker_haxors320.zip
Detection ratio: 44 / 62
Analysis date: 2018-12-27 21:06:24 UTC ( 3 months, 4 weeks ago ) View latest
Antivirus Result Update
AegisLab Trojan.Win32.Generic.4!c 20181227
AhnLab-V3 Trojan/Win32.Formbook.C2420198 20181227
ALYac Trojan.GenericKD.40747885 20181227
Antiy-AVL Trojan/Win32.AGeneric 20181227
Arcabit Trojan.Generic.D26DC36D 20181227
Avast Win32:Malware-gen 20181227
AVG Win32:Malware-gen 20181227
Avira (no cloud) TR/Crypt.ZPACK.Gen 20181227
BitDefender Trojan.GenericKD.40747885 20181227
CAT-QuickHeal Trojan.GenericPMF.S2589827 20181227
Comodo Malware@#2o1lckuedm0id 20181227
Cylance Unsafe 20181227
Cyren W32/Formbook.A.gen!Eldorado 20181227
DrWeb Trojan.Fbng.8 20181227
Emsisoft Trojan.GenericKD.40747885 (B) 20181227
ESET-NOD32 a variant of Win32/Formbook.AA 20181227
F-Prot W32/Formbook.A.gen!Eldorado 20181227
F-Secure Trojan.GenericKD.40747885 20181227
Fortinet W32/GenKryptik.AYEB!tr 20181227
GData Trojan.GenericKD.40747885 20181227
Ikarus Trojan-Spy.FormBook 20181227
Sophos ML heuristic 20181128
Jiangmin Trojan.Generic.culke 20181227
K7AntiVirus Trojan ( 00536d121 ) 20181227
K7GW Trojan ( 00536d121 ) 20181227
Kaspersky HEUR:Trojan.Win32.Generic 20181227
Malwarebytes Trojan.Injector 20181227
MAX malware (ai score=81) 20181227
McAfee GenericRXCD-ZZ!58F87FF11322 20181227
McAfee-GW-Edition BehavesLike.Generic.cc 20181227
Microsoft TrojanSpy:Win32/Swotter.A!bit 20181227
eScan Trojan.GenericKD.40747885 20181227
NANO-Antivirus Virus.Win32.Gen.ccmw 20181227
Panda Trj/CI.A 20181227
Rising Stealer.Fareit!8.170 (CLOUD) 20181227
Sophos AV Troj/Formbook-A 20181227
TrendMicro Trojan.Win32.FormBook.SM 20181227
TrendMicro-HouseCall Trojan.Win32.FormBook.SM 20181227
VBA32 BScope.TrojanPSW.Banker 20181227
VIPRE Trojan.Win32.Generic!BT 20181227
ViRobot Trojan.Win32.Z.Formbook.171520.Y 20181227
Yandex Trojan.Agent!L7sqpH/P7LM 20181226
Zillya Trojan.ZPACK.Win32.429 20181227
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20181227
Acronis 20181227
Ad-Aware 20181227
Alibaba 20180921
Avast-Mobile 20181227
Babable 20180918
Baidu 20181207
Bkav 20181227
ClamAV 20181227
CMC 20181226
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
eGambit 20181227
Endgame 20181108
Kingsoft 20181227
Palo Alto Networks (Known Signatures) 20181227
Qihoo-360 20181227
SentinelOne (Static ML) 20181223
SUPERAntiSpyware 20181226
Symantec 20181227
Symantec Mobile Insight 20181225
TACHYON 20181227
Tencent 20181227
TheHacker 20181225
TotalDefense 20181227
Trapmine 20181205
Trustlook 20181227
Webroot 20181227
Zoner 20181227
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
172859
Highest datetime
2018-08-24 16:19:40
Lowest datetime
2018-08-24 16:19:40
Contained files by extension
txt
1
exe
1
Contained files by type
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xa4844432

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
171520

ZipCompressedSize
128247

FileTypeExtension
zip

ZipFileName
bin.exe

ZipBitFlag
0x0002

ZipModifyDate
2018:08:24 16:19:40

File identification
MD5 925705491ab3023ad6b281d7c90ca5b9
SHA1 3faec4285c40ea6b942f0879d6396671d21b5afa
SHA256 d19914f3f6a2eb3952a48d1a443f4bbdc056b3ab907c88525a87fdf1c3fccf56
ssdeep
3072:s3gDe7M0fPZFyGwKNKDsGkmh4vRA9Qx9X9/0kwizxN:3Dt0f7yGwKYGmCvROQxpmAN

File size 126.1 KB ( 129146 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2018-12-27 21:06:24 UTC ( 3 months, 4 weeks ago )
Last submission 2018-12-27 21:06:24 UTC ( 3 months, 4 weeks ago )
File names haxors320.zip
zbetcheckin_tracker_haxors320.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!