× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: de3abde117d7eacbb638bc7d0151f929cf80a4bb5e5beb1e390839e96fc6722a
Detection ratio: 3 / 60
Analysis date: 2017-09-22 02:01:39 UTC ( 1 month, 3 weeks ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9608 20170921
Cylance Unsafe 20170922
TrendMicro-HouseCall Suspici.4F91743C 20170922
Ad-Aware 20170922
AegisLab 20170922
AhnLab-V3 20170921
Alibaba 20170911
ALYac 20170922
Antiy-AVL 20170922
Arcabit 20170922
Avast 20170922
Avast-Mobile 20170921
AVG 20170922
Avira (no cloud) 20170921
AVware 20170922
BitDefender 20170922
CAT-QuickHeal 20170921
ClamAV 20170922
CMC 20170920
Comodo 20170921
CrowdStrike Falcon (ML) 20170804
Cyren 20170922
DrWeb 20170922
Emsisoft 20170922
Endgame 20170821
ESET-NOD32 20170921
F-Prot 20170922
F-Secure 20170922
Fortinet 20170922
GData 20170922
Ikarus 20170921
Sophos ML 20170914
Jiangmin 20170922
K7AntiVirus 20170921
K7GW 20170922
Kaspersky 20170921
Kingsoft 20170922
Malwarebytes 20170922
MAX 20170921
McAfee 20170922
McAfee-GW-Edition 20170921
Microsoft 20170922
eScan 20170921
NANO-Antivirus 20170922
nProtect 20170922
Palo Alto Networks (Known Signatures) 20170922
Panda 20170921
Qihoo-360 20170922
SentinelOne (Static ML) 20170806
Sophos AV 20170921
SUPERAntiSpyware 20170922
Symantec 20170921
Symantec Mobile Insight 20170922
Tencent 20170922
TheHacker 20170921
TotalDefense 20170921
TrendMicro 20170922
Trustlook 20170922
VBA32 20170921
VIPRE 20170922
ViRobot 20170921
Webroot 20170922
WhiteArmor 20170829
Yandex 20170908
Zillya 20170921
ZoneAlarm by Check Point 20170922
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
380928
Highest datetime
2016-03-11 14:53:14
Lowest datetime
2016-03-11 14:53:14
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x909910e8

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
380928

ZipCompressedSize
371168

FileTypeExtension
zip

ZipFileName
gmer.exe

ZipBitFlag
0x0002

ZipModifyDate
2016:03:11 14:53:07

Execution parents
File identification
MD5 fc98d351ca1a64897503036e665e14c6
SHA1 3fb1ea6eadf5551e5b81c22b0a45ce892c5a87b2
SHA256 de3abde117d7eacbb638bc7d0151f929cf80a4bb5e5beb1e390839e96fc6722a
ssdeep
6144:uBzWZvuPzYt+4gpqK6w+cdLMXzl3udtSToGLjwaurCDG2h46ArZLtQ2AA:Wz4k2+nzANXz5u3HX6AdLAA

File size 362.6 KB ( 371282 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip upx via-tor

VirusTotal metadata
First submission 2016-03-11 23:30:59 UTC ( 1 year, 8 months ago )
Last submission 2017-11-08 22:39:14 UTC ( 1 week, 3 days ago )
File names gmer_2.2.zip
gmer_2219882.zip
gmer(2).zip
gmer (2).zip
817833
gmer.zip
gmer.zip
GMER 2.2.19882_Detection and Remove Rootkits.zip
gmer.zip
ace21b7ca04162a85b46f5727e369ca5de36a99aa9870971bbe2e794dd9b7083834a2c9954c33c0199740fb78ab8f32b3052a9b9e72419add30664caaa1d689d
gmer (1).zip
gmer.zip
GMER 2.2.19882.zip
GMER_2.2.19882.zip
gmer.zip
GMER Rootkit Remover.zip
gmer.zip
GMER 2.2.19882 portable.zip
gmer(6).zip
relm170.zip
gmer.zip
gmer.zip
gmer detector de rootkits.zip
gmer.zip
gmer.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!