× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e0d0f8867fbf1e31894f118e31cae6be04980e1636e7141e7d44a8d120ac803e
File name: 3bac1dec4c1086aa308ea95559cb8703eb652f8a
Detection ratio: 26 / 55
Analysis date: 2014-11-17 23:37:51 UTC ( 4 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.AutoIT.Injector.AN 20141117
AhnLab-V3 Trojan/Win32.Zbot 20141117
Antiy-AVL Trojan[:HEUR]/Win32.AGeneric 20141117
Avast Win32:Zbot-OAM [Trj] 20141117
AVG Generic_s.BI 20141117
Avira (no cloud) TR/Spy.ZBot.xbbeofg 20141118
BitDefender Trojan.AutoIT.Injector.AN 20141117
CAT-QuickHeal Trojan.Necurs.MUE.A3 20141117
ClamAV Trojan.Spy.Zbot-142 20141117
Comodo TrojWare.Win32.Kazy.MKD 20141117
Emsisoft Trojan.AutoIT.Injector.AN (B) 20141117
F-Prot W32/Damaged_File.B.gen!Eldorado 20141117
F-Secure Trojan-Spy:W32/Zbot.AVTH 20141118
GData Trojan.AutoIT.Injector.AN 20141117
Ikarus Trojan-Spy.Zbot 20141117
Malwarebytes Spyware.Zbot 20141117
McAfee PWS-Zbot.gen.aov 20141118
McAfee-GW-Edition BehavesLike.Win32.PWSZbot.mh 20141117
eScan Trojan.AutoIT.Injector.AN 20141118
NANO-Antivirus Trojan.Win32.Panda.bonqum 20141117
Norman ZBot.VAL 20141117
nProtect Trojan.AutoIT.Injector.AN 20141117
Rising PE:Stealer.Zbot!1.648A 20141117
TheHacker W32/Behav-Heuristic-CorruptFile-EP 20141117
TrendMicro Mal_Mlwr-13 20141117
TrendMicro-HouseCall Mal_Mlwr-13 20141117
AegisLab 20141118
Yandex 20141117
AVware 20141117
Baidu-International 20141107
Bkav 20141117
ByteHero 20141118
CMC 20141117
Cyren 20141117
DrWeb 20141117
ESET-NOD32 20141118
Fortinet 20141117
Jiangmin 20141117
K7AntiVirus 20141117
K7GW 20141117
Kaspersky 20141117
Kingsoft 20141118
Microsoft 20141117
Panda 20141117
Qihoo-360 20141118
Sophos AV 20141118
SUPERAntiSpyware 20141117
Symantec 20141117
Tencent 20141118
TotalDefense 20141117
VBA32 20141117
VIPRE 20141118
ViRobot 20141117
Zillya 20141117
Zoner 20141112
The file being studied is a Portable Executable file! More specifically, it is a DOS EXE file.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-12-19 00:10:29
Entry Point 0x00013048
Number of sections 3
PE sections
ExifTool file metadata
FileAccessDate
2014:12:04 07:23:58+01:00

FileCreateDate
2014:12:04 07:23:58+01:00

File identification
MD5 6d6227b3eb648b2f5de4d346070bbf70
SHA1 3bac1dec4c1086aa308ea95559cb8703eb652f8a
SHA256 e0d0f8867fbf1e31894f118e31cae6be04980e1636e7141e7d44a8d120ac803e
ssdeep
384:CumHm/cV9Nk2E04CDFPxF2NmGw2aMnsJiz4LdYGkxgkT/5W6fY:CumHTj0KFPxgwGHVz40/5hQ

authentihash df59dfc5b5e50d3e0ba201026ca4ed8f03ec69b6401b927a2305292465db15ca
File size 20.9 KB ( 21427 bytes )
File type DOS EXE
Magic literal
MS-DOS executable

TrID Win32 Executable (generic) (42.4%)
DOS Executable Borland Pascal 7.0x (19.1%)
Generic Win/DOS Executable (18.8%)
DOS Executable Generic (18.8%)
VXD Driver (0.2%)
Tags
corrupt mz

VirusTotal metadata
First submission 2014-11-17 23:37:51 UTC ( 4 years, 5 months ago )
Last submission 2014-12-04 06:23:46 UTC ( 4 years, 4 months ago )
File names e0d0f8867fbf1e31894f118e31cae6be04980e1636e7141e7d44a8d120ac803e.log
3bac1dec4c1086aa308ea95559cb8703eb652f8a
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!