× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e3b33b6ef2e38320ae4ae61653d1cb0661d521ec881022c8b9e4b88977df1041
Detection ratio: 40 / 60
Analysis date: 2017-06-20 18:26:10 UTC ( 1 year, 11 months ago )
Antivirus Result Update
AegisLab Troj.Script.Agent!c 20170620
AhnLab-V3 W97M/Downloader 20170620
ALYac Trojan.GenericKD.5373491 20170620
Arcabit Trojan.Generic.D51FE33 20170620
Avast Other:Malware-gen [Trj] 20170620
AVG Other:Malware-gen [Trj] 20170620
Avira (no cloud) W97M/Dldr.Agent.olrtj 20170620
AVware Trojan.Win32.Generic!BT 20170620
Baidu VBA.Trojan-Downloader.Agent.bln 20170620
BitDefender VB:Trojan.Valyria.590 20170620
CAT-QuickHeal Trojan.VBKryjetor 20170620
Comodo UnclassifiedMalware 20170620
Cyren Trojan.AJDX-6 20170620
DrWeb Trojan.Siggen7.19547 20170620
Emsisoft VB:Trojan.Valyria.590 (B) 20170620
ESET-NOD32 VBA/TrojanDownloader.Agent.DKJ 20170620
F-Secure VB:Trojan.Valyria.590 20170620
Fortinet WM/Agent.DJX!tr.dldr 20170620
GData VB:Trojan.Valyria.590 20170620
Ikarus Trojan-Downloader.VBA.Agent 20170620
Sophos ML heuristic 20170607
K7AntiVirus Trojan ( 005102521 ) 20170620
K7GW Trojan ( 005102521 ) 20170620
Kaspersky HEUR:Trojan.Script.Agent.gen 20170620
Malwarebytes Spyware.Pony 20170620
McAfee W97M/Downloader.cbh 20170620
McAfee-GW-Edition W97M/Downloader.cbh 20170620
Microsoft TrojanSpy:MSIL/Omaneat.C 20170620
NANO-Antivirus Trojan.Ole2.Vbs-heuristic.druvzi 20170620
Panda W97M/Dropper.AKN 20170620
Qihoo-360 virus.office.qexvmc.1075 20170620
Sophos AV Troj/DocDl-JHG 20170620
Symantec Trojan.Gen.NPE 20170620
TrendMicro TROJ_FR.9EFCE70E 20170620
TrendMicro-HouseCall TROJ_FR.9EFCE70E 20170620
VIPRE Trojan.Win32.Generic!BT 20170620
ViRobot W97M.S.Downloader.252416.A[h] 20170620
Webroot W32.Trojan.Gen 20170620
Yandex Trojan.VBKryjetor! 20170620
ZoneAlarm by Check Point HEUR:Trojan.Script.Agent.gen 20170620
Ad-Aware 20170620
Alibaba 20170620
Antiy-AVL 20170620
Bkav 20170620
ClamAV 20170620
CMC 20170619
CrowdStrike Falcon (ML) 20170420
Endgame 20170615
F-Prot 20170620
Jiangmin 20170620
Kingsoft 20170620
eScan 20170620
nProtect 20170620
Palo Alto Networks (Known Signatures) 20170620
Rising None
SentinelOne (Static ML) 20170516
SUPERAntiSpyware 20170620
Symantec Mobile Insight 20170620
Tencent 20170620
TheHacker 20170618
TotalDefense 20170620
Trustlook 20170620
VBA32 20170620
WhiteArmor 20170616
Zillya 20170619
Zoner 20170620
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
5237248
Highest datetime
2017-06-17 07:17:24
Lowest datetime
2017-06-17 06:58:00
Contained files by extension
doc
1
jpg
1
Contained files by type
Portable Executable
1
Microsoft Office
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x775f6ad6

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
252416

ZipCompressedSize
138795

FileTypeExtension
zip

ZipFileName
Arlene-Resume.doc

ZipBitFlag
0x0002

ZipModifyDate
2017:06:17 06:58:00

File identification
MD5 23ca45c030d5ed974ee60104a9c2411d
SHA1 9c27f568933622a467e05b0fdc9a1ace4b2eebc6
SHA256 e3b33b6ef2e38320ae4ae61653d1cb0661d521ec881022c8b9e4b88977df1041
ssdeep
98304:Zyk2F4YXGUo5WOBsnC2U0HyuXvEuaX6QZ5swZXT8IFYna0IKnMzRedlIHSMbng+Y:Z/2FrXPC2UayuSXB5swdT89a9zRedvMC

File size 4.8 MB ( 5071971 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2017-06-20 18:26:10 UTC ( 1 year, 11 months ago )
Last submission 2017-06-20 18:26:10 UTC ( 1 year, 11 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!