× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e7fa94a1b16c1cce6734d37b4e05bc9606c287dc78ed7cc879869ddba49abb12
File name: wirelesskeyview.zip
Detection ratio: 31 / 55
Analysis date: 2017-02-02 10:43:55 UTC ( 1 month, 2 weeks ago )
Antivirus Result Update
Ad-Aware Gen:Application.Heur.fq1@b0InQscO 20170202
AegisLab Gen.Application.Heur!c 20170202
Antiy-AVL Trojan/Win32.Tgenic 20170202
Arcabit Application.Heur.E04B82 20170202
Avira (no cloud) SPR/Tool.Wirekeyview.40 20170202
AVware Trojan.Win32.Generic!BT 20170202
BitDefender Gen:Application.Heur.fq1@b0InQscO 20170202
ClamAV Win.Trojan.Agent-1429023 20170202
Comodo UnclassifiedMalware 20170202
Cyren W32/Trojan.QPYO-3115 20170202
DrWeb Tool.PassView.695 20170202
Emsisoft Gen:Application.Heur.fq1@b0InQscO (B) 20170202
ESET-NOD32 a variant of Win32/WirelessKeyView.A potentially unsafe 20170202
F-Prot W32/Trojan2.OZTH 20170202
F-Secure Gen:Application.Heur.fq1@b0InQscO 20170202
GData Gen:Application.Heur.fq1@b0InQscO 20170202
K7AntiVirus Unwanted-Program ( 004bbde71 ) 20170202
K7GW Unwanted-Program ( 004bbde71 ) 20170202
Malwarebytes PUP.Optional.WirelessKeyView 20170202
McAfee Tool-PassView 20170202
McAfee-GW-Edition Tool-PassView 20170201
Microsoft HackTool:Win32/Wirekeyview 20170202
eScan Gen:Application.Heur.fq1@b0InQscO 20170202
NANO-Antivirus Riskware.Win32.PassView.crrnla 20170202
Qihoo-360 Win32/Application.817 20170202
Rising HackTool.Wirekeyview!8.F65-2DI6H2O87KK (cloud) 20170202
Sophos NirSoft (PUA) 20170202
TrendMicro HKTL_PASSVIEW 20170202
VIPRE Trojan.Win32.Generic!BT 20170202
Yandex Riskware.WirelessKeyView!uNF6yMeLkWM 20170201
Zillya Trojan.Genome.Win32.238268 20170201
AhnLab-V3 20170202
Alibaba 20170122
ALYac 20170202
Avast 20170202
AVG 20170202
Baidu 20170125
Bkav 20170123
CAT-QuickHeal 20170202
CMC 20170202
CrowdStrike Falcon (ML) 20170130
Fortinet 20170202
Ikarus 20170202
Invincea 20170111
Jiangmin 20170201
Kaspersky 20170202
Kingsoft 20170202
nProtect 20170202
Panda 20170201
SUPERAntiSpyware 20170202
Symantec 20170201
Tencent 20170202
TheHacker 20170129
Trustlook 20170202
VBA32 20170201
ViRobot 20170202
WhiteArmor 20170202
Zoner 20170202
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
3
Uncompressed size
126527
Highest datetime
2012-09-21 19:23:30
Lowest datetime
2012-09-21 19:23:30
Contained files by extension
txt
1
chm
1
exe
1
Contained files by type
unknown
2
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x0ef16c83

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
94816

ZipCompressedSize
51057

FileTypeExtension
zip

ZipFileName
WirelessKeyView.exe

ZipBitFlag
0x0002

ZipModifyDate
2012:09:21 19:23:15

Compressed bundles
File identification
MD5 87701c19674c65fe4b621f52795c73e4
SHA1 57dea9ba7a3c983aaeadc5ef0520da991dfda3ea
SHA256 e7fa94a1b16c1cce6734d37b4e05bc9606c287dc78ed7cc879869ddba49abb12
ssdeep
768:/r4tqhkhQH49hC0qXe+ukV81m8ZBIA97wZGsPWh+Ucdi3pNfjSrICx+44tpQbXWW:/1WQYrCpR81lwsnc4PfjSjZXkicrRGRT

File size 64.5 KB ( 66011 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2012-09-21 20:12:27 UTC ( 4 years, 6 months ago )
Last submission 2017-02-02 10:43:55 UTC ( 1 month, 2 weeks ago )
File names wirelesskeyview-1-56-es-en-win.zip
45ca14c886123c6409baf77db4c3d23d9be998a4
file-4569379_zip
wirelesskeyview.zip
wirelesskeyview156.zip
d1733d3b32a0f2b85545eb8c506d977840c676186a1a8ed0f9ec677966541a71584a6a7cd5c581aa6b98e3987813dad9a428af605b63bfeb89ec7c4a70bd3049
87701c19674c65fe4b621f52795c73e4.malware
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!