× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: eabe21b68d989fa41f53907f777cf0ad2998943ba1c67cfc057488011279df2b
File name: multimedia-messages-VodafoneDE.zip
Detection ratio: 11 / 43
Analysis date: 2012-11-26 11:30:34 UTC ( 6 years, 3 months ago ) View latest
Antivirus Result Update
AntiVir HIDDENEXT/Worm.Gen 20121126
AVG FakeAlert 20121126
ClamAV Suspect.DoubleExtension-zippwd-15 20121126
Commtouch W32/Heuristic-300!Eldorado 20121126
Comodo Heur.Dual.Extensions 20121126
F-Prot W32/Heuristic-300!Eldorado 20121125
McAfee PWS-Zbot.gen.aqw 20121126
Norman W32/Ransom.CNY 20121126
Panda Suspicious file 20121125
TheHacker W32/Generic!zip-dobleextension 20121125
VIPRE Trojan.Zip.Bredozp.b (v) 20121126
Yandex 20121125
AhnLab-V3 20121125
Antiy-AVL 20121123
Avast 20121126
BitDefender 20121126
ByteHero 20121116
CAT-QuickHeal 20121126
DrWeb 20121126
Emsisoft 20121126
eSafe 20121121
ESET-NOD32 20121126
F-Secure 20121126
Fortinet 20121126
GData 20121126
Ikarus 20121126
Jiangmin 20121126
K7AntiVirus 20121124
Kaspersky 20121126
Kingsoft 20121119
McAfee-GW-Edition 20121126
Microsoft 20121126
eScan 20121126
nProtect 20121126
Rising 20121126
Sophos AV 20121126
SUPERAntiSpyware 20121126
Symantec 20121126
TotalDefense 20121125
TrendMicro 20121126
TrendMicro-HouseCall 20121126
VBA32 20121124
ViRobot 20121126
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
40807
Highest datetime
2012-11-26 12:47:56
Lowest datetime
2012-11-26 12:47:56
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x71e3a265

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
40807

ZipCompressedSize
28301

FileTypeExtension
zip

ZipFileName
multimedia-messages-VodafoneDE.pdf.exe

ZipBitFlag
0

ZipModifyDate
2012:11:26 12:47:28

File identification
MD5 d8cbe913c5d184f9a523762893c2441c
SHA1 bbf79e67121708a2505a7cca141bf3538f33999e
SHA256 eabe21b68d989fa41f53907f777cf0ad2998943ba1c67cfc057488011279df2b
ssdeep
768:s2UpHEfkd5X+hJMILVdnJH9SB9unxvrfFg+:P2EGgJlVdx4GVFg+

File size 27.8 KB ( 28511 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe attachment zip

VirusTotal metadata
First submission 2012-11-26 10:57:01 UTC ( 6 years, 3 months ago )
Last submission 2012-12-01 10:45:27 UTC ( 6 years, 3 months ago )
File names file-4813597_zip
multimedia-messages-VodafoneDE.zip
multimedia-messages-VodafoneDE2.zip
d8cbe913c5d184f9a523762893c2441c
multimedia-messages-VodafoneDE3.zip
contents
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!