× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f4b8bf126b310f3e35a53555281cfb26f4632336641a544403699de639e3a8fb
File name: Windows.rar
Detection ratio: 32 / 56
Analysis date: 2015-09-03 14:43:36 UTC ( 2 years ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Zusy.143671 20150903
Yandex Trojan.PWS.ChePro! 20150901
ALYac Gen:Variant.Zusy.143671 20150903
Antiy-AVL Trojan[Banker]/Win32.ChePro 20150903
Arcabit Trojan.Zusy.D23137 20150903
Avast Win32:Banker-MDX [Trj] 20150903
AVG Generic_s.FFE 20150903
Avira (no cloud) TR/Spy.Agent.1484288.3 20150903
AVware Trojan.Win32.Generic!BT 20150901
Baidu-International Trojan.Win32.Banker.mmdg 20150903
BitDefender Gen:Variant.Zusy.143671 20150903
Cyren W32/Trojan.YFUR-4309 20150903
Emsisoft Gen:Variant.Zusy.143671 (B) 20150903
ESET-NOD32 a variant of Win32/Spy.Banker.ACAK 20150903
F-Secure Gen:Variant.Zusy.143671 20150903
Fortinet W32/Banker.ACAK!tr.spy 20150903
GData Gen:Variant.Zusy.143671 20150903
Ikarus Trojan-Spy.Agent 20150903
K7AntiVirus Trojan ( 7000000f1 ) 20150903
K7GW Hacktool ( 655368881 ) 20150903
Kaspersky Trojan-Banker.Win32.ChePro.mmdg 20150903
Malwarebytes Trojan.Banker 20150903
McAfee GenericR-EGI!43ACCA37E84C 20150903
Microsoft TrojanSpy:Win32/Banker!rfn 20150903
eScan Gen:Variant.Zusy.143671 20150903
NANO-Antivirus Trojan.Win32.ChePro.dvsuyf 20150903
Panda Trj/Genetic.gen 20150903
Qihoo-360 HEUR/QVM25.0.Malware.Gen 20150903
Sophos AV Mal/Generic-S 20150903
TrendMicro TROJ_GE.2DD088B6 20150903
TrendMicro-HouseCall TROJ_GE.2DD088B6 20150903
VIPRE Trojan.Win32.Generic!BT 20150903
AegisLab 20150903
AhnLab-V3 20150903
Alibaba 20150902
Bkav 20150903
ByteHero 20150903
CAT-QuickHeal 20150903
ClamAV 20150903
CMC 20150902
Comodo 20150903
DrWeb 20150903
F-Prot 20150903
Jiangmin 20150902
Kingsoft 20150903
McAfee-GW-Edition 20150903
nProtect 20150903
Rising 20150902
SUPERAntiSpyware 20150903
Symantec 20150902
Tencent 20150903
TheHacker 20150903
VBA32 20150903
ViRobot 20150903
Zillya 20150903
Zoner 20150903
The file being studied is a compressed stream! More specifically, it is a RAR file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
3
Uncompressed size
1524742
Highest datetime
2015-09-03 08:04:11
Lowest datetime
2015-02-15 13:06:02
Contained files by extension
tmp
1
TXT
1
exe
1
Contained files by type
Portable Executable
2
unknown
1
ExifTool file metadata
MIMEType
application/x-rar-compressed

ModifyDate
2015:09:03 08:04:05

FileType
RAR

PackingMethod
Normal

CompressedSize
227

FileTypeExtension
rar

ArchivedFileName
GER_FERNANDO_TR_PART.TXT

UncompressedSize
246

OperatingSystem
Win32

File identification
MD5 60a5d5f21defe856151ec6972a63dfba
SHA1 a58321a821e97823f266847604da9b821112eef3
SHA256 f4b8bf126b310f3e35a53555281cfb26f4632336641a544403699de639e3a8fb
ssdeep
24576:OFl1Z/8ZApxMcIXg+uZccHloRkAdmn0FrY:Q1Vahpw+9cyRTd+0FrY

File size 881.6 KB ( 902771 bytes )
File type RAR
Magic literal
RAR archive data, v1d, os: Win32

TrID RAR Archive (83.3%)
REALbasic Project (16.6%)
Tags
contains-pe rar

VirusTotal metadata
First submission 2015-09-03 14:43:36 UTC ( 2 years ago )
Last submission 2015-09-03 14:43:36 UTC ( 2 years ago )
File names Windows.rar
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!