× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f8353b5e4f5426896409d86ccf4c3be168f6cb2851d3070f8a8c445106629ace
File name: ex7forW8_1.0.zip
Detection ratio: 5 / 59
Analysis date: 2018-10-25 00:30:37 UTC ( 4 months ago )
Antivirus Result Update
CAT-QuickHeal Trojan.Skeeyah 20181024
CMC RiskTool.Win32.Shell2exe!O 20181024
Cylance Unsafe 20181025
Sophos ML heuristic 20180717
TheHacker Trojan/Agent.nfk 20181024
Ad-Aware 20181024
AegisLab 20181024
AhnLab-V3 20181024
Alibaba 20180921
Antiy-AVL 20181023
Arcabit 20181024
Avast 20181024
Avast-Mobile 20181024
AVG 20181024
Avira (no cloud) 20181024
Babable 20180918
Baidu 20181024
BitDefender 20181025
Bkav 20181024
ClamAV 20181024
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cyren 20181025
DrWeb 20181024
eGambit 20181025
Emsisoft 20181024
Endgame 20180730
ESET-NOD32 20181025
F-Prot 20181024
F-Secure 20181024
Fortinet 20181025
GData 20181024
Ikarus 20181024
Jiangmin 20181024
K7AntiVirus 20181024
K7GW 20181024
Kaspersky 20181024
Kingsoft 20181025
Malwarebytes 20181025
MAX 20181025
McAfee 20181025
McAfee-GW-Edition 20181024
Microsoft 20181024
eScan 20181025
NANO-Antivirus 20181025
Palo Alto Networks (Known Signatures) 20181025
Panda 20181024
Qihoo-360 20181025
Rising 20181025
SentinelOne (Static ML) 20181011
Sophos AV 20181024
SUPERAntiSpyware 20181022
Symantec 20181025
Symantec Mobile Insight 20181001
TACHYON 20181025
Tencent 20181025
TotalDefense 20181024
TrendMicro 20181024
TrendMicro-HouseCall 20181024
Trustlook 20181025
VBA32 20181024
ViRobot 20181024
Webroot 20181025
Yandex 20181024
Zillya 20181024
ZoneAlarm by Check Point 20181024
Zoner 20181024
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
2
Uncompressed size
399087
Highest datetime
2012-09-30 20:41:14
Lowest datetime
2012-09-30 19:57:20
Contained files by extension
txt
1
exe
1
Contained files by type
unknown
1
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x81ca4160

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
394422

ZipCompressedSize
351222

FileTypeExtension
zip

ZipFileName
ex7forw8_setup.exe

ZipBitFlag
0

ZipModifyDate
2012:09:30 20:41:14

Execution parents
File identification
MD5 0c9e26b4a0a210b033d6ad9bbba9444c
SHA1 1e178bbdb1c68dc1f75a55711a2cbb4aff13192c
SHA256 f8353b5e4f5426896409d86ccf4c3be168f6cb2851d3070f8a8c445106629ace
ssdeep
6144:t64yrRIxPU4z/ggrviwNHTjlIKOPAPPKdz5gWYKJCQlzct2Cu:tYrR8zggVVTjl4PAPQ2QJCKcA1

File size 345.4 KB ( 353642 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2012-10-03 13:53:15 UTC ( 6 years, 4 months ago )
Last submission 2018-06-19 12:16:07 UTC ( 8 months, 1 week ago )
File names ex7forW8_1.0 (2).zip
ex7forw8-explorer-7-for-windows-8_ex7forw8_explorer_7_for_windows_8_anglais_427028.zip
ex7forW8_1.0.zip
output.9117858.txt
ex7forW8.zip
589404d1349331684-how-tos-windows-8-win-7-explorer-mit-startmenue-gui-install-gadgets-tipps-tricks-ex7forw8_1.0.zip
Win7EX4WIN8.zip
9117858
file-4900461_zip
ex7forW8_1.0.zip
Не подтвержден 843030.crdownload
ex7forW8_1.0.zip
file
ex7forW8_1.0.zip
file
click
ex7forW8_1-0.zip
019fcd0e77f4bbc730ce5c97a44eda8754ecdf10
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!