× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f94edf37264de109cafa823df248db50b9f2f89bc2417614cac4eb4657cdf3b3
File name: d8413ee5fdaf1973ea88861a066bb017
Detection ratio: 31 / 55
Analysis date: 2014-11-19 14:10:55 UTC ( 4 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.AutoIT.Injector.AN 20141119
AhnLab-V3 Trojan/Win32.Zbot 20141119
Antiy-AVL Trojan[:HEUR]/Win32.AGeneric 20141119
Avast Win32:Zbot-OAM [Trj] 20141119
AVG Generic_s.BI 20141119
Avira (no cloud) TR/Spy.ZBot.xbbeofg 20141119
BitDefender Trojan.AutoIT.Injector.AN 20141119
CAT-QuickHeal Trojan.Necurs.MUE.A3 20141119
ClamAV Trojan.Spy.Zbot-142 20141119
Comodo TrojWare.Win32.Kazy.MKD 20141119
Emsisoft Trojan.AutoIT.Injector.AN (B) 20141119
F-Prot W32/Damaged_File.B.gen!Eldorado 20141119
F-Secure Trojan-Spy:W32/Zbot.AVTH 20141119
Fortinet W32/Zbot.13!tr.pws 20141119
GData Trojan.AutoIT.Injector.AN 20141119
Ikarus Trojan-Spy.Zbot 20141119
Malwarebytes Spyware.Zbot 20141119
McAfee PWS-Zbot.gen.aov 20141119
McAfee-GW-Edition BehavesLike.Win32.ZBot.nh 20141119
Microsoft PWS:Win32/Zbot.gen!ZA 20141119
eScan Trojan.AutoIT.Injector.AN 20141119
NANO-Antivirus Trojan.Win32.Panda.bonqum 20141119
Norman ZBot.VAL 20141119
nProtect Trojan.AutoIT.Injector.AN 20141119
Panda Trj/CI.A 20141119
Qihoo-360 Win32/Trojan.Spy.d6d 20141119
Rising PE:Stealer.Zbot!1.648A 20141117
Symantec WS.Reputation.1 20141119
TheHacker W32/Behav-Heuristic-CorruptFile-EP 20141117
TrendMicro Mal_Mlwr-13 20141119
TrendMicro-HouseCall Mal_Mlwr-13 20141119
AegisLab 20141119
Yandex 20141118
AVware 20141119
Baidu-International 20141119
Bkav 20141119
ByteHero 20141119
CMC 20141118
Cyren 20141119
DrWeb 20141119
ESET-NOD32 20141119
Jiangmin 20141118
K7AntiVirus 20141119
K7GW 20141119
Kaspersky 20141119
Kingsoft 20141119
Sophos AV 20141119
SUPERAntiSpyware 20141119
Tencent 20141119
TotalDefense 20141119
VBA32 20141119
VIPRE 20141119
ViRobot 20141119
Zillya 20141119
Zoner 20141118
The file being studied is a Portable Executable file! More specifically, it is a DOS EXE file.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-12-19 00:10:29
Entry Point 0x00013048
Number of sections 3
PE sections
ExifTool file metadata
FileAccessDate
2015:02:20 08:58:29+01:00

FileCreateDate
2015:02:20 08:58:29+01:00

File identification
MD5 d8413ee5fdaf1973ea88861a066bb017
SHA1 946f481f99cf9369ba546413313ce3fe203a0c4d
SHA256 f94edf37264de109cafa823df248db50b9f2f89bc2417614cac4eb4657cdf3b3
ssdeep
768:CumHTj0KFPxgwGHVz40/5hT7Jq7nTQEVhWxNNs/x:CVHTJpx50VDJqQd25

authentihash d0ad5e47d37a1c3cc36087d995c7b58c1ebac1a9f770cb9392d6980d6820ecb7
File size 32.2 KB ( 32979 bytes )
File type DOS EXE
Magic literal
MS-DOS executable

TrID Win32 Executable (generic) (42.4%)
DOS Executable Borland Pascal 7.0x (19.1%)
Generic Win/DOS Executable (18.8%)
DOS Executable Generic (18.8%)
VXD Driver (0.2%)
Tags
corrupt mz

VirusTotal metadata
First submission 2014-11-19 14:10:55 UTC ( 4 years, 5 months ago )
Last submission 2015-01-29 20:39:31 UTC ( 4 years, 2 months ago )
File names ZeuS_binary_d8413ee5fdaf1973ea88861a066bb017.exe
file-7903934_exe
qzVTy.xlsb
d8413ee5fdaf1973ea88861a066bb017
D8413EE5FDAF1973EA88861A066BB017
bb017.exe
D8413EE5FDAF1973EA88861A066BB017.exe
f94edf37264de109cafa823df248db50b9f2f89bc2417614cac4eb4657cdf3b3.log
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!