× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fffa708096773464bd0d196f8af73c7b8a4da691970f5f6e0ef3b059354da663
File name: 7ea9d56cb2406c448142c709dbc14178
Detection ratio: 31 / 55
Analysis date: 2014-11-19 14:12:53 UTC ( 4 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.AutoIT.Injector.AN 20141119
AhnLab-V3 Trojan/Win32.Zbot 20141119
Antiy-AVL Trojan[:HEUR]/Win32.AGeneric 20141119
Avast Win32:Zbot-OAM [Trj] 20141119
AVG Generic_s.BI 20141119
Avira (no cloud) TR/Spy.ZBot.xbbeofg 20141119
BitDefender Trojan.AutoIT.Injector.AN 20141119
CAT-QuickHeal Trojan.Necurs.MUE.A3 20141119
ClamAV Trojan.Spy.Zbot-142 20141119
Comodo TrojWare.Win32.Kazy.MKD 20141119
Emsisoft Trojan.AutoIT.Injector.AN (B) 20141119
F-Prot W32/Damaged_File.B.gen!Eldorado 20141119
F-Secure Trojan-Spy:W32/Zbot.AVTH 20141119
Fortinet W32/Zbot.13!tr.pws 20141119
GData Trojan.AutoIT.Injector.AN 20141119
Ikarus Trojan-Spy.Zbot 20141119
Malwarebytes Spyware.Zbot 20141119
McAfee PWS-Zbot.gen.aov 20141119
McAfee-GW-Edition BehavesLike.Win32.ZBot.nh 20141119
Microsoft PWS:Win32/Zbot.gen!ZA 20141119
eScan Trojan.AutoIT.Injector.AN 20141119
NANO-Antivirus Trojan.Win32.Panda.bonqum 20141119
Norman ZBot.VAL 20141119
nProtect Trojan.AutoIT.Injector.AN 20141119
Panda Trj/CI.A 20141119
Qihoo-360 Win32/Trojan.Spy.d6d 20141119
Rising PE:Stealer.Zbot!1.648A 20141117
Symantec WS.Reputation.1 20141119
TheHacker W32/Behav-Heuristic-CorruptFile-EP 20141117
TrendMicro Mal_Mlwr-13 20141119
TrendMicro-HouseCall Mal_Mlwr-13 20141119
AegisLab 20141119
Yandex 20141118
AVware 20141119
Baidu-International 20141119
Bkav 20141119
ByteHero 20141119
CMC 20141118
Cyren 20141119
DrWeb 20141119
ESET-NOD32 20141119
Jiangmin 20141118
K7AntiVirus 20141119
K7GW 20141119
Kaspersky 20141119
Kingsoft 20141119
Sophos AV 20141119
SUPERAntiSpyware 20141119
Tencent 20141119
TotalDefense 20141119
VBA32 20141119
VIPRE 20141119
ViRobot 20141119
Zillya 20141119
Zoner 20141118
The file being studied is a Portable Executable file! More specifically, it is a DOS EXE file.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-12-19 00:10:29
Entry Point 0x00013048
Number of sections 3
PE sections
ExifTool file metadata
FileAccessDate
2014:12:04 07:25:40+01:00

FileCreateDate
2014:12:04 07:25:40+01:00

File identification
MD5 7ea9d56cb2406c448142c709dbc14178
SHA1 ca4e9ab90d0fad97612b5b64cbdd0b6b58d14fba
SHA256 fffa708096773464bd0d196f8af73c7b8a4da691970f5f6e0ef3b059354da663
ssdeep
768:CumHTj0KFPxgwGHVz40/5hT7Jq7nTQEVhWxNNs/Jd+MClT:CVHTJpx50VDJqQd2HLClT

authentihash c8a0c16e1df5421a3b862377fc777b64b26d983b7a697dab705b3b16cb32af43
File size 36.4 KB ( 37311 bytes )
File type DOS EXE
Magic literal
MS-DOS executable

TrID Win32 Executable (generic) (42.4%)
DOS Executable Borland Pascal 7.0x (19.1%)
Generic Win/DOS Executable (18.8%)
DOS Executable Generic (18.8%)
VXD Driver (0.2%)
Tags
corrupt mz

VirusTotal metadata
First submission 2014-11-19 14:12:53 UTC ( 4 years, 5 months ago )
Last submission 2014-12-04 06:25:32 UTC ( 4 years, 4 months ago )
File names 7ea9d56cb2406c448142c709dbc14178
fffa708096773464bd0d196f8af73c7b8a4da691970f5f6e0ef3b059354da663.log
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!