| SHA256: | 6641dc703a27f1b9b441afd301feef8fadba3c0f1a4c8ad2ecfc0dc77784ceef |
| File name: | scan(2).doc.2016.01.20.PDF.zip |
| Detection ratio: | 11 / 52 |
| Analysis date: | 2016-01-20 10:50:27 UTC ( 2 hours, 27 minutes ago ) |
| Antivirus | Result | Update |
|---|---|---|
| AVG | FakeAlert | 20160120 |
| ClamAV | Suspect.DoubleExtension-zippwd-15 | 20160120 |
| Comodo | Heur.Dual.Extensions | 20160120 |
| Cyren | W32/Heuristic-300!Eldorado | 20160120 |
| F-Prot | W32/Heuristic-300!Eldorado | 20160120 |
| K7AntiVirus | Trojan ( 7000000c1 ) | 20160120 |
| Rising | PE:Malware.Obscure/Heur!1.9E03 [F] | 20160120 |
| Sophos | Troj/Invo-Zip | 20160120 |
| Tencent | Win32.Trojan.Inject.Auto | 20160120 |
| TrendMicro | HEUR_NAMETRICK.A | 20160120 |
| VIPRE | Trojan.Zip.Bredozp.b (v) | 20160120 |
| ALYac | 20160120 | |
| Ad-Aware | 20160120 | |
| AegisLab | 20160120 | |
| Agnitum | 20160119 | |
| AhnLab-V3 | 20160119 | |
| Alibaba | 20160120 | |
| Antiy-AVL | 20160120 | |
| Arcabit | 20160120 | |
| Avast | 20160120 | |
| Baidu-International | 20160120 | |
| BitDefender | 20160120 | |
| Bkav | 20160119 | |
| ByteHero | 20160120 | |
| CAT-QuickHeal | 20160119 | |
| CMC | 20160111 | |
| DrWeb | 20160120 | |
| ESET-NOD32 | 20160120 | |
| Emsisoft | 20160120 | |
| F-Secure | 20160120 | |
| Fortinet | 20160120 | |
| GData | 20160120 | |
| Ikarus | 20160120 | |
| Jiangmin | 20160120 | |
| K7GW | 20160120 | |
| Kaspersky | 20160120 | |
| Malwarebytes | 20160120 | |
| McAfee | 20160120 | |
| McAfee-GW-Edition | 20160120 | |
| MicroWorld-eScan | 20160120 | |
| Microsoft | 20160120 | |
| NANO-Antivirus | 20160120 | |
| Panda | 20160119 | |
| Qihoo-360 | 20160120 | |
| SUPERAntiSpyware | 20160120 | |
| Symantec | 20160119 | |
| TheHacker | 20160119 | |
| TrendMicro-HouseCall | 20160120 | |
| VBA32 | 20160119 | |
| ViRobot | 20160120 | |
| Zillya | 20160120 | |
| Zoner | 20160120 | |
| nProtect | 20160120 |
The file being studied is a compressed stream!
More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
220954
Highest datetime
2016-01-20 08:52:08
Lowest datetime
2016-01-20 08:52:08
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip
ZipRequiredVersion
20
ZipCRC
0xfa970575
FileType
ZIP
ZipCompression
Deflated
ZipUncompressedSize
220954
ZipCompressedSize
177598
FileTypeExtension
zip
ZipFileName
scan(2).doc.2016.01.20.PDF.exe
ZipBitFlag
0
ZipModifyDate
2016:01:20 08:52:04
File identification
MD5 b48a377c10048b4815402d0f28a3e61f
SHA1 60b3db0622ac61046f4ac94606f7c72efc45f080
SHA256 6641dc703a27f1b9b441afd301feef8fadba3c0f1a4c8ad2ecfc0dc77784ceef
ssdeep
3072:wGtnq2eSgpVuJLtI2sdWMTpzGxYphKGipXIDjYDBXwzxAeiyFj+Uq7ta:xtq2fgpVuLImMTpz8Yp9QY3EXS1igJyk
File size
173.6 KB ( 177792 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract
| TrID |
ZIP compressed archive (100.0%) |
Tags
contains-pe
attachment
zip
VirusTotal metadata
First submission
2016-01-20 08:11:05 UTC ( 5 hours, 7 minutes ago )
Last submission
2016-01-20 10:50:27 UTC ( 2 hours, 27 minutes ago )
| File names |
新しい圧縮された (ZIP) フォルダー.zip scan(2).doc.2016.01.20.PDF.zip |
Advanced heuristic and reputation engines
F-Secure Deepguard
Suspicious:W32/Malware!Online
No comments.
No VirusTotal Community member has commented on this item yet, be the first one to do so!
You have not signed in. Only registered users can leave comments, sign in and have a voice!
No votes.
No one has voted on this item yet, be the first one to do so!