× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 16d2c4312c5c6d241f39e6676e57f90e115bef57b2d94030623188ad42982a54
File name: 16d2c4312c5c6d241f39e6676e57f90e115bef57b2d94030623188ad42982a54....
Detection ratio: 17 / 61
Analysis date: 2017-08-03 06:34:27 UTC ( 6 months, 3 weeks ago )
Antivirus Result Update
AegisLab Securityrisk.Cmdow.Gen!c 20170803
Antiy-AVL Trojan/Win32.BTSGeneric 20170803
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9981 20170803
CAT-QuickHeal Trojan.IGENERIC 20170803
Comodo Application.Win32.CMDOW.a 20170803
Cylance Unsafe 20170803
Cyren W32/Trojan.SYGE-6877 20170803
ESET-NOD32 a variant of Win32/CMDOW.A potentially unsafe 20170803
Fortinet Riskware/CMDOW 20170803
Sophos ML heuristic 20170607
Jiangmin RiskTool.BitCoinMiner.aep 20170803
K7AntiVirus Trojan ( 00470eed1 ) 20170803
K7GW Trojan ( 00470eed1 ) 20170803
NANO-Antivirus Trojan.Win32.Cmdow.dmjuol 20170803
Rising Trojan.Generic (cloud:TCXeEJEoWWG) 20170803
Webroot W32.Trojan.GenKD 20170803
Yandex Riskware.Agent! 20170801
Ad-Aware 20170803
AhnLab-V3 20170802
Alibaba 20170803
ALYac 20170803
Arcabit 20170803
Avast 20170803
AVG 20170803
Avira (no cloud) 20170802
AVware 20170803
BitDefender 20170803
ClamAV 20170803
CMC 20170803
CrowdStrike Falcon (ML) 20170710
DrWeb 20170803
Emsisoft 20170803
Endgame 20170721
F-Prot 20170803
F-Secure 20170803
GData 20170803
Ikarus 20170802
Kaspersky 20170803
Kingsoft 20170803
Malwarebytes 20170803
MAX 20170803
McAfee 20170803
McAfee-GW-Edition 20170803
Microsoft 20170803
eScan 20170803
nProtect 20170803
Palo Alto Networks (Known Signatures) 20170803
Panda 20170802
Qihoo-360 20170803
SentinelOne (Static ML) 20170718
Sophos AV 20170803
SUPERAntiSpyware 20170803
Symantec 20170802
Symantec Mobile Insight 20170803
Tencent 20170803
TheHacker 20170801
TotalDefense 20170803
TrendMicro 20170803
TrendMicro-HouseCall 20170803
Trustlook 20170803
VBA32 20170801
VIPRE 20170803
ViRobot 20170803
WhiteArmor 20170731
Zillya 20170803
ZoneAlarm by Check Point 20170803
Zoner 20170803
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
10
Uncompressed size
1924396
Highest datetime
2017-08-03 00:15:32
Lowest datetime
2009-11-17 06:52:52
Contained files by extension
exe
5
bat
2
txt
1
dll
1
Contained files by type
Portable Executable
6
unknown
3
directory
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
chup hinh lay pass hint 1 8 2017/

ZipBitFlag
0

ZipModifyDate
2017:08:03 00:15:16

File identification
MD5 1a14f25e58c251405a78105923d6391d
SHA1 8aede1b6e64ef1cce15329f3555db22a678877d7
SHA256 16d2c4312c5c6d241f39e6676e57f90e115bef57b2d94030623188ad42982a54
ssdeep
12288:VT9VqcAyZC9tSShGWhOIeA7UeuHo3mdCUyUQ2nCfM7btBNTEJgleURYLJ/ymgRzc:Vijt1hANA7UetjlUQ2F7bzhv3RogFE/

File size 895.4 KB ( 916868 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2017-08-03 06:34:27 UTC ( 6 months, 3 weeks ago )
Last submission 2017-08-03 06:34:27 UTC ( 6 months, 3 weeks ago )
File names 16d2c4312c5c6d241f39e6676e57f90e115bef57b2d94030623188ad42982a54.file
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!