× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4f291c02e3b94d546ffd83d616284b6362f6e4c147b94cc08f3201e46c496b64
File name: Unreal-Stealth.zip
Detection ratio: 10 / 53
Analysis date: 2016-07-29 02:33:08 UTC ( 1 year, 2 months ago ) View latest
Antivirus Result Update
AegisLab Troj.Agent.Gen!c 20160729
Avast Win32:Malware-gen 20160729
Avira (no cloud) TR/Agent.36352.95 20160728
Cyren W32/Heuristic-KPP!Eldorado 20160729
F-Prot W32/Heuristic-KPP!Eldorado 20160729
GData Archive.Trojan.Agent.UTE2Q6 20160729
Ikarus Trojan.Win32.Tobfy 20160728
McAfee Artemis!957E5DCD16F8 20160729
McAfee-GW-Edition BehavesLike.Conficker.cc 20160728
TrendMicro PAK_Generic.005 20160729
Ad-Aware 20160729
AhnLab-V3 20160728
Alibaba 20160729
ALYac 20160728
Antiy-AVL 20160729
Arcabit 20160729
AVG 20160729
AVware 20160729
Baidu 20160728
BitDefender 20160729
Bkav 20160727
CAT-QuickHeal 20160728
ClamAV 20160729
CMC 20160728
Comodo 20160729
DrWeb 20160729
Emsisoft 20160729
ESET-NOD32 20160728
F-Secure 20160728
Fortinet 20160729
Jiangmin 20160729
K7AntiVirus 20160728
K7GW 20160729
Kaspersky 20160729
Kingsoft 20160729
Malwarebytes 20160729
Microsoft 20160729
eScan 20160729
NANO-Antivirus 20160729
nProtect 20160728
Panda 20160728
Qihoo-360 20160729
Sophos AV 20160729
SUPERAntiSpyware 20160729
Symantec 20160729
Tencent 20160729
TheHacker 20160726
TrendMicro-HouseCall 20160729
VBA32 20160727
VIPRE 20160729
ViRobot 20160729
Zillya 20160728
Zoner 20160729
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
8
Uncompressed size
224727
Highest datetime
2012-12-25 13:34:56
Lowest datetime
1994-05-05 13:24:08
Contained files by extension
ttf
2
exe
1
cfg
1
dll
1
ini
1
txt
1
TTF
1
Contained files by type
unknown
6
Portable Executable
2
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xfeef2639

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
36352

ZipCompressedSize
34617

FileTypeExtension
zip

ZipFileName
Unreal-Stealth.exe

ZipBitFlag
0

ZipModifyDate
2010:11:15 12:17:22

File identification
MD5 341fafada1299fc641958cfba4f90fbd
SHA1 10a4d733ddce8c650fbb2fcda31e0cdec68456e8
SHA256 4f291c02e3b94d546ffd83d616284b6362f6e4c147b94cc08f3201e46c496b64
ssdeep
3072:RvsdNIjsvDziJyfS5Oi52fLPL36dwFTRpOKtMQDzWpNFOB3E6Md5zEj/ra:RkdOjCy5d52TTuktAsMkzWtOBU6MbEju

File size 140.7 KB ( 144031 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip upx

VirusTotal metadata
First submission 2012-12-28 09:12:23 UTC ( 4 years, 9 months ago )
Last submission 2016-07-29 02:33:08 UTC ( 1 year, 2 months ago )
File names [www.OldSchoolHack.de]_Unreal-Stealth.zip
Unreal-Stealth.zip
Unreal-Stealth_[www.unknowncheats.me]_.zip
file-5178517_zip
Unreal-Stealth_mpgh.net.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V0713.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!