× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5c5b92c35baaf741e7e2fe5c459772175c892163b1b5e50b627b0db08ed9e61c
File name: 2610_akt.zip
Detection ratio: 35 / 55
Analysis date: 2016-11-15 11:57:26 UTC ( 3 months, 1 week ago )
Antivirus Result Update
ALYac Trojan.GenericKD.3640022 20161115
AVG Ransom_c.CNA 20161115
AVware Trojan.Win32.Generic!BT 20161115
Ad-Aware Trojan.GenericKD.3640022 20161115
AegisLab Uds.Dangerousobject.Multi!c 20161115
AhnLab-V3 Trojan/Win32.Locky.N2140942563 20161115
Arcabit Trojan.Generic.D378AD6 20161115
Avast Win32:Malware-gen 20161115
Avira (no cloud) TR/AD.NsisInject.ufuyd 20161115
BitDefender Trojan.GenericKD.3640022 20161115
Bkav HW32.Packed.A891 20161112
CAT-QuickHeal Ransom.Troldesh 20161115
Comodo TrojWare.Win32.Generic.mpaea 20161115
Cyren W32/Trojan.QOZL-4176 20161115
DrWeb Trojan.Encoder.858 20161115
ESET-NOD32 NSIS/Injector.HU 20161115
Emsisoft Trojan.GenericKD.3640022 (B) 20161115
F-Secure Trojan.GenericKD.3640022 20161115
Fortinet W32/Injector.HF!tr 20161115
GData Trojan.GenericKD.3640022 20161115
Jiangmin Trojan.Inject.tce 20161115
K7AntiVirus Trojan ( 004b39e91 ) 20161115
K7GW Trojan ( 004b39e91 ) 20161115
Kaspersky Trojan-Ransom.Win32.Shade.kzt 20161115
Malwarebytes Ransom.Locky 20161115
McAfee RDN/Generic.dx 20161115
McAfee-GW-Edition BehavesLike.Ramnit.dc 20161115
eScan Trojan.GenericKD.3640022 20161115
Microsoft Ransom:Win32/Troldesh.A 20161115
Panda Trj/CI.A 20161114
Sophos Mal/Generic-S 20161115
Symantec Trojan.Gen.NPE 20161115
Tencent Win32.Trojan.Shade.Dzto 20161115
TrendMicro Ransom_.E5FE66F3 20161115
VIPRE Trojan.Win32.Generic!BT 20161115
Alibaba 20161115
Antiy-AVL 20161115
Baidu 20161115
CMC 20161115
ClamAV 20161115
CrowdStrike Falcon (ML) 20161024
F-Prot 20161115
Ikarus 20161115
Invincea 20161018
Kingsoft 20161115
NANO-Antivirus 20161115
Qihoo-360 20161115
Rising 20161115
SUPERAntiSpyware 20161115
TheHacker 20161115
TrendMicro-HouseCall 20161115
VBA32 20161114
ViRobot 20161115
Yandex 20161114
Zillya 20161115
Zoner 20161115
nProtect 20161115
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
954974
Highest datetime
2016-10-26 21:48:04
Lowest datetime
2016-10-26 21:48:04
Contained files by extension
scr
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x32d26ba8

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
954974

ZipCompressedSize
927943

FileTypeExtension
zip

ZipFileName
2610_akt.scr

ZipBitFlag
0

ZipModifyDate
2016:10:26 21:48:02

File identification
MD5 80b8202f918442de8d23f91038abd86d
SHA1 43b5dea1c48d8fce07173435db245d72dba59789
SHA256 5c5b92c35baaf741e7e2fe5c459772175c892163b1b5e50b627b0db08ed9e61c
ssdeep
12288:rxfJRxlDcop2/PR567BYdAgMs84Un/PdRX1ftsblOaQJHPUZREd6Rt3J3v/v7tb4:9nkX27adQB/olIM/UM/7FshT

File size 906.3 KB ( 928101 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
nsis contains-pe zip

VirusTotal metadata
First submission 2016-10-26 22:00:04 UTC ( 4 months ago )
Last submission 2016-11-15 11:57:26 UTC ( 3 months, 1 week ago )
File names 2610_akt.zip
output.102058979.txt
e0df82c4f7642fa901d0675bfcb88481571cf515
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V1027.

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!