× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 89d424f7a48a14dd46c2638f2b050f10a764bd42188ca5eb31d485c54b9996ba
File name: RatherWeird.zip
Detection ratio: 0 / 58
Analysis date: 2017-05-24 18:27:06 UTC ( 9 months ago )
Antivirus Result Update
Ad-Aware 20170524
AegisLab 20170524
AhnLab-V3 20170524
Alibaba 20170524
ALYac 20170524
Antiy-AVL 20170524
Arcabit 20170524
Avast 20170524
AVG 20170524
Avira (no cloud) 20170524
AVware 20170524
BitDefender 20170524
Bkav 20170524
CAT-QuickHeal 20170524
ClamAV 20170524
CMC 20170524
Comodo 20170524
CrowdStrike Falcon (ML) 20170130
Cyren 20170524
DrWeb 20170524
Emsisoft 20170524
Endgame 20170515
ESET-NOD32 20170524
F-Prot 20170524
F-Secure 20170524
Fortinet 20170524
GData 20170524
Ikarus 20170524
Sophos ML 20170519
Jiangmin 20170524
K7AntiVirus 20170524
K7GW 20170524
Kaspersky 20170524
Kingsoft 20170524
Malwarebytes 20170524
McAfee 20170524
McAfee-GW-Edition 20170524
Microsoft 20170524
eScan 20170524
NANO-Antivirus 20170524
nProtect 20170524
Palo Alto Networks (Known Signatures) 20170524
Panda 20170524
Qihoo-360 20170524
Rising 20170524
SentinelOne (Static ML) 20170516
Sophos AV 20170524
SUPERAntiSpyware 20170524
Symantec 20170524
Symantec Mobile Insight 20170524
Tencent 20170524
TheHacker 20170522
TrendMicro 20170524
TrendMicro-HouseCall 20170524
Trustlook 20170524
VBA32 20170524
VIPRE 20170524
ViRobot 20170524
Webroot 20170524
WhiteArmor 20170524
Yandex 20170518
Zillya 20170524
ZoneAlarm by Check Point 20170524
Zoner 20170524
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
4
Uncompressed size
30208
Highest datetime
2017-05-24 20:11:24
Lowest datetime
2017-05-24 20:06:48
Contained files by extension
dll
2
exe
1
Contained files by type
Portable Executable
3
directory
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
RatherWeird/

ZipBitFlag
0

ZipModifyDate
2017:05:24 20:11:12

File identification
MD5 ff988495eb977c7399e113624e93493d
SHA1 f92e773b3dadb86ff660654397963084e7e459e4
SHA256 89d424f7a48a14dd46c2638f2b050f10a764bd42188ca5eb31d485c54b9996ba
ssdeep
192:6DLk/cpKMyUgYzGiJfwob7WnM2FpLqVDKBfQ7TnkG2vkz8Ocqw1OBrCPZzzicCs9:6Dg/cDyDYzdwzLGVe9QUG2UszziNxX0

File size 13.3 KB ( 13643 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2017-05-24 18:27:06 UTC ( 9 months ago )
Last submission 2017-05-24 18:27:06 UTC ( 9 months ago )
File names RatherWeird.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!