× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ed857857746944ebcdea53a9efa60fd30cdd59fc2b55912e4829b6dbb7f02fcb
File name: BNS SCRIPT.zip
Detection ratio: 9 / 52
Analysis date: 2016-07-20 14:35:29 UTC ( 10 months ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Strictor.104243 20160720
AegisLab Gen.Variant.Strictor!c 20160720
Arcabit Trojan.Strictor.D19733 20160720
BitDefender Gen:Variant.Strictor.104243 20160720
Bkav W32.HfsAutoB.B638 20160720
Emsisoft Gen:Variant.Strictor.104243 (B) 20160720
ESET-NOD32 a variant of Win32/Packed.Themida suspicious 20160720
F-Secure Gen:Variant.Strictor.104243 20160720
GData Gen:Variant.Strictor.104243 20160720
AhnLab-V3 20160720
Alibaba 20160720
Antiy-AVL 20160720
Avast 20160720
AVG 20160720
Avira (no cloud) 20160720
AVware 20160720
Baidu 20160720
CAT-QuickHeal 20160720
ClamAV 20160720
CMC 20160715
Comodo 20160720
Cyren 20160720
DrWeb 20160720
F-Prot 20160720
Fortinet 20160720
Ikarus 20160720
Jiangmin 20160720
K7AntiVirus 20160720
K7GW 20160720
Kaspersky 20160720
Kingsoft 20160720
Malwarebytes 20160720
McAfee 20160720
McAfee-GW-Edition 20160720
Microsoft 20160720
eScan 20160720
NANO-Antivirus 20160720
nProtect 20160720
Panda 20160720
Qihoo-360 20160720
Sophos 20160720
SUPERAntiSpyware 20160720
Symantec 20160720
Tencent 20160720
TheHacker 20160720
TrendMicro 20160720
TrendMicro-HouseCall 20160720
VBA32 20160720
VIPRE 20160720
ViRobot 20160720
Zillya 20160720
Zoner 20160720
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
1445888
Highest datetime
2016-07-20 22:02:22
Lowest datetime
2016-07-20 22:02:22
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x822127e6

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
1445888

ZipCompressedSize
1411765

FileTypeExtension
zip

ZipFileName
BNS SCRIPT.exe

ZipBitFlag
0

ZipModifyDate
2016:07:20 22:02:11

File identification
MD5 a3b33bc5c01cb421937de4b41753f83c
SHA1 7c71cd98c2880db0d497fd02505d0233882331cf
SHA256 ed857857746944ebcdea53a9efa60fd30cdd59fc2b55912e4829b6dbb7f02fcb
ssdeep
24576:0FKwkRj9vNbZGBxIuH5fZIjOfSPnKI/5kkLWWZub8hRBvBnx/IzJw1JuSysmLAaL:0Uw09CBx3ujOfAn5kqO8hRBF5IzJwBcV

File size 1.3 MB ( 1411927 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
contains-pe zip

VirusTotal metadata
First submission 2016-07-20 14:35:29 UTC ( 10 months ago )
Last submission 2017-05-11 08:25:47 UTC ( 1 week, 4 days ago )
File names BNS SCRIPT.zip
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V0720.

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!