Jump to content
Sign in to follow this  
Guest goodjohn1984


Recommended Posts

Guest goodjohn1984

Possible malware or just a false positive.




MD5...: 2c33111a1ea5e5d9369be9f2d3e6010b








Additional information

File size: 19744 bytes

MD5...: 2c33111a1ea5e5d9369be9f2d3e6010b

SHA1..: 62353a843353c70152fff8abe96d30a606ad7ccf

SHA256: 47c23c29a54821abdc2d060a68923c704d96453c494fe17acc74197ffca0a67e

ssdeep: 384:7XbHgWiNwxlodjTuByWO9zTZ2RxA24InY+UuF6s2u6Ak5YwttCsNoxoVKTrg


PEiD..: -

PEInfo: -

RDS...: NSRL Reference Data Set


trid..: ZIP compressed archive (100.0%)


publisher....: n/a

copyright....: n/a

product......: n/a

description..: n/a

original name: n/a

internal name: n/a

file version.: n/a

comments.....: n/a

signers......: -

signing date.: -

verified.....: Unsigned

packers (Kaspersky): PE-Crypt.XorPE

pdfid.: -

packers (F-Prot): XORCrypt

Share this post

Link to post
Share on other sites

i think this attachment is a false positive of this attach.

But this it can be signed as "Malware" because there are more packet which obfuscate the code and for it detect as malware.


But nothing problem with this attachment.

Share this post

Link to post
Share on other sites
Guest orlando

It's a false positive, this file is clean. It's too large to be a malware.


However maximum prudent.



Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

  • Create New...