The D A V I N C I zip File Malware Analysis

The D A V I N C I.zip File Analysis

Updated 1 month ago

Checked by Malware Check

D A V I N C I.zip

Technical Analysis

File Name	D A V I N C I.zip
File Type	ZIP
Magic Bytes	`Zip archive data, at least v2.0 to extract, compression method=store`
SSDEEP Hash	393216:QStWmCt0IIS49lPv0Ryn+bV0eBEnm3/r/LxD0ZPH3VC8UlMOMu9SIdVX6qu4u9wG:jWVISUlPf+BCmr/1D0lXVCOOMu9SIdpI
Scanner Version	1.0.229.174
Database Version	2025-12-01 23:00:34 UTC

⚠

Suspicious File Detected

Detected by 33 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.

51%

Detection Rate

23,860,971

File Size (bytes)

33/65

Engines Detected

2025-12-01

Analysis Date

File Identification

Hash Type	Value	Action
MD5	369a323be472b628915e4849fb2fdb87
SHA1	6bec9db2df6b415bf711902d41714f99f18c0866
SHA256	560b0e73974d92cbb861386a5f2015a48b1046b2ea5c6fe38bc50a0d81f8899c
SHA512	548b811ca5f0b931e2c9a973177e356e2bbf0836b3015e300d90078d246a91640334daf09890d17c3501c4dd4c9b873dee15b98201373b6130af2ecbfaa41e02

Security Engines with Detections (33 of 65)

Lionic

Trojan.ZIP.Generic.4!c Malicious

MicroWorld-eScan

Gen:Variant.Tedy.208300 Malicious

CAT-QuickHeal

Trojan.Ghanarava.172806916041fd0d Malicious

Skyhigh

GenericRXRR-UG!DA11F148F278 Malicious

ALYac

Gen:Variant.Tedy.208300 Malicious

Malwarebytes

Malware.AI.4130026959 Malicious

VIPRE

Gen:Variant.Tedy.208300 Malicious

Sangfor

Trojan.Msil.Agent.Vkk9 Malicious

ESET-NOD32

MSIL/Packed.Koi.A suspicious application Malicious

TrendMicro-HouseCall

TROJ_GEN.R002C0DF524 Malicious

Avast

Win32:MalwareX-gen [Misc] Malicious

Cynet

Malicious (score: 99) Malicious

BitDefender

Gen:Variant.Tedy.208300 Malicious

NANO-Antivirus

Trojan.Win32.Koi.jrvkig Malicious

Sophos

Mal/Generic-S Malicious

F-Secure

Trojan.TR/Redcap.irzzy Malicious

TrendMicro

TROJ_GEN.R002C0DF524 Malicious

SentinelOne

Static AI - Malicious Archive Malicious

CTX

zip.unknown.tedy Malicious

Emsisoft

Gen:Variant.Tedy.208300 (B) Malicious

Ikarus

Trojan.MSIL.Krypt Malicious

GData

Gen:Variant.Tedy.208300 Malicious

Avira

TR/Redcap.irzzy Malicious

Arcabit

Trojan.Tedy.D32DAC Malicious

Varist

W32/ABTrojan.IMOA-6201 Malicious

Rising

Trojan.Mamson!8.108F1 (CLOUD) Malicious

Yandex

Trojan.Igent.bX6UdK.1 Malicious

TrellixENS

GenericRXRR-UG!DA11F148F278 Malicious

huorong

Trojan/MSIL.Injector.kt Malicious

MaxSecure

Trojan.Malware.115929432.susgen Malicious

Fortinet

Riskware/Application Malicious

AVG

Win32:MalwareX-gen [Misc] Malicious

Panda

Trj/Chgt.AD Malicious

32 engines reported no threats - Only engines with detections are shown above for clarity

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
Email Security: Be cautious with email attachments and links, even from known contacts.

Proactive Protection

33 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

The D A V I N C I.zip File Analysis

Technical Analysis

Suspicious File Detected

Scan Another File

File Identification

Security Engines with Detections (33 of 65)

Remember: This is Result of Online Virus Scanner

Keep Your System Protected

Leave a Comment

Gridinsoft Anti-Malware