Safe
Widely-distributed game ROM archive with 620-day history, 408 submitters, and unanimous tier-1 engine consensus — no malware indicators detected.
9b35fb1e70750eef6d…46f9bd689eThe verdict, reasoned out.
Not a rules engine. The MT AI Engine reads every signal we collected, weighs them against history, and commits to an answer.
The evidence overwhelmingly supports a benign classification. Tier-1 engines (Kaspersky, Microsoft, BitDefender, ESET-NOD32, Avira, Fortinet, F-Secure, Emsisoft, GData, Ikarus, DrWeb, Avast, AVG) unanimously report the file undetected. The prevalence classification 'common_old' with 426 submissions and 408 unique submitters over 620 days indicates this is a well-known, stable commodity file — consistent with legitimate game ROM distribution. No sandbox behaviour data, no dropped children, no malicious host contact, and zero external intelligence hits (CIRCL, MalwareBazaar, YARAify) confirm the absence of malicious runtime or infrastructure indicators. No heuristic rules fired, and no adversarial input flags were detected. The unsigned status is typical for ROM archives and does not override the strong prevalence and consensus signals.
Each signal cites a concrete token from the evidence the arbiter saw — engine name, MITRE technique, signer string, or an exact count.
tier1Malicious=0; 17 tier-1 engines (Kaspersky, Microsoft, BitDefender, ESET-NOD32, Avira, Fortinet, F-Secure, Emsisoft, GData, Ikarus, DrWeb, Avast, AVG) all undetected
prevalence.classification='common_old' with 408 unique submitters, 426 submissions since 2024-10-19 — established distribution pattern
No external intel hits: CIRCL=false, MalwareBazaar=false, YARAify.ruleCount=0 — no researcher-curated malware signals
No behaviour data, no dropped children, no malicious contacted hosts, no sandbox verdicts — clean runtime profile
triggeredHeuristics=[] (empty); no adversarial input flags; no brand mismatch — no evasion or spoofing indicators
- 17/17 tier-1 engines undetected (Kaspersky, Microsoft, BitDefender, ESET-NOD32, Avira, Fortinet, F-Secure, Emsisoft, GData, Ikarus, DrWeb, Avast, AVG)
- prevalence.classification='common_old' with 426 submissions, 408 unique submitters, 620-day history
- No external intelligence hits: CIRCL=false, MalwareBazaar=false, YARAify.ruleCount=0
- No sandbox malicious verdicts, no dropped children, no malicious contacted hosts
- No adversarial input flags, no brand mismatch, no triggered heuristics
This file is safe. The unanimous tier-1 consensus, established prevalence (426 submissions over 620 days), and complete absence of malicious indicators confirm it is a legitimate game ROM archive. No further action is needed.
0 detections across 75 engines
How often this file shows up in the wild
Widely seen in the wild for a long time. High prior this is legitimate; isolated detections on common-old files are usually false positives.
Forensic fingerprint
- File name
- Pokemon - SoulSilver Version (USA, Australia).zip
- Size
- 57.95 MB
- MIME type
- (unknown)
- Detected type
- ZIP
- SHA-256
- 9b35fb1e70750eef6da6a0afff4ad57b26505adaab82cc27307d1b46f9bd689e
- MD5
- 4dd1e09df22ed588438b49977c4859b9
- SHA-1
- 4e02457f781ecd4985c7cc80557f4d9dc463ea56
- First seen (VT)
- 10/19/2024, 4:24:09 PM
- Last analysis (VT)
- 6/29/2026, 4:55:25 PM
- First scan (MalwareTips)
- 7/1/2026, 5:48:58 AM
- Last scan (MalwareTips)
- 7/1/2026, 5:48:58 AM
Reviews & malware reports(0)
Tell the community what you saw. Tag the sample — Trojan, Adware, False Positive — and share what the file did on your system. Your report helps confirm or dispute the AV verdict.