× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3047deede929d7ad7fcf92856a205c7dbb78e00f7fc3b4d22884a35cfd24776a
File name: Icon Tool.zip
Detection ratio: 1 / 57
Analysis date: 2017-02-23 17:27:38 UTC ( 2 years, 1 month ago )
Antivirus Result Update
Ikarus PUA.OSX.Pcvark 20170223
Ad-Aware 20170223
AegisLab 20170223
AhnLab-V3 20170223
Alibaba 20170223
ALYac 20170223
Antiy-AVL 20170223
Arcabit 20170223
Avast 20170223
AVG 20170223
Avira (no cloud) 20170223
AVware 20170223
Baidu 20170223
BitDefender 20170223
Bkav 20170223
CAT-QuickHeal 20170223
ClamAV 20170223
CMC 20170223
Comodo 20170223
CrowdStrike Falcon (ML) 20170130
Cyren 20170223
DrWeb 20170223
Emsisoft 20170223
Endgame 20170222
ESET-NOD32 20170223
F-Prot 20170223
F-Secure 20170223
Fortinet 20170223
GData 20170223
Sophos ML 20170203
Jiangmin 20170223
K7AntiVirus 20170223
K7GW 20170223
Kaspersky 20170223
Kingsoft 20170223
Malwarebytes 20170223
McAfee 20170223
McAfee-GW-Edition 20170223
Microsoft 20170223
eScan 20170223
NANO-Antivirus 20170223
nProtect 20170223
Panda 20170223
Qihoo-360 20170223
Rising 20170223
Sophos AV 20170223
SUPERAntiSpyware 20170223
Symantec 20170223
Tencent 20170223
TheHacker 20170223
TrendMicro 20170223
TrendMicro-HouseCall 20170223
Trustlook 20170223
VBA32 20170223
VIPRE 20170223
ViRobot 20170223
Webroot 20170223
WhiteArmor 20170222
Yandex 20170222
Zillya 20170222
Zoner 20170223
The file being studied is a compressed stream! More specifically, it is a ZIP file. It seems to be a bundled Mac OS X application.
File signature
Identifier com.WrightLabs.IconTool
Format bundle with Mach-O thin (x86_64)
CDHash 1dd232eaf8b8ce5acc2b9468fee9d51d2c45b4bb
Signature size 8522
Authority Developer ID Application: Tyler Wright (YXXTL58Y97)
Authority Developer ID Certification Authority
Authority Apple Root CA
Timestamp Oct 28, 2014, 10:56:21 PM
Info.plist entries 23
TeamIdentifier YXXTL58Y97
Interesting properties
The studied file contains at least one Mac OS X executable.
Contained files
Compression metadata
Contained files
14
Uncompressed size
637273
Highest datetime
2014-10-28 18:56:22
Lowest datetime
2014-10-28 18:56:22
Contained files by extension
nib
1
Contained files by type
directory
6
unknown
4
XML
3
Mac OS X Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Icon Tool.app/

ZipBitFlag
0

ZipModifyDate
2014:10:28 18:56:11

File identification
MD5 86aad99925d2c1b29080b6ec2549015c
SHA1 5c6104d431a60aedad04db743bb227d9d07f6cb3
SHA256 3047deede929d7ad7fcf92856a205c7dbb78e00f7fc3b4d22884a35cfd24776a
ssdeep
12288:0IA1jjIlGSeou9kYCjggcBtaxo+7V+BkEakBtNYg12:niHIlbeouqYCjggcmSSzEak5Ye2

File size 411.1 KB ( 420959 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
mac-app contains-macho zip

VirusTotal metadata
First submission 2017-02-21 05:41:01 UTC ( 2 years, 1 month ago )
Last submission 2017-02-23 17:27:38 UTC ( 2 years, 1 month ago )
File names Icon Tool.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Created processes