× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 54811a60e243a79b84e203e4c345f1e61b23309a6bc4e3f01462b677215dbaf1
File name: 54811a60e243a79b84e203e4c345f1e61b23309a6bc4e3f01462b677215dbaf1....
Detection ratio: 0 / 55
Analysis date: 2015-12-05 09:03:41 UTC ( 2 years, 5 months ago )
Antivirus Result Update
Ad-Aware 20151205
AegisLab 20151205
Yandex 20151204
AhnLab-V3 20151204
Alibaba 20151204
ALYac 20151204
Antiy-AVL 20151205
Arcabit 20151205
Avast 20151205
AVG 20151205
Avira (no cloud) 20151205
AVware 20151205
Baidu-International 20151205
BitDefender 20151205
Bkav 20151204
ByteHero 20151205
CAT-QuickHeal 20151204
ClamAV 20151204
CMC 20151201
Comodo 20151202
Cyren 20151205
DrWeb 20151205
Emsisoft 20151205
ESET-NOD32 20151205
F-Prot 20151205
F-Secure 20151205
Fortinet 20151204
GData 20151205
Ikarus 20151205
Jiangmin 20151204
K7AntiVirus 20151202
K7GW 20151202
Kaspersky 20151205
Malwarebytes 20151205
McAfee 20151205
McAfee-GW-Edition 20151205
Microsoft 20151205
eScan 20151205
NANO-Antivirus 20151205
nProtect 20151204
Panda 20151204
Qihoo-360 20151205
Rising 20151203
Sophos AV 20151205
SUPERAntiSpyware 20151205
Symantec 20151204
TheHacker 20151205
TotalDefense 20151205
TrendMicro 20151205
TrendMicro-HouseCall 20151205
VBA32 20151204
VIPRE 20151205
ViRobot 20151205
Zillya 20151205
Zoner 20151205
The file being studied is a compressed stream! More specifically, it is a ZIP file. It seems to be a bundled Mac OS X application.
Interesting properties
The studied file contains at least one Portable Executable.
The studied file contains at least one Mac OS X executable.
Contained files
Compression metadata
Contained files
1074
Uncompressed size
20052423
Highest datetime
2015-12-05 15:57:38
Lowest datetime
2015-10-23 01:54:06
Contained files by extension
dll
560
exe
90
ttf
85
drv
14
png
12
vxd
10
h
9
nib
8
sys
6
acm
5
ocx
4
cpl
3
tlb
3
reg
3
ds
2
ini
2
_A
2
nls
1
log
1
id
1
mod
1
Contained files by type
Portable Executable
696
unknown
175
directory
102
XML
17
PNG
6
Mac OS X Executable
2
script
1
HTML
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Winbox v3.app/

ZipBitFlag
0

ZipModifyDate
2015:12:05 15:50:05

File identification
MD5 b0b1d16634d2f6eb54e53539e324aecf
SHA1 a30b6504f0d1e7641ae012edc2809adc70ca561a
SHA256 54811a60e243a79b84e203e4c345f1e61b23309a6bc4e3f01462b677215dbaf1
ssdeep
98304:BBOl17LG7jRFUD9B7a+QpH0R2gbKQYkXBbIUi4s5oAz5eoKC:fOldL0bUv7JQH0R2yYAxa5oW8C

File size 5.5 MB ( 5805108 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (99.8%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
Tags
contains-macho contains-pe mac-app zip

VirusTotal metadata
First submission 2015-12-05 09:03:41 UTC ( 2 years, 5 months ago )
Last submission 2015-12-05 09:03:41 UTC ( 2 years, 5 months ago )
File names 54811a60e243a79b84e203e4c345f1e61b23309a6bc4e3f01462b677215dbaf1.file
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Created processes
HTTP requests
DNS requests
TCP connections