× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b8819e1727256b5eeada87c88aa5639cb2abcda174d26fcc686f0b2e8ace051c
File name: ir053_portable_x64.zip
Detection ratio: 0 / 55
Analysis date: 2016-05-05 09:30:15 UTC ( 2 years, 10 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160505
AegisLab 20160505
AhnLab-V3 20160504
Alibaba 20160505
ALYac 20160505
Antiy-AVL 20160505
Arcabit 20160505
Avast 20160505
AVG 20160505
Avira (no cloud) 20160504
AVware 20160505
Baidu 20160505
Baidu-International 20160504
BitDefender 20160505
CAT-QuickHeal 20160505
ClamAV 20160504
CMC 20160504
Comodo 20160505
Cyren 20160505
DrWeb 20160505
Emsisoft 20160503
ESET-NOD32 20160505
F-Prot 20160505
F-Secure 20160505
Fortinet 20160505
GData 20160505
Ikarus 20160505
Jiangmin 20160505
K7AntiVirus 20160504
K7GW 20160505
Kaspersky 20160505
Kingsoft 20160505
Malwarebytes 20160505
McAfee 20160505
McAfee-GW-Edition 20160505
Microsoft 20160505
eScan 20160505
NANO-Antivirus 20160505
nProtect 20160504
Panda 20160504
Qihoo-360 20160505
Rising 20160505
Sophos AV 20160505
SUPERAntiSpyware 20160505
Symantec 20160505
Tencent 20160505
TheHacker 20160505
TrendMicro 20160505
TrendMicro-HouseCall 20160505
VBA32 20160504
VIPRE 20160505
ViRobot 20160505
Yandex 20160502
Zillya 20160504
Zoner 20160505
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
72
Uncompressed size
11791455
Highest datetime
2012-09-01 19:13:50
Lowest datetime
2011-12-10 00:46:28
Contained files by extension
irl
48
chm
8
exe
5
irc
3
txt
2
dll
1
Contained files by type
unknown
59
Portable Executable
9
directory
4
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
ir053_portable_x64/

ZipBitFlag
0

ZipModifyDate
2012:09:01 19:13:50

Compressed bundles
File identification
MD5 979de325a8798ac24db1bae5ec4d2bd7
SHA1 9f56674d6ded162670c00939cf74052d9adc0f5e
SHA256 b8819e1727256b5eeada87c88aa5639cb2abcda174d26fcc686f0b2e8ace051c
ssdeep
98304:CIY57tqrmwsT6qvfBhpzigJPA9vR5hBcPsb4pfuAycjXTc2cILnEVUAovNWR+X:C557Xwsmx1L9esUphbc99owRE

File size 4.3 MB ( 4460590 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe zip via-tor

VirusTotal metadata
First submission 2012-09-02 07:12:16 UTC ( 6 years, 6 months ago )
Last submission 2019-03-03 21:08:57 UTC ( 2 weeks, 2 days ago )
File names ir053_portable_x64.zip
ir053_portable_x64 =?ISO-2022-JP?B?GyRCJWklJCVHJSMlcyUwJT0lVSVIGyhCLnppcA==?=
output.20395911.txt
ir053_portable_x64_zip
ir053_portable_x64___INFRA RECORDER___AVT 56 et 56.zip
ir053_portable_x64.zip
InfraRecorder.zip
ir053_portable_x64(1).zip
InfraRecorder053_portable_x64.zip
20395911
ir053_portable_x64.zip
ir053_portable_x64.zip
InfraRecorder 0.53 Portable x64.zip
ir053_portable_x64.zip
infra recorder 053_portable_x64.zip
output.29244116.txt
9f56674d6ded162670c00939cf74052d9adc0f5e
ir053_portable_x64.zip
ir053_portable_x64.zip
ir053_portable_x64.zip
ir053_portable_x64 ().zip
ir053_portable_x64.zip
file-4448724_zip
Infrarecorder Portable 0.53 ir053_portable_x64.zip
ir053_portable_x64.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!