× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ea6ea4d4cc90f891915856b0393f99f275c0b6bb2a9e75a6b262117a18a2a469
File name: hxdsetupen.zip
Detection ratio: 0 / 63
Analysis date: 2019-05-06 14:30:01 UTC ( 2 weeks, 2 days ago )
Antivirus Result Update
Acronis 20190504
Ad-Aware 20190506
AegisLab 20190506
AhnLab-V3 20190506
Alibaba 20190426
ALYac 20190506
Antiy-AVL 20190506
Arcabit 20190506
Avast 20190506
Avast-Mobile 20190506
AVG 20190506
Avira (no cloud) 20190506
Babable 20190424
Baidu 20190318
BitDefender 20190506
Bkav 20190506
CAT-QuickHeal 20190504
ClamAV 20190506
CMC 20190321
Comodo 20190506
CrowdStrike Falcon (ML) 20190212
Cybereason 20180308
Cylance 20190506
Cyren 20190506
DrWeb 20190506
eGambit 20190506
Emsisoft 20190506
Endgame 20190403
ESET-NOD32 20190506
F-Prot 20190506
F-Secure 20190506
FireEye 20190506
Fortinet 20190506
GData 20190506
Ikarus 20190506
Sophos ML 20190313
Jiangmin 20190506
K7AntiVirus 20190506
K7GW 20190506
Kaspersky 20190506
Kingsoft 20190506
Malwarebytes 20190506
MAX 20190506
MaxSecure 20190506
McAfee 20190503
McAfee-GW-Edition 20190506
Microsoft 20190506
eScan 20190506
NANO-Antivirus 20190506
Palo Alto Networks (Known Signatures) 20190506
Panda 20190506
Qihoo-360 20190506
Rising 20190506
SentinelOne (Static ML) 20190420
Sophos AV 20190506
SUPERAntiSpyware 20190430
Symantec Mobile Insight 20190418
TACHYON 20190506
Tencent 20190506
TheHacker 20190503
Trapmine 20190325
TrendMicro 20190507
TrendMicro-HouseCall 20190506
Trustlook 20190506
VBA32 20190504
VIPRE 20190504
ViRobot 20190506
Webroot 20190506
Yandex 20190501
Zillya 20190506
ZoneAlarm by Check Point 20190506
Zoner 20190506
The file being studied is a compressed stream! More specifically, it is a ZIP file.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1
Uncompressed size
897664
Highest datetime
2009-04-03 21:58:10
Lowest datetime
2009-04-03 21:58:10
Contained files by extension
exe
1
Contained files by type
Portable Executable
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x968a8a16

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
897664

ZipCompressedSize
871913

FileTypeExtension
zip

ZipFileName
setup.exe

ZipBitFlag
0

ZipModifyDate
2009:04:03 21:58:10

Execution parents
Compressed bundles
File identification
MD5 18df5e00110513f15882709d06947f95
SHA1 e2c3c761f2d52b754a82709c1b47c5efe9e06417
SHA256 ea6ea4d4cc90f891915856b0393f99f275c0b6bb2a9e75a6b262117a18a2a469
ssdeep
24576:tFgxzc463Du9+Tcjipj9IgCsIE74e3uYSJYk:/CV5QVSsv74eFSt

File size 851.6 KB ( 872029 bytes )
File type ZIP
Magic literal
Zip archive data, at least v2.0 to extract

TrID ZIP compressed archive (80.0%)
PrintFox/Pagefox bitmap (var. P) (20.0%)
Tags
contains-pe via-tor zip software-collection

VirusTotal metadata
First submission 2009-04-14 21:52:40 UTC ( 10 years, 1 month ago )
Last submission 2019-05-06 14:30:01 UTC ( 2 weeks, 2 days ago )
File names HxD_hexeditor_Setup_English.zip
HxDSetupEN(mbr更改).zip
HxD-Hexeditor1770.zip
HxDSetupEN.zip
2017_03_28_09_06_26.000843
Hex Editor hxdsetupen.zip
HxDSetupEN.zip?token=1339434214_7cf66fc319ad2e3c4b67e72c106b2c34&lop=link&ptype=3001&ontid=2352&siteId=4&edId=3&spi=e045cbc9112f1b7035ef1786319bd2d1&pid=11018928&psid=10891068&&fileName=HxDSetupEN.zip
HxDSetupEN.zip
HxD Hex Editor 1.7.7.0.zip
hxd_1_7_7_0.zip
output.13602486.txt
powerhex.zip
HxD-hexeditor-setup.zip
HxD_hexeditor_installer_HxDSetupEN_1_7_7_0.zip
hxd.zip
Editor Hex.zip
HxDSetupEN1.7.7.0.zip
file-3092900_zip
HxDSetupEN.zip
HxDSetupEN_1.7.7.0.zip
HxDSetupEN(1).zip
HxD_Hex_Editor_Setup_EN_1_7_7_0.zip
HxDSetupEN.zip
122837aqzr5abj0jo4bajb.zip
1340799487-96481-HxDSetupEN.zip
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!