× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fcfb4201f876c30bbe55da65689b6c60a2179455bc165b0aca1c63b15a59421b
File name: Craftland.app.zip
Detection ratio: 0 / 60
Analysis date: 2018-04-21 05:36:14 UTC ( 1 year, 1 month ago )
Antivirus Result Update
Ad-Aware 20180421
AegisLab 20180420
AhnLab-V3 20180420
Alibaba 20180420
ALYac 20180421
Antiy-AVL 20180418
Arcabit 20180421
Avast 20180421
Avast-Mobile 20180420
AVG 20180421
Avira (no cloud) 20180421
AVware 20180421
Babable 20180406
Baidu 20180419
BitDefender 20180421
Bkav 20180410
CAT-QuickHeal 20180419
ClamAV 20180420
CMC 20180420
Comodo 20180421
CrowdStrike Falcon (ML) 20180418
Cybereason 20180225
Cylance 20180421
Cyren 20180421
DrWeb 20180421
eGambit 20180421
Emsisoft 20180421
Endgame 20180403
ESET-NOD32 20180421
F-Prot 20180421
F-Secure 20180421
Fortinet 20180421
GData 20180421
Ikarus 20180420
Sophos ML 20180121
Jiangmin 20180421
K7AntiVirus 20180420
K7GW 20180421
Kaspersky 20180421
Kingsoft 20180421
Malwarebytes 20180421
MAX 20180421
McAfee 20180421
McAfee-GW-Edition 20180420
Microsoft 20180421
eScan 20180421
NANO-Antivirus 20180421
nProtect 20180421
Palo Alto Networks (Known Signatures) 20180421
Panda 20180420
Qihoo-360 20180421
Rising 20180421
SentinelOne (Static ML) 20180225
Sophos AV 20180420
SUPERAntiSpyware 20180421
Symantec 20180420
Symantec Mobile Insight 20180419
Tencent 20180421
TheHacker 20180415
TrendMicro 20180420
TrendMicro-HouseCall 20180421
Trustlook 20180421
VBA32 20180420
VIPRE 20180420
ViRobot 20180421
Webroot 20180421
Yandex 20180420
Zillya 20180420
ZoneAlarm by Check Point 20180421
Zoner 20180421
The file being studied is a compressed stream! More specifically, it is a ZIP file. It seems to be a bundled Mac OS X application.
File signature
Identifier com.apple.JavaApplicationStub
Format bundle with Mach-O universal (i386 x86_64)
Library validation warning OS X SDK version before 10.9 does not support Library Validation
OSPlatform 36
OSSDKVersion 0
OSVersionMin 656640
CandidateCDHash sha1 da83991ef2721a3119b04d211289c6dd116ed53a
Hash choices sha1
Page size 4096
CDHash da83991ef2721a3119b04d211289c6dd116ed53a
Signature size 4064
Authority Software Signing
Authority Apple Code Signing Certification Authority
Authority Apple Root CA
Info.plist not bound
TeamIdentifier not set
Sealed Resources none
Signers
[+] Apple Inc.
Status Valid
Issuer Apple Inc.
Valid from 09:40 PM 04/25/2006
Valid to 09:40 PM 02/09/2035
Valid usage Certificate Sign, CRL Sign
Algorithm sha1WithRSAEncryption
Thumbprint 611E5B662C593A08FF58D14AE22452D198DF6C60
Serial number 2
[+] Apple Inc.
Status Certificate out of its validity period
Issuer Apple Inc.
Valid from 09:19 PM 02/14/2007
Valid to 09:19 PM 02/14/2015
Valid usage Digital Signature, Certificate Sign, CRL Sign, Code Signing
Algorithm sha1WithRSAEncryption
Thumbprint FAD81F571D72D2BAB0BAB217F980DB8803774B85
Serial number 12
[+] Apple Inc.
Status Certificate out of its validity period
Issuer Apple Inc.
Valid from 10:02 PM 02/23/2007
Valid to 10:02 PM 01/14/2015
Valid usage Digital Signature, Code Signing
Algorithm sha1WithRSAEncryption
Thumbprint 2203029E85EFB1828B928C3B6545F003CC0E515C
Serial number 1
Interesting properties
The studied file contains at least one Mac OS X executable.
Contained files
Compression metadata
Contained files
10
Uncompressed size
151783
Highest datetime
2013-01-18 15:15:16
Lowest datetime
2013-01-18 15:13:52
Contained files by extension
jar
1
Contained files by type
directory
5
unknown
2
XML
1
Mac OS X Executable
1
ZIP
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Craftland.app/

ZipBitFlag
0

ZipModifyDate
2013:01:18 15:13:52

File identification
MD5 9723d5f66a6aa5f1f99e5cc4818b0a67
SHA1 96017b3b5947f8bab1be8ee283bf73a46dae7e9a
SHA256 fcfb4201f876c30bbe55da65689b6c60a2179455bc165b0aca1c63b15a59421b
ssdeep
1536:i/pwyHLJ1MixiMTUN2FSXh1ky3dojDMTi+GFtMHAUokg8r7bOE2l0GsrRXxvZBzp:Ypw6LJyDMTUwFahfdCDdn3MHok37ziIl

File size 90.8 KB ( 92958 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
mac-app contains-macho signed zip

VirusTotal metadata
First submission 2013-07-16 06:52:48 UTC ( 5 years, 10 months ago )
Last submission 2018-04-21 05:36:14 UTC ( 1 year, 1 month ago )
File names Craftland.app.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes