× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fcfb4201f876c30bbe55da65689b6c60a2179455bc165b0aca1c63b15a59421b
File name: Craftland.app.zip
Detection ratio: 0 / 48
Analysis date: 2013-10-11 02:29:58 UTC ( 4 years, 6 months ago ) View latest
Antivirus Result Update
Yandex 20131010135559
AhnLab-V3 20131010135949
AntiVir 20131011030527
Antiy-AVL 20131010140536
Avast 20131011030615
AVG 20131010231227
Baidu-International 20131010111055
BitDefender 20131011030745
Bkav 20131010141458
ByteHero 20130613085152
CAT-QuickHeal 20131010064519
ClamAV 20131010054142
Commtouch 20131011014545
Comodo 20131010165919
DrWeb 20131011030941
Emsisoft 20131011031102
ESET-NOD32 20131010233824
F-Prot 20131011022753
F-Secure 20131011031338
Fortinet 20131010201846
GData 20131011031711
Ikarus 20131011014911
Jiangmin 20130903053935
K7AntiVirus 20131010175706
K7GW 20131010181400
Kaspersky 20131011032346
Kingsoft 20130829055915
Malwarebytes 20131011032508
McAfee 20131011032649
McAfee-GW-Edition 20131011013042
Microsoft 20131011015056
eScan 20131011015309
NANO-Antivirus 20131011021521
Norman 20131010153436
nProtect 20131010094825
Panda 20131011002136
PCTools 20131002161145
Rising 20131010041446
Sophos AV 20131011021917
SUPERAntiSpyware 20131011011039
Symantec 20131011023446
TheHacker 20131010190457
TotalDefense 20131010220447
TrendMicro 20131011024030
TrendMicro-HouseCall 20131011024811
VBA32 20131010134502
VIPRE 20131011030243
ViRobot 20131010221147
The file being studied is a compressed stream! More specifically, it is a ZIP file. It seems to be a bundled Mac OS X application.
File signature
Identifier com.apple.JavaApplicationStub
Format bundle with Mach-O universal (i386 x86_64)
Library validation warning OS X SDK version before 10.9 does not support Library Validation
OSPlatform 36
OSSDKVersion 0
OSVersionMin 656640
CandidateCDHash sha1 da83991ef2721a3119b04d211289c6dd116ed53a
Hash choices sha1
Page size 4096
CDHash da83991ef2721a3119b04d211289c6dd116ed53a
Signature size 4064
Authority Software Signing
Authority Apple Code Signing Certification Authority
Authority Apple Root CA
Info.plist not bound
TeamIdentifier not set
Sealed Resources none
Signers
[+] Apple Inc.
Status Valid
Issuer Apple Inc.
Valid from 09:40 PM 04/25/2006
Valid to 09:40 PM 02/09/2035
Valid usage Certificate Sign, CRL Sign
Algorithm sha1WithRSAEncryption
Thumbprint 611E5B662C593A08FF58D14AE22452D198DF6C60
Serial number 2
[+] Apple Inc.
Status Certificate out of its validity period
Issuer Apple Inc.
Valid from 09:19 PM 02/14/2007
Valid to 09:19 PM 02/14/2015
Valid usage Digital Signature, Certificate Sign, CRL Sign, Code Signing
Algorithm sha1WithRSAEncryption
Thumbprint FAD81F571D72D2BAB0BAB217F980DB8803774B85
Serial number 12
[+] Apple Inc.
Status Certificate out of its validity period
Issuer Apple Inc.
Valid from 10:02 PM 02/23/2007
Valid to 10:02 PM 01/14/2015
Valid usage Digital Signature, Code Signing
Algorithm sha1WithRSAEncryption
Thumbprint 2203029E85EFB1828B928C3B6545F003CC0E515C
Serial number 1
Interesting properties
The studied file contains at least one Mac OS X executable.
Contained files
Compression metadata
Contained files
10
Uncompressed size
151783
Highest datetime
2013-01-18 15:15:16
Lowest datetime
2013-01-18 15:13:52
Contained files by extension
jar
1
Contained files by type
directory
5
unknown
2
XML
1
Mac OS X Executable
1
ZIP
1
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
10

ZipCRC
0x00000000

FileType
ZIP

ZipCompression
None

ZipUncompressedSize
0

ZipCompressedSize
0

FileTypeExtension
zip

ZipFileName
Craftland.app/

ZipBitFlag
0

ZipModifyDate
2013:01:18 15:13:52

File identification
MD5 9723d5f66a6aa5f1f99e5cc4818b0a67
SHA1 96017b3b5947f8bab1be8ee283bf73a46dae7e9a
SHA256 fcfb4201f876c30bbe55da65689b6c60a2179455bc165b0aca1c63b15a59421b
ssdeep
1536:i/pwyHLJ1MixiMTUN2FSXh1ky3dojDMTi+GFtMHAUokg8r7bOE2l0GsrRXxvZBzp:Ypw6LJyDMTUwFahfdCDdn3MHok37ziIl

File size 90.8 KB ( 92958 bytes )
File type ZIP
Magic literal
Zip archive data, at least v1.0 to extract

TrID ZIP compressed archive (100.0%)
Tags
mac-app contains-macho signed zip

VirusTotal metadata
First submission 2013-07-16 06:52:48 UTC ( 4 years, 9 months ago )
Last submission 2018-04-21 05:36:14 UTC ( 2 days, 11 hours ago )
File names Craftland.app.zip
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes