× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: ad746af10859f03421f8b325afae08cb683492ab70bfff26590ed9054c978517
Имя файла: Firefox Setup 34.0.5.exe
Показатель выявления: 0 / 55
Дата анализа: 2014-12-17 10:42:45 UTC (3 лет, 12 месяцев назад) Показать последний анализ
Антивирус Результат Дата обновления
Ad-Aware 20141217
AegisLab 20141217
Yandex 20141216
AhnLab-V3 20141216
ALYac 20141228
Antiy-AVL 20141217
Avast 20141228
AVG 20141217
Avira (no cloud) 20141217
AVware 20141217
Baidu-International 20141217
BitDefender 20141217
ByteHero 20141217
CAT-QuickHeal 20141216
ClamAV 20141217
CMC 20141215
Comodo 20141217
Cyren 20141217
DrWeb 20141228
Emsisoft 20141217
ESET-NOD32 20141217
F-Prot 20141215
F-Secure 20141228
Fortinet 20141217
GData 20141217
Ikarus 20141228
Jiangmin 20141216
K7AntiVirus 20141216
K7GW 20141217
Kaspersky 20141217
Kingsoft 20141217
Malwarebytes 20141217
McAfee 20141217
McAfee-GW-Edition 20141227
Microsoft 20141217
eScan 20141217
NANO-Antivirus 20141217
Norman 20141217
nProtect 20141217
Panda 20141217
Qihoo-360 20141228
Rising 20141216
Sophos AV 20141217
SUPERAntiSpyware 20141217
Symantec 20141217
Tencent 20141217
TheHacker 20141216
TotalDefense 20141217
TrendMicro 20141217
TrendMicro-HouseCall 20141217
VBA32 20141226
VIPRE 20141217
ViRobot 20141217
Zillya 20141216
Zoner 20141216
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Signature verification Signed file, verified signature
Signing date 8:55 PM 11/26/2014
Signers
[+] Mozilla Corporation
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer DigiCert Assured ID Code Signing CA-1
Valid from 1:00 AM 9/17/2013
Valid to 1:00 PM 9/21/2016
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint 9153980CC186DF478F35229E11C9A7310449A1AA
Serial number 05 11 EA F8 57 9E 26 62 BE 62 2D E5 AE 0C D4 08
[+] DigiCert Assured ID Code Signing CA-1
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 1:00 PM 2/11/2011
Valid to 1:00 PM 2/10/2026
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint 409AA4A74A0CDA7C0FEE6BD0BB8823D16B5F1875
Serial number 0F A8 49 06 15 D7 00 A0 BE 21 76 FD C5 EC 6D BD
[+] DigiCert
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 1:00 AM 11/10/2006
Valid to 1:00 AM 11/10/2031
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha1RSA
Thumbprint 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Serial number 0C E7 E0 E5 17 D8 46 FE 8F E5 60 FC 1B F0 30 39
Counter signers
[+] Symantec Time Stamping Services Signer - G4
Status Valid
Issuer Symantec Time Stamping Services CA - G2
Valid from 1:00 AM 10/18/2012
Valid to 12:59 AM 12/30/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 65439929B67973EB192D6FF243E6767ADF0834E4
Serial number 0E CF F4 38 C8 FE BF 35 6E 04 D8 6A 98 1B 1A 50
[+] Symantec Time Stamping Services CA - G2
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 12/21/2012
Valid to 12:59 AM 12/31/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 6C07453FFDDA08B83707C09B82FB3D15F35336B1
Serial number 7E 93 EB FB 7C C6 4E 59 EA 4B 9A 77 D4 06 FC 3B
[+] Thawte Timestamping CA
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
Packers identified
F-PROT NSIS, Unicode, appended, 7Z, UPX
PEiD UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-04-17 05:29:40
Entry Point 0x00021E30
Number of sections 3
PE sections
Overlays
MD5 4a96c44dc07e16e6a985d76ec550e661
File type data
Offset 70656
Size 39760752
Entropy 8.00
PE imports
VirtualProtect
LoadLibraryA
ExitProcess
GetProcAddress
SysAllocString
ShellExecuteExA
SetTimer
Number of PE resources by type
RT_ICON 9
RT_STRING 2
RT_DIALOG 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 15
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
4.42.0.0

UninitializedDataSize
94208

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
28672

EntryPoint
0x21e30

OriginalFileName
7zS.sfx.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 1999-2006 Igor Pavlov

FileVersion
4.42

TimeStamp
2014:04:17 06:29:40+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
7zS.sfx

ProductVersion
4.42

FileDescription
7z Setup SFX

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Igor Pavlov

CodeSize
40960

ProductName
7-Zip

ProductVersionNumber
4.42.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

Compressed bundles
File identification
MD5 ba270843dc0575e304385acc73abbc81
SHA1 2b766e92696309e731f15b509bd3de63617cfc86
SHA256 ad746af10859f03421f8b325afae08cb683492ab70bfff26590ed9054c978517
ssdeep
786432:hOw2fV0IlHYMYUWCnUjmKgDmrpxdqDUYV2jorh1NRus8uGiESQnUu6/itoEof/iW:4wS8pzqDUYV2ONR8u18Uu6/qoEo0nC

authentihash 68b49e8afa3a308706275b58a061cd6e1f426bf412bdd4bb8d9eb68fcb581fda
imphash 67b717da9ed8a8bd9f572a5820791f0c
Размер файла 38.0 MБ ( 39831408 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID UPX compressed Win32 Executable (38.2%)
Win32 EXE Yoda's Crypter (37.5%)
Win32 Dynamic Link Library (generic) (9.2%)
Win32 Executable (generic) (6.3%)
OS/2 Executable (generic) (2.8%)
Tags
peexe overlay signed nsis upx software-collection

VirusTotal metadata
First submission 2014-12-01 06:25:53 UTC (4 лет назад)
Last submission 2018-04-11 21:45:08 UTC (8 месяцев, 1 неделя назад)
Имена файлов Firefox Setup 34.0.5 ru.exe
Mozilla Firefox 34.0.5 Final.exe
FirefoxSetup.exe
Firefox Setup 34.0.5.exe
ad746af10859f03421f8b325afae08cb683492ab70bfff26590ed9054c978517
Firefox Setup 34.0.5.exe
1.exe
Firefox Setup 34.0.5.exe
Firefox Setup 34.0.5.exe
4.exe
download.exe
Firefox Setup 34.0.5.exe
Firefox Setup 34.0.5.exe
Firefox Setup 34.0.5.exe
Firefox_34.0.5_ru.exe
download.exe
download.exe
Firefox Setup 34.0.5.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!