home

SnapZip.exe

SnapZip

Capital Intellect Inc

The application SnapZip.exe by Capital Intellect Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Capital Intellect, Inc  (signed by Capital Intellect Inc)

Product:
SnapZip(TM)

Description:
SnapZip

Version:
2015.01.0011

MD5:
22b712b333db494c17cae5ca402b9e74

SHA-1:
3eea0ae15afd6936d28bca9f306525c9c972dce2

SHA-256:
9829f7c682d66c0721381ded7dfc9aa8ab73dd7b85fdf5d5ebe21dece3dd78bd

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/24/2024 8:18:36 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic.CapitalIntellect.Meta
15.11.10.12

File size:
7.6 MB (7,919,328 bytes)

Product version:
2015.01.0011

Copyright:
Copyright (c) 2000-2012 Capital Intellect Inc. All Rights Reserved.

Trademarks:
SnapZip(TM) Capital Intellect Inc. Copyright (c) 2000-2010 Capital Intellect Inc. All Rights Reserved.

Original file name:
SnapZip.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\winferno\suite\snapzip\snapzip.exe

Digital Signature
Signed by:
Capital Intellect Inc

Authority:
VeriSign, Inc.

Valid from:
6/17/2014 5:00:00 PM

Valid to:
8/16/2017 4:59:59 PM

Subject:
CN=Capital Intellect Inc, O=Capital Intellect Inc, L=Boston, S=Massachusetts, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
40B558C33945329695046A917D13C40A

File PE Metadata
Compilation timestamp:
7/21/2014 9:16:55 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:NeiYNi/3IvzbajhsWCCmB9kl6DLfhqMCKkwt7Wk:IiYNi/3IvPajhsWCCmB9kl6D97j

Entry address:
0xF880

Entry point:
68, C8, 01, 41, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 38, 00, 00, 00, 8D, 34, 4F, 61, 80, FF, 83, 46, 8C, 59, E5, D0, 12, 46, A7, ED, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 20, 20, 20, 20, 20, 3D, 53, 6E, 61, 70, 5A, 69, 70, 00, 53, 6E, 61, 70, 5A, 69, 70, 00, 00, 67, 69, 6E, 20, 56, 42, 2E, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 2F, 00, 00, 00, F2, 4C, 74, BB, 13, EF, EC, 4F, B3, 6F, 06, F5, 9B, 85, CB, 6F, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Entropy:
4.7638

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
880 KB (901,120 bytes)

Remove SnapZip.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.