home

unzip.exe

MD5:
75375c22c72f1beb76bea39c22a1ed68

SHA-1:
e1652b058195db3f5f754b7ab430652ae04a50b8

SHA-256:
8d9b5190aace52a1db1ac73a65ee9999c329157c8e88f61a772433323d6b7a4a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/9/2025 8:34:15 PM UTC  (today)

File size:
164 KB (167,936 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\lrenfuse.lrplugin\win\unzip.exe

File PE Metadata
Compilation timestamp:
2/28/2005 1:51:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
3072:IeAGcNNwmlR2GNUbomMYMLnbtoKOmiNL2SJOUOhop:CvNNtWuYcqHmiNLOc

Entry address:
0x14878

Entry point:
55, 8B, EC, 6A, FF, 68, 50, 27, 42, 00, 68, 7C, A2, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 10, 53, 56, 57, 89, 65, E8, FF, 15, E0, E0, 41, 00, 33, D2, 8A, D4, 89, 15, DC, 8D, 42, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, D8, 8D, 42, 00, C1, E1, 08, 03, CA, 89, 0D, D4, 8D, 42, 00, C1, E8, 10, A3, D0, 8D, 42, 00, 6A, 00, E8, 5F, 2D, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, 9A, 00, 00, 00, 59, 83, 65, FC, 00, E8, DC, 41, 00, 00, FF, 15, 94, E1, 41, 00, A3, 48, A2, 43, 00, E8...
 
[+]

Entropy:
6.1798

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
116 KB (118,784 bytes)

The file unzip.exe has been discovered within the following programs.

Adobe Photoshop CS5  by Adobe Systems Incorporated
CS5 introduces new tools such as the Content-Aware Fill, Refine Edge, Mixer Brush, Bristle Tips and Puppet Warp. CS5 and CS5 Extended were made available through Adobe's online store, Adobe Authorized Resellers and Adobe direct sales.
www.adobe.com/go/ps_support
7% remove it
Connected Backup/PC Agent  by Autonomy Corporation plc
The Agent protects your critical data files. If the Agent is not already installed on your computer, contact your system administrator.
www.autonomy.com
About 3% of users remove it
D-Link Powerline AV Utility  by D-Link
Publisher's description - “Delivering data transfer rates of up to 200Mbps, D-Link’s PowerLine Homeplug AV provides ample bandwidth for demanding digital home requirements, such as watching Internet TV or streaming digital music in any room.”
www.d-link.com
5% remove it
FRoG Creator  by FRoG Team
www.frogcreator.fr
About 6% of users remove it
MDesktop By MDecisions  by MDecisions
www.mdirectory.net/MDirectory
About 3% of users remove it
PCLink  by Autel
www.auteltech.com
About 6% of users remove it
Pepakura Designer 3  by TamaSoftware
www.tamasoft.co.jp/pepakura-en
About 7% of users remove it
Pepakura Viewer 3  by TamaSoftware
About 8% of users remove it
Play65  by LogicEmpire
About 2% of users remove it
VMware Infrastructure Update  by VMware, Inc.
Publisher's description - “VMware Infrastructure is a collection of VMware products used to manage a VMware ESX/ESXi server environment. This is a utility that you can find in your VMware folder on the desktop or management workstation where the VI Client is installed.”
www.vmware.com
11% remove it
 
Latest 20 of 19 programs
Powered by Should I Remove It?

The file unzip.exe has been seen being distributed by the following 9 URLs.

http://storage.googleapis.com/moba/.../unzip.exe

http://www.flulpycrea.com.ar/FlulpyDownloads/.../unzip.exe

http://webclient-beta4.pwstasp.com.uy/.../unzip.exe

http://www.exam4me.com/_install/.../unzip.exe

http://storage.googleapis.com/advanced/.../unzip.exe

http://nesin.exam4you.com/_install/.../unzip.exe

http://www.wobzip.org/.../dl?file=53616a4e6f303552774f78302b65562b524c67316879372f534c78655356413669302b3847356c3430386b3d

http://www.gosoftware.com.au/.../unzip.exe

http://stahlworks.com/.../unzip.exe

Scan unzip.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.