UNZIP32.DLL

Info-ZIP's UnZip Windows DLL

SecureLink, Inc.

Publisher:
Info-ZIP  (signed by SecureLink, Inc.)

Product:
Info-ZIP's UnZip Windows DLL

Description:
Info-ZIP's UnZip DLL for Win32

Version:
5.41

MD5:
2154f28ca4305f169776881749bed4b2

SHA-1:
e3cd463758577cbf8067340106ca4b85ea652f98

SHA-256:
ebc04b93abcfcf02690a11af2473a67d993dcdefce792dfa2430a12e7f5194a0

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/26/2024 5:43:33 AM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
Virus.Win32.Sality
t3scan.2.2.29

File size:
114.8 KB (117,552 bytes)

Product version:
5.41

Copyright:
Info-ZIP 1996-2000

Original file name:
UNZIP32.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\unzip32.dll

Digital Signature
Authority:
Thawte, Inc.

Valid from:
9/16/2013 8:00:00 PM

Valid to:
9/17/2015 7:59:59 PM

Subject:
CN="SecureLink, Inc.", O="SecureLink, Inc.", L=Austin, S=Texas, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
7F2C93E860B96DE41887A489A28AD996

File PE Metadata
Compilation timestamp:
11/24/2003 4:36:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:tE74ywjIp+P7MryYhXrh4fU1cgUw+omYOfZIozMW:88b7MryYhXr+s1cgUwmfZ5zM

Entry address:
0x10A03

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, 40, 5C, 01, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 2C, 5E, 01, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, 15, FF, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, 8D, C8, FF, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, F1, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, E0, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
6.4272

Developed / compiled with:
Microsoft Visual C++ 6.0

Code size:
64 KB (65,536 bytes)

Scan UNZIP32.DLL - Powered by Reason Core Security