winrar-x64-530.exe

win.rar GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from filehippo.com and multiple other hosts.
Publisher:
win.rar GmbH  (signed and verified)

MD5:
23b8e8744db80aaec674ed6bc5d4a625

SHA-1:
6455caf84e72f32616068df713fc9d413b73ed9b

SHA-256:
951b53d30aa7d40f5fd4720ddd7385d431ede0e18df496fcb9c255ee1520d668

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 1:29:37 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Detection.Undefined
7.0.302.0

File size:
1.9 MB (1,964,912 bytes)

File type:
Executable application (Win64 EXE)

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
6/1/2015 3:00:00 AM

Valid to:
6/1/2017 2:59:59 AM

Subject:
CN=win.rar GmbH, O=win.rar GmbH, STREET=Marienstrasse 12, L=Berlin, S=Berlin, PostalCode=10117, C=DE

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00FE46A10AD94269C3DD225C13645352E4

File PE Metadata
Compilation timestamp:
11/18/2015 11:15:34 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:O5bhD/Ry3FcT736VpE2f99iSaDoAduTwp7owR4K9XOD8JppxbnZJGk7J5xUSbrJy:VYKVaO9iNXRGYPODMTxbn7GsJ5vfJy

Entry address:
0x2218C

Entry point:
48, 83, EC, 28, E8, 2F, 65, 00, 00, 48, 83, C4, 28, E9, 12, FE, FF, FF, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 6C, 24, 10, 48, 89, 74, 24, 18, 57, 48, 83, EC, 20, 49, 8B, E8, 48, 8B, F2, 48, 8B, D9, 48, 85, C9, 75, 05, E8, 81, 1A, 00, 00, 48, 63, 43, 18, 8B, 7B, 14, 48, 03, 46, 08, 75, 05, E8, 6F, 1A, 00, 00, 33, C9, 85, FF, 74, 33, 4C, 8B, 4E, 08, 4C, 63, 43, 18, 4B, 8D, 14, 01, 48, 63, 02, 49, 03, C1, 48, 3B, E8, 7C, 0A, FF, C1, 48, 83, C2, 08, 3B, CF, 72, EB, 85, C9, 74, 0E, 8D, 41, FF, 49, 8D, 14, C0, 42...
 
[+]

Code size:
186.5 KB (190,976 bytes)

The file winrar-x64-530.exe has been seen being distributed by the following 50 URLs.

http://filehippo.com/fr/download/file/.../

http://www.filepuma.com/file/1452631963c10206/winrar_64bit_5.30/.../0/

http://www.filepuma.com/file/1455877254c10206/winrar_64bit_5.30/.../0/

http://filehippo.com/pl/download/file/.../

http://i.download.idg.pl/fannef/30af4bb0d9088ecf82a14d769a01fad9/568964e3//vol2/w95/archiv/winrar/.../winrar-x64-530.exe

http://filehippo.com/download/file/.../

https://dc618.4shared.com/download/.../winrar-x64-530.exe

https://dw.uptodown.com/dwn/N0ryw8iMyW6kkGXolkNaSJ7dz-OL1oY3P_VEcYWboLEDnFIkUBcR-cuCXZOjvubBfzPIFfw364FO05FMhfb1NjeYoQy2g8pptm69p0zVSmvtLOKxe7ZuxTmFlE9CAIOH/_7SPFi4w7irwEU2t2kTmX-0thc51lROWKwT1jchbO_KtVZMEeiSvaQAWyUOlZ2JCoPOOiNNXsTLDTYhva9ouPID8Lm-udkZdNv8WXDPtpuPpL4xSXF9mNPXOvsX_vDGz/cdEueD_IxeDIFyOSOsFxKWoeJEEuif8VlARCxb1oCNsEoCJUdZ1SYVQUu-RTjJgIDeSGOBE5RvM5n0O7G_7YkSl6pKZaRm_LVjZf7LfsVEdudP3Z_gUxA1Ph3ZLcY0To/.../

http://www.network.am/More/.../WinRAR5.30.ENx64.exe

http://www.filepuma.com/file/1452343579c10206/winrar_64bit_5.30/.../0/

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/pl/download/file/.../

http://filehippo.com/download/file/.../

http://www.filepuma.com/file/1449676308c10206/winrar_64bit_5.30/.../0/

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://fs33.filehippo.com/3290/.../winrar-x64-530.exe

http://filehippo.com/download/file/.../

https://www.winrar.it/prelievo_start.php?url=http://www.rarlab.com/.../winrar-x64-530.exe

http://www.filepuma.com/file/1450187676c10206/winrar_64bit_5.30/.../0/

https://s01.solidfilesusercontent.com/MGZiNzJiNGRiNDg2Y2IwODU4OGQyMjU5Mzk3ZjY5ODcwNzZkMjdiNToxYVBYT2I6NVB6UTRFZ1RFWWdYSVhYWXJpY2xoYndLVHRR/.../_www.gigapurbalingga.com__winrar-x64-530.exe

http://filehippo.com/download/file/.../

http://filehippo.com/pl/download/file/.../

http://www.filehorse.com/download/file/.../

https://doc-0s-1s-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/14ni1620javldvhehhve2175hk8iisnl/1477749600000/05086543909643892042/.../0B_Ggr5Q7qeyqMC1FdXFwLW5NR1U?e=download

http://www.filepuma.com/file/1448561271c10206/winrar_64bit_5.30/.../0/

http://www.filepuma.com/file/1451159885c10206/winrar_64bit_5.30/.../0/

http://i.download.idg.pl/fannef/c002f67f57d30709d205f38d717d317a/568141a1//vol2/w95/archiv/winrar/.../winrar-x64-530.exe

http://www.filepuma.com/file/1454244348c10206/winrar_64bit_5.30/.../0/

Latest 30 of 573 download URLs