WinRAR.exe

WinRAR

win.rar GmbH

WinRAR provides the full RAR and ZIP file support, can decompress CAB, GZIP, ACE and other archive formats. This is a setup program which is used to install the application. This is installed with multiple programs including WinRAR 5.00 (64 bits) and WinRAR archiver. The file has been seen being downloaded from doc-10-8s-docs.googleusercontent.com.
Publisher:
Alexander Roshal  (signed by win.rar GmbH)

Product:
WinRAR

Description:
WinRAR archiver

Version:
5.0.0

MD5:
18a8a788009dae9e2403bad6bd512729

SHA-1:
07045a5681bd005ac5b88be2e4ec72dd5c3e7c8c

SHA-256:
0a8868cda6cf08ee1f90debd51e84efab574bbd9f01f083e9eae5591efd17ab1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/23/2024 10:30:10 PM UTC  (today)

File size:
1.3 MB (1,313,880 bytes)

Product version:
5.0.0

Copyright:
Copyright © Alexander Roshal 1993-2013

Original file name:
WinRAR.exe

File type:
Executable application (Win64 EXE)

Common path:
C:\Program Files\winrar\winrar.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
6/13/2013 6:00:00 AM

Valid to:
6/14/2015 5:59:59 AM

Subject:
CN=win.rar GmbH, O=win.rar GmbH, STREET=Schumannstr. 17, L=Berlin, S=Berlin, PostalCode=10117, C=DE

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
75953FA54DD12DD9CA6B948C17BFD67C

File PE Metadata
Compilation timestamp:
8/22/2013 7:00:10 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:M5pcUftW0ltSlctNICIZKKLpZsJlXupQzdzhfeyW4MMWINbin07MMMMMMGL:XMrltSGtbRQsJ9upQzdBPJfMMMMMMs

Entry address:
0xCB93C

Entry point:
48, 83, EC, 28, E8, 83, 93, 00, 00, 48, 83, C4, 28, E9, 12, FE, FF, FF, CC, CC, 48, 89, 4C, 24, 08, 48, 81, EC, 88, 00, 00, 00, 48, 8D, 0D, ED, 42, 0D, 00, FF, 15, D7, 3B, 01, 00, 4C, 8B, 1D, D8, 43, 0D, 00, 4C, 89, 5C, 24, 58, 45, 33, C0, 48, 8D, 54, 24, 60, 48, 8B, 4C, 24, 58, E8, F9, C5, 00, 00, 48, 89, 44, 24, 50, 48, 83, 7C, 24, 50, 00, 74, 41, 48, C7, 44, 24, 38, 00, 00, 00, 00, 48, 8D, 44, 24, 48, 48, 89, 44, 24, 30, 48, 8D, 44, 24, 40, 48, 89, 44, 24, 28, 48, 8D, 05, 98, 42, 0D, 00, 48, 89, 44, 24...
 
[+]

Code size:
887.5 KB (908,800 bytes)

Shell Open Command
Open type:
WinRAR

Command:
"C:\Program Files\winrar\winrar.exe" "%1"


The file WinRAR.exe has been discovered within the following programs.

WinRAR 5.00 (64 bits)  by win.rar GmbH
5% remove it
WinRAR archiver  by win.rar GmbH
WinRAR archiver is a shareware file archiver that is able to create RAR archives natively.
www.rarlab.com
12% remove it
 
Powered by Should I Remove It?

The file WinRAR.exe has been seen being distributed by the following URL.

https://doc-10-8s-docs.googleusercontent.com/docs/securesc/t538i614dj2f1f69hcpegus8iiohnuiq/9h7brljq7n5fj92tfvlut6kjelof4tr0/1480795200000/.../16691454176111885355/0B5H_sS6hOAHyWHJQalFhbGw0elE?e=download