winzip100.exe

WinZip Computing

This is the installation and setup package for WinZip, a file compression/decompression utilitiy that has a GUI to zip interface. The installer might bundle additional software offers during setup including the AVG browser toolbar. This is a setup program which is used to install the application. The file has been seen being downloaded from software.oldversion.com and multiple other hosts.
Publisher:
WinZip Computing  (signed and verified)

MD5:
92729a5e74f303c3580143fb08bfe345

SHA-1:
7f25d8986a1c134a52c7fa8959a1a0c798817456

SHA-256:
fe76622afed1ebb4a31c039b82e83903bc4f3662b5058e36b136269faf89b8e0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 2:24:59 AM UTC  (today)

File size:
5.6 MB (5,834,344 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
10/17/2005 8:00:00 PM

Valid to:
10/18/2006 7:59:59 PM

Subject:
CN=WinZip Computing, OU=WinZip Computing, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=WinZip Computing, L=Mansfield, S=Connecticut, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
40032F22DC310809AF0E60AC5A2FE0C9

File PE Metadata
Compilation timestamp:
7/23/2004 7:33:10 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.0

CTPH (ssdeep):
98304:5XmL8J/8gvO2VMXeb3aDin2sfFRlPbBJBBtJhwm+Y1O/fwrl8WLN:3JktmSeODi2cfbBXBJ+Y1O/OLN

Entry address:
0x4603

Entry point:
53, FF, 15, 50, 80, 40, 00, B3, 22, 38, 18, 74, 03, 80, C3, FE, 40, 33, D2, 8A, 08, 3A, CA, 74, 10, 3A, CB, 74, 07, 40, 8A, 08, 3A, CA, 75, F5, 38, 10, 74, 01, 40, 52, 50, 52, 52, FF, 15, 54, 80, 40, 00, 50, E8, CD, FA, FF, FF, 50, FF, 15, 7C, 80, 40, 00, 5B, 55, 8B, EC, 51, A1, 2C, AE, 40, 00, 83, 0D, 88, B4, 40, 00, FF, 56, 33, F6, 39, 35, 00, AD, 40, 00, 89, 35, 1C, AE, 40, 00, 89, 35, F8, AD, 40, 00, A3, 28, AE, 40, 00, 75, 05, E8, 2C, E2, FF, FF, 39, 35, 4E, AE, 40, 00, 76, 66, 0F, B7, 05, 44, AE, 40...
 
[+]

Entropy:
7.9962  (probably packed)

Code size:
28 KB (28,672 bytes)

The file winzip100.exe has been seen being distributed by the following 30 URLs.

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3Nzg2MzU5MDtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6IjIwMzkyYTE4Yzc4NjU2YmUwZTIyODJjMTIxNzcxZDExIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2ODkwNzY5NjtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6ImFiMjdkZjBiMGIxMzc5ZDliYWIzMThlMDViNTViNzFjIjt9

http://10.0.104.30/ftp/pub/.../winzip100.exe

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MTc3NzkyODtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NDoiaHR0cDovL2FyLm9sZHZlcnNpb24uY29tL3dpbmRvd3Mvd2luemlwLTEwLTAiO3M6NDoicGFzcyI7czozMjoiNDZiYTBlYjBiZjc3NzNkZGEzMDViNDYzMmYyZTE2ZWUiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzMzMTgwODtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6IjMzNTI1OGZkZWYwYjkyOWU1NzRhNzYyMDRmZTQ4ZWQ1Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NjEwNjg5NjtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6ImRiOTFlZjY1NTk0ZmM1ODkzYWZkOGM3NWY0NjJiZDk3Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NjIxNzIyNDtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6Ijk5YjM5YzA3ZThiMzViYzUwZDU4NWVkYjRkMTE2YzliIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MDQyOTk1NjtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6IjE4MjFiYWZiNjY3NjQxMGIyMmFjMjBiZGRhOTM4YmIyIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ1OTgyOTI0OTtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6ImVmMjFjMzFiNDYxY2EyZjlkNTc2OTkwYTE1OGUyNTJhIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzY0NTA5NDtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6ImRhNWJhNDE2NWVjYzU4M2I2MzM3NWEzMDFlM2M5MjcwIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzM4NjY4OTtzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6ImU1Njk5NDQ4M2UxMjFmMjhiMDBjMDU1ODE3N2Y1MzM3Ijt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2NTk3MzUwNztzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6IjA1ZWE4ZTg0YjgyYzlkMzM1YzA2NGU0MjhmYzI4ZDgyIjt9

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2Nzk4NDEzNztzOjI6ImlkIjtpOjY3MjQ7czo0OiJmaWxlIjtzOjEzOiJ3aW56aXAxMDAuZXhlIjtzOjM6InVybCI7czo0NToiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL3dpbnppcC0xMC0wIjtzOjQ6InBhc3MiO3M6MzI6Ijg0NjZkZDJjMjY0ZTFkNzIxMWYyZTRkZDYyMWUwZjUwIjt9

Latest 30 of 30 download URLs

Scan winzip100.exe - Powered by Reason Core Security